+> - Microsoft Copilot for Microsoft 365 operates with multiple protections, which include, but are not limited to, [blocking harmful content](#how-does-copilot-block-harmful-content), [detecting protected material](#does-copilot-provide-protected-material-detection), and [blocking prompt injections (jailbreak attacks)](#does-copilot-block-prompt-injections-jailbreak-attacks).

+When you enter prompts using Microsoft Copilot for Microsoft 365, the information contained within your prompts, the data they retrieve, and the generated responses remain within the Microsoft 365 service boundary, in keeping with our current privacy, security, and compliance commitments. Microsoft Copilot for Microsoft 365 uses Azure OpenAI services for processing, not OpenAIΓÇÖs publicly available services. Azure OpenAI doesn't cache customer content and Copilot modified prompts for Copilot for Microsoft 365.

+### Does Copilot provide protected material detection?

+Yes, Copilot for Microsoft 365 provides detection for protected materials, which includes text subject to copyright and code subject to licensing restrictions. Not all of these mitigations are relevant for all Copilot for Microsoft 365 scenarios.

+At Microsoft, we're guided by our [AI principles](https://www.microsoft.com/ai/our-approach), our [Responsible AI Standard](https://query.prod.cms.rt.microsoft.com/cms/api/am/binary/RE5cmFl), and decades of research on AI, grounding, and privacy-preserving machine learning. A multidisciplinary team of researchers, engineers, and policy experts reviews our AI systems for potential harms and mitigations ΓÇö refining training data, filtering to limit harmful content, query- and result-blocking sensitive topics, and applying Microsoft technologies like [InterpretML](https://www.microsoft.com/research/uploads/prod/2020/05/InterpretML-Whitepaper.pdf) and [Fairlearn](https://fairlearn.org/) to help detect and correct data bias. We make it clear how the system makes decisions by noting limitations, linking to sources, and prompting users to review, fact-check, and adjust content based on subject-matter expertise. For more information, see [Governing AI: A Blueprint for the Future](https://query.prod.cms.rt.microsoft.com/cms/api/am/binary/RW14Gtw).

+- must-keep

+You might need to change someone's email address and display name if, for example, they get married and their last name changes.

+1. Select **Manage username and email**.

+1. Select the edit icon next to the username you want to change.

+1. Change the display name, and select **Done**.

+1. Select the user's name, and then on the **Account** tab select **Manage username and email**.

+1. Select **Done**.

+1. Select the user's name, and then on the **Account** tab select **Manage username and email**.

+1. If you're adding a new email address, under **Aliases**, in the blank box, type the first part of the new email address. If you added your own domain to Microsoft 365, choose the domain for the new email alias by using the drop-down list.

+1. Under **Aliases**, select the ellipses (...) next to the desired alias and then select **Change to primary email** for the email address that you want to set as the primary email address for that person.

+ > You won't see this option to **Change to primary email** if you purchased Microsoft 365 from GoDaddy or another Partner service that provides a management console. Instead, sign in to the GoDaddy / partner's management console to set the primary alias.

+1. You'll see a warning that you're about to change the person's sign-in information. Select **Save changes**, then **Close**.

+1. Give the person the following information:

+ - If they're using Skype for Business Online, they must reschedule any Skype for Business Online meetings that they organized, and tell their external contacts to update their contact information.

+ - If they're using OneDrive, the URL to this location has changed. If they have OneNote notebooks in their OneDrive, they might need to close and reopen them in OneNote. If they have shared files from their OneDrive, the links to the files might not work and the user can reshare.

+ - If their password changed too, they're prompted to enter the new password on their mobile device, or it won't sync.

+Some people might continue to send email to the person's old email address and deleting it might result in NDR failures. Microsoft automatically routes it to the new one. Also, don't reuse old SMTP email addresses and apply them to new accounts. This can also cause NDR failures or delivery to an unintended mailbox.

+If they're using Exchange Online or if their account is linked with your organization's on-premises Exchange environment, you might see this error when you try to change a username and email address: "This user is synchronized with your local Active Directory. Some details can be edited only through your local Active Directory."

+This is due to the Microsoft Online Email Routing Address (MOERA). The MOERA is constructed from the person's _userPrincipalName_ attribute in Active Directory and is automatically assigned to the cloud account during the initial sync and once created, it can't be modified or removed in Microsoft 365. You can subsequently change the username in the Active Directory, but it doesn't change the MOERA and you might run into issues displaying the newly changed name in the Global Address List.

