-description: "Learn how to get an Active Users report using the Microsoft 365 Reports dashboard in the Microsoft 365 admin center and find out how many product licenses are being used."

-description: "Learn how to get an email activity report using the Microsoft 365 Reports dashboard in the Microsoft 365 admin center."

-description: "Learn how to get Email apps usage report to know about email apps connecting to Exchange Online and the Outlook version users are using."

-description: "Learn how to get a Microsoft Forms activity report using the Microsoft 365 Reports dashboard in the Microsoft 365 admin center."

-description: "Learn how to get a Microsoft Dynamics 365 Customer Voice activity report using the Microsoft 365 Reports dashboard in the Microsoft 365 admin center."

-description: "Learn how to get Mailbox usage report to know about the activities of the users with a user mailbox."

-description: "Learn how to get the Microsoft Teams usage activity report and gain insights into the Teams activity in your organization."

-## See also

-description: "Learn how to get a Microsoft 365 Apps for usage report using the Microsoft 365 Reports dashboard in the Microsoft 365 admin center."

-description: "Get a Microsoft 365 groups report to know about the groups and their activities."

-description: "Get the OneDrive usage report for your organization and know the activity of every OneDrive user, the number of files shared, and the storage utilization."

-description: "Get the OneDrive for Business Usage Report to know about the total number of files and storage used across your organization. "

-description: "Get the SharePoint activity usage report to know about the activity of every SharePoint user, the number of files shared, and the storage utilization."

-description: "Learn how to get a Microsoft 365 Apps for usage report for Viva Insights activity in the Microsoft 365 Reports dashboard in the Microsoft 365 admin center."

-description: "Learn how to get a Microsoft 365 Viva Learning activity report using the Microsoft 365 Reports dashboard in the Microsoft 365 admin center."

-description: "Get the Yammer device usage report to know about which devices your users are using Yammer on."

-description: "Get the Yammer groups activity report to know about the number of Yammer groups being created and used in your organization, and their activity."

-description: "Admin roles such as the Service admin map to business functions and give permissions to do specific tasks in the admin center."

-description: "Exchange online admins manage your organization's email and mailboxes. For example, they recover deleted items in a user's mailbox."

-description: "Learn how the Guest users list is populated in the Microsoft 365 admin center."

-## Before you begin

-description: "Add new employees to Microsoft 365 for business for email, Skype, and Office apps."

-description: "Each team member needs a user account before they can sign in and access Microsoft 365 for business. Learn how to add users and assign licenses."

-description: "Admin roles map to business functions and provide permissions to do specific tasks in the admin center. For example, the Service admin opens support tickets with Microsoft."

-description: "Learn how a Microsoft 365 global admin can change a user's email address and display name when their name changes. "

-3. Select the user mailbox. In the **Mailbox** tab, under **More Actions**, select **Convert to shared mailbox**.

-# Get support

-# Unassign licenses from users

-# Room and equipment mailboxes

-# Send email as a distribution list

-1. In the Microsoft 365 admin center, go to the <a href="https://go.microsoft.com/fwlink/p/?linkid=2072756" target="_blank">**Security & privacy** tab</a> under **Org Settings**.

- If you aren't a global admin or security admin, you won't see the Security and privacy option.

-1. If you don't want users to have to change passwords, uncheck the box next to **Set user passwords to expire after a number of days**.

-

-1. In the second box type when users are notified that their password will expire, and then select **Save**. Choose a number of days from 1 to 30.

-# Share calendars with external users

-# Stay on top of changes

-# Update your admin phone number and email address

-# Compare ways to block access

-# Device list CSV-file

-# ICANN Verification of Contact Information

-# Password policy recommendations

-# Power BI in your organization

-# Multi-tenant management

-Productivity Score provides insights into your organization's digital transformation journey through its use of Microsoft 365 and the technology experiences that support it. Your organization's score reflects people and technology experience measurements and can be compared to benchmarks from organizations similar to yours. The apps health category is part of the measurements that falls under technology experiences. To learn more, check out the [Productivity Score overview](productivity-score.md) and read [Microsoft's Privacy Statement](https://privacy.microsoft.com/privacystatement).