+To fix this, sign in to the [Microsoft Graph PowerShell](/powershell/microsoftgraph/overview) with your Microsoft 365 administrator credentials and use the following syntax:

+- must-keep

+- Email forwarding requires that the *from* account has a license unless it's a shared mailbox. If you're setting up email forwarding because the user has left your organization, another option is to [convert their mailbox to a shared mailbox](convert-user-mailbox-to-shared-mailbox.md). This way several people can access it. However, a shared mailbox can't exceed 50 GB.

+- You must be an Exchange administrator or Global administrator in Microsoft 365 to do these steps. For more information, see the article [About admin roles](../add-users/about-admin-roles.md).

+- must-keep

+Current research strongly indicates that mandated password changes do more harm than good. They drive users to choose weaker passwords, reuse passwords, or update old passwords in ways that are easily guessed by hackers. We recommend enabling [multi-factor authentication](../security-and-compliance/set-up-multi-factor-authentication.md). To learn more about password policy, check out [Password policy recommendations](../misc/password-policy-recommendations.md).

+1. In the Microsoft 365 admin center, go to the <a href="https://go.microsoft.com/fwlink/p/?linkid=2072756" target="_blank">**Org Settings** page</a>.

+2. In the **Security and Privacy** tab, on the **Password expiration policy** page, uncheck the box to change the password policy.

+This article is for setting the expiration policy for cloud-only users (Microsoft Entra ID). It doesn't apply to hybrid identity users who use password hash sync, pass-through authentication, or on-premises federation like Active Directory Federation Services (ADFS).

+- must-keep

+- must-keep

+1. Select **Install and more**, then select **Install Microsoft 365 apps**.

+1. Open the file that is downloaded to your **Downloads** folder.

+Don't exceed 2,000 mailboxes per batch. We strongly recommend submitting batches two weeks prior to the cut-over date as there's no impact on the end users during synchronization. If you need guidance for mailboxes quantities over 50,000, you can reach out to your CSAM or open a support request.

+ Title: Shifts for your frontline organization

+description: Get the admin guidance you need to deploy and manage Shifts, the schedule management tool, in Microsoft Teams.

+# Shifts for your frontline organization

+Shifts, the schedule management tool in Microsoft Teams, keeps your frontline workforce connected and in sync. It's built mobile first for fast and effective schedule management and communications across your frontline teams. With Shifts and Teams, frontline managers and workers can seamlessly manage schedules, communicate, and collaborate.

+Depending on your business needs, your organization can use Shifts as a standalone app or connect it to your workforce management (WFM) system. You can also use other Microsoft services and products to extend the capabilities of Shifts.

+## Considerations before you deploy Shifts

+As previously mentioned, your organization can opt to use Shifts as a standalone app or connect it to your WFM system. Connect Shifts to your WFM system if you want to:

+- Know about the changes made to data through Shifts.

+- Enforce the business rules and logic your organization configured in your WFM system before changes to data made by your frontline are saved to Shifts.

+- Keep data in Shifts and in your WFM system in sync.

+Here are options for integrating Shifts with external WFM systems.

+|Workforce management system |Solution |Things to consider |

+||||

+|UKG Pro Workforce Management |[Teams Shifts connector for UKG Pro Workforce Management](shifts-connectors.md#microsoft-teams-shifts-connector-for-ukg-pro-workforce-management)<br/> (Hosted and managed by Microsoft)|Shifts doesn't support every configuration and capability of your WFM system. Learn more about [Shifts capabilities](#shifts-capabilities) when using Microsoft managed connectors.|

+|Blue Yonder Workforce Management version 2020.3, 2021.1, or 2021.2 |[Teams Shifts connector for Blue Yonder](shifts-connectors.md#microsoft-teams-shifts-connector-for-blue-yonder) <br/>(Hosted and managed by Microsoft)|Shifts doesn't support every configuration and capability of your WFM system. Learn more about [Shifts capabilities](#shifts-capabilities) when using Microsoft managed connectors.|

+|Reflexis Workforce Management version 4.3.2, 4.4, or 4.5|[Reflexis Shifts connector for Microsoft Teams](shifts-connectors.md#reflexis-shifts-connector-for-microsoft-teams) <br/> (Hosted and managed by Zebra)|Shifts doesn't support every configuration and capability of your WFM system. [Learn more](shifts-connectors.md#reflexis-shifts-connector-for-microsoft-teams).|

+|Any other WFM system|[workforceIntegration Graph API](/graph/api/resources/workforceintegration?view=graph-rest-1.0)|<ul><li>Your workforce integration can prevent invalid data from being written to Shifts.</li><li>The workforce integration service you build must be highly available and resilient:</li><ul><li>If the service is slow, it affects the user experience in Shifts.</li><li>If the service is unavailable, users can't make changes in Shifts.</li></ul></ul>|

+## Deployment overview

+HereΓÇÖs a quick overview for deploying Shifts in your organization.