-# Communication ΓÇô People experiences

-Productivity Score supports the journey to digital transformation with insights about how your organization uses Microsoft 365 and the technology experiences that support it. Your organizationΓÇÖs score reflects people and technology experience measurements and can be compared to benchmarks from organizations similar in size to yours. The communication category is part of the people experiences measures. To learn more, check out the [Productivity Score overview](productivity-score.md) and read [Microsoft's Privacy Statement](https://privacy.microsoft.com/privacystatement).

-# Meetings ΓÇô People experiences

-# Mobility ΓÇô People experiences

-# Review detected threats and take action

-# Set up multifactor authentication

-# Threats detected by Microsoft Defender Antivirus

-# Add your company branding to the Sign In page

-# Download perpetual software and product license keys

-# Employee quick setup

- If asked to allow the app to make changes, choose **Yes**. Let Office setup begin.

-# Move files to OneDrive

-# Manage and monitor priority accounts

-# Enter your business information

-# Schedule business closures, time off, and vacation time

-# Set your scheduling policies

-# How these security recommendations affect your users

-description: "Learn how to use customer-managed keys to encrypt your organization's audit records."

-# Use Customer Key to encrypt audit records

-You can now enable Microsoft Purview Customer Key encryption for audit records. Auditing builds on the [Service encryption with Microsoft Purview Customer Key](customer-key-overview.md) to encrypt your organization's auditing data. Implementing Customer Key provides extra protection by preventing unauthorized systems or Microsoft data center personnel from viewing your auditing data in the auditing pipeline and at rest. Using Customer Key to encrypt your auditing data also helps you meet regulatory or compliance obligations because your organization provides and controls the encryption keys.

-Customer Key requires a Microsoft 365 E5 subscription. For more information, see [Microsoft 365 guidance for security & compliance](/office365/servicedescriptions/microsoft-365-service-descriptions/microsoft-365-tenantlevel-services-licensing-guidance/microsoft-365-security-compliance-licensing-guidance#information-protection-customer-key-for-microsoft-365).

-Even if you don't use Customer Key to encrypt your audit records, data at rest in Microsoft 365 is encrypted by default.

-## Implement Customer Key for auditing

-To implement Customer Key for auditing, you have to create a multi-workload Data Encryption Policy (DEP), which defines the encryption hierarchy. This hierarchy is used by the service to encrypt your auditing data using the two root keys you manage and the availability key that's autogenerated and protected by Microsoft.

-For detailed step-by-step instructions, see [Set up Customer Key](customer-key-set-up.md).

-After you complete the setup, Microsoft 365 encrypts all data in your organization, including audit records, using the keys that are identified in the multi-workload DEP that you created.

-## Offboarding from Customer Key

-If you decide not to use Customer Key for assigning multi-workload DEPs anymore, you'll need to reach out to Microsoft support with a request to ΓÇ£offboardΓÇ¥ from Customer Key. Ask the support team to file a service request against Microsoft Purview Customer Key team. Reach out to m365-ck@service.microsoft.com if you have any questions. See [Roll back from Customer Key to Microsoft managed Keys](customer-key-manage.md#roll-back-from-customer-key-to-microsoft-managed-keys) for more information.

-Customers may no longer want to manage their own keys and may opt to offboard from CMK.

-For Auditing - we have NOT ONBOARDED to MMK. So once the tenant offboards from CMK there will be NO fallback to second level of encryption. The data will be encrypted at rest by the default Azure storage encryption.

-<!--

-Steps:

-NOTE: Even after offboarding, tenant is expected to keep their pre-used encryption keys and keep the MDEPS AAD app access to the AKVs till the lifetime of their encrypted data.

-## Offboarding from Microsoft 365

-Purging a multi-workload DEP is not supported for Microsoft Purview Customer Key. The multi-workload DEP is used to encrypt data across multiple workloads across all tenant users. Purging a multi-workload DEP would result in data from across multiple workloads becoming inaccessible. If you decide to exit Microsoft Purview services altogether, then you could pursue the path of tenant deletion per the [documented process](/azure/active-directory/enterprise-users/directory-delete-howto). See how to delete a tenant in Azure Active Directory."

-<!--

-The customer would proceed with the Tenant Deprovisioning process in order to fully leave the service. They may revoke keys, but not required by the process.

-## More information

-**Microsoft Security Resources**: From antimalware to Zero Trust, get all the relevant resources for your organization's security needs. [Visit Resources](/security/business/resources).

- > After you have enabled the group, you can't change it in the Microsoft Purview compliance portal. See the next section for how to enable a different group by using PowerShell.

-After you have enabled a security group for disposition from the **Records management settings** in the Microsoft Purview compliance portal, you can't disable this permission for the group or replace the selected group in the Microsoft Purview compliance portal. However, you can enable another mail-enabled security group by using the [Enable-ComplianceTagStorage](/powershell/module/exchange/enable-compliancetagstorage) cmdlet.

-Users receive an initial email notification per label at the end of the item's retention period, with a reminder per label once a week of all disposition reviews that they are assigned. They can click the link in the notification and reminder emails to go directly to the **Records management** > **Disposition** page in the Microsoft Purview compliance portal to review the content and take an action. Alternately, the reviewers can navigate to this **Disposition** page in the Microsoft Purview compliance portal. Then:

-Triggering a disposition review at the end of the retention period is a configuration option that's available only with a retention label. Disposition review is not available for a retention policy. For more information about these two retention solutions, see [Learn about retention policies and retention labels](retention.md).

-From the **Define retention settings** page for a retention label:

-After you select this **Trigger a disposition review** option, on the next page of the configuration, you specify how many consecutive stages of disposition you want and the disposition reviewers for each stage:

-Select **Add a stage**, and name your stage for identification purposes. Then specify the reviewers for that stage.

-For the reviewers, specify a user or a mail-enabled security group. Microsoft 365 groups ([formerly Office 365 groups](https://techcommunity.microsoft.com/t5/microsoft-365-blog/office-365-groups-will-become-microsoft-365-groups/ba-p/1303601)) are not supported for this option.

-If you need more than one person to review an item at the end of its retention period, select **Add a stage** again and repeat the configuration process for the number of stages that you need, with a maximum of five stages.

-> If you configured retention labels before multi-staged disposition review was available, you can upgrade your labels to support this feature: In the label wizard, select **Add a stage**, or edit the existing reviewers or add new reviewers.

-During the configuration phase, for each stage specified, you can rename it, reorder it, or remove it by selecting the Stage actions option (**...**):

-However, you can't reorder or remove a stage after you have created the retention label.

-After you have specified your reviewers, remember to grant them the **Disposition Management** role permission. For more information, see the [Permissions for disposition](#permissions-for-disposition) section on this page.

- - When this action is selected for an interim stage of disposition review (you have configured multiple stages): The item moves to the next disposition stage.

- - When this action is selected for the final stage of disposition review, or there is only one stage of disposition: The item is marked as eligible for permanent deletion, which a timer job then actions within 7 days. The exact timing for the item to then be permanently deleted depends on the workload. For more information, see [How retention works for SharePoint and OneDrive](retention-policies-sharepoint.md#how-retention-works-for-sharepoint-and-onedrive) and [How retention works for Exchange](retention-policies-exchange.md#how-retention-works-for-exchange).

- > [!NOTE]

- > Files encrypted using sensitivity labels will not be decrypted.

-|Viewed list item|ListItemViewed|A user viewed a SharePoint list item. Once a user views a list item, the ListItemViewed event is not logged again for the same user for same list item for the next five minutes.|

-Use the information in this article to help you successfully manage sensitivity labels in Office apps. For example, identify the minimum versions of apps you need to support features that are specific to built-in labeling, any additional configuration information for these features, and understand interactions with the Azure Information Protection unified labeling client and other apps and services.

-For each capability, the following tables list the minimum Office version that you need to support sensitivity labels using built-in labeling. Or, if the label capability is in public preview or under review for a future release. Use the [Microsoft 365 roadmap](https://aka.ms/MIPC/Roadmap) for details about new capabilities that are planned for future releases.

- - Registry keys (DWORD:00000001) *DisableDNF* and *DisableEO* from HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\DRM

-You can use AI Builder form processing to create AI models that use machine learning technology to identify and extract key-value pairs and table data from structured or semi-structured documents, like forms and invoices.

-Organizations often receive invoices in large quantities from a variety of sources, such as mail, fax, email, etc. Processing these documents and manually entering them into a database can take a considerable amount of time. By using AI to extract the text, key/value pairs, and tables from your documents, form processing automates this process.

-For example, you can create a form processing model that identifies all purchase order documents that are uploaded to the document library. From each purchase order you can then extract and display specific data that is important to you, such as *PO Number*, *Date*, or *Total Cost*.

-### File limitations

-### Supported languages

-### Multi-Geo environments

-If you plan to use a custom Power Platform environment, you must [install the *AI Builder for Project Cortex* app in this environment](/power-platform/admin/manage-apps#install-an-app-in-the-environment-view) and [allocate AI Builder credits](/power-platform/admin/capacity-add-on) to it before you can create form processing models. When using a custom environment, model creators must be assigned the Environment Maker security role and model users must be assigned the Basic User security role. See [Assign a security role to a user](/power-platform/admin/assign-security-roles) for more information.

-Most Microsoft products have a support lifecycle during which they get new features, bug fixes, security fixes, and so on. This lifecycle typically lasts for 10 years from the product's initial release. The end of this lifecycle is known as the product's end of support. Because Exchange 2013 reaches its end of support on April 11, 2023, Microsoft will longer provide:

-We start with a Microsoft 365 E5 trial subscription and then add the Microsoft 365 E5 subscription to it.

-2. To sign up for a new Microsoft account, go to [https://outlook.com](https://outlook.com) and create an account with a new email account and address. You'll use this account to sign up for Office 365.

-In this phase, you configure your subscription with other users and assign them Office 365 E5 licenses.

-

-> The use of a common password here is for automation and ease of configuration for a test environment. Obviously, this is highly discouraged for production subscriptions.

-If you need only an Office 365 test environment, you don't need to read the rest of this article.

-For other Test Lab Guides that apply to both Office 365 and Microsoft 365, see [Microsoft 365 for enterprise Test Lab Guides](m365-enterprise-test-lab-guides.md).

-

-

-

-On a personal computer, install Windows 10 Enterprise. You can download an evaluation version of Windows 10 Enterprise.

-> [!NOTE]

-> The Microsoft Evaluation Center is temporarily unavailable. To access this download, see [Accessing trials and kits for Windows (Eval Center workaround)](https://techcommunity.microsoft.com/t5/windows-11/accessing-trials-and-kits-for-windows-eval-center-workaround/m-p/3361125).<!-- 6049663 -->

-Use the hypervisor of your choice to create a virtual machine, and then install Windows 10 Enterprise on it. You can download an evaluation version of Windows 10 Enterprise.

-> [!NOTE]

-> The Microsoft Evaluation Center is temporarily unavailable. To access this download, see [Accessing trials and kits for Windows (Eval Center workaround)](https://techcommunity.microsoft.com/t5/windows-11/accessing-trials-and-kits-for-windows-eval-center-workaround/m-p/3361125).<!-- 6049663 -->

-To create a Windows 10 virtual machine in Microsoft Azure, ***you must have a Visual Studio-based subscription***, which has access to the image for Windows 10 Enterprise. Other types of Azure subscriptions, such as trial and paid subscriptions, don't have access to this image. For the latest information, see [Use Windows client in Azure for dev/test scenarios](/azure/virtual-machines/windows/client-images).

-Next, create a new virtual network and the WIN10 virtual machine with these commands. When prompted, provide the name and password of the local administrator account for WIN10 and store this information in a secure location.

-5. When prompted to make sure that this organization is yours, select **Join**, and then select **Done**.

-This environment includes the WIN10 computer that has:

-You're now ready to experiment with more features of [Microsoft 365 for enterprise](https://www.microsoft.com/microsoft-365/enterprise).

-Explore these other sets of Test Lab Guides:

-1. Download and install [Administrative Templates (.admx) for Windows 10 October 2020 Update (20H2)](https://www.microsoft.com/download/details.aspx?id=102157)

-1. Click [**Apply**](https://aka.ms/expandedMTEprev). Only the global administrators can register and complete the application process. If you're not a global administrator, contact your global administrator to fill out the application form.

- - NOCSH

-[Microsoft 365 roadmap](https://www.microsoft.com/microsoft-365/roadmap)

-[Microsoft Defender for Office 365 Service Description](/office365/servicedescriptions/office-365-advanced-threat-protection-service-description)