+1. **Create teams for your frontline locations**. You can choose to create your teams using the [deploy frontline dynamic teams at scale](deploy-dynamic-teams-at-scale.md) experience in the Teams admin center.

+ To learn more, see [How to find the best frontline team solution for your organization](frontline-team-options.md).

+1. **Define Shifts capabilities for your frontline**.

+ If you created your teams through the deploy frontline dynamic teams at scale experience, you can choose to [deploy Shifts to your frontline teams at scale](deploy-shifts-at-scale.md) in the Teams admin center. By doing so, you can standardize Shifts settings across all your frontline teams and manage them centrally. You select which capabilities to turn on or off and create schedule groups and time-off reasons that are set uniformly across all your frontline teams.

+ Alternatively, you can use the [Create or replace schedule](/graph/api/team-put-schedule?view=graph-rest-1.0&tabs=http) Graph API to define Shifts settings for your frontline teams and the [shiftsRoleDefinition](/graph/api/resources/shiftsroledefinition?view=graph-rest-beta) Graph API to [manage permissions to Shifts capabilities for your frontline managers](manage-shifts-permissions-frontline-managers.md).

+> [!NOTE]

+> Optionally, [set up a frontline operational hierarchy](deploy-frontline-operational-hierarchy.md) to map your organizationΓÇÖs structure of frontline teams and locations to a hierarchy in the Teams admin center. Creating a frontline operational hierarchy will enable location scenarios and other capabilities for your frontline.

+## Shifts capabilities

+HereΓÇÖs an overview of what frontline managers and workers can do in Shifts.

+|Frontline manager capabilities |Standalone |Microsoft managed Shifts connector|

+||||

+|Create a schedule for their team. <br/>Supported methods:<ul><li>Manually create shifts and time off one by one.</li><li>Bulk creation of shifts and time off through Excel import and copy/paste.</li></ul> | Yes | Not available in Shifts.¹ |

+|Create open shifts for team members to request. <br/>Supported methods:<ul><li>Manually create shifts and time off one by one.</li><li>Bulk creation of shifts and time off through Excel import and copy/paste.</li></ul> | Yes | Not available in Shifts.¹ |

+|Update and delete shifts, time off, and open shifts.<br/>Only manual one by one changes are supported.| Yes | Not available in Shifts.¹ |

+|Manage Shifts settings for the team. | Yes²| No³|

+|Create schedule groups to organize workers based on common characteristics within a team. For example, department or job type. | Yes | No⁴|

+|Retrieve time sheet reports. | Yes | Yes |

+|Retrieve the totals for hours worked and time off. | Yes | Yes |

+|Manage requests from workers. | Yes | Yes |

+¹Creating, updating, and deleting shifts, time off, and open shifts are actions that frontline managers must do in the WFM system. The data is automatically synced to Shifts through the Shifts connector.<br/>

+²Depends on how your organization deployed Shifts. This might not be available for the frontline managers to manage locally.<br/>

+³Automatically configured when you set up the connection between your WFM system and the Shifts connector. No action is needed by frontline managers.<br/>

+⁴Automatically created based on the configuration of your WFM system.

+|Frontline worker capabilities |Standalone |Microsoft managed Shifts connector|

+||||

+|View their own and their team's schedule. | Yes | Yes |

+|View open shifts available in their schedule groups. | Yes | Yes |

+|Create open shift requests for manager's approval. Currently only available from within the teams the worker is a member of.| Yes | Yes¹|

+|Create time-off requests for manager's approval. Currently, after the request is approved, the time off applies only to the team in which the worker requested it.| Yes | Yes¹|

+|Create a request to swap a shift with a coworker on the same team. | Yes | Yes¹|

+|Create a request to offer a shift to a coworker on the same team.| Yes | Yes¹|

+|Clock in and out of shifts and breaks.| Yes | Yes¹^,²|

+|Edit timecard entries for clock in/out and breaks on mobile. | Yes | Yes |

+¹Validations are made to ensure rules and business logic from your WFM system are applied.<br/>

+²Breaks aren't supported in the Teams Shifts connector for UKG Pro Workforce Management.

+## Extend Shifts capabilities

+Use the following resources to extend Shifts capabilities for your frontline workforce.

+|Resource |Example scenario |Target apps |

+||||

+|[shift Graph API](/graph/api/resources/shift?view=graph-rest-1.0)|Your organization wants to create reports based on Shifts scheduling data. |Apps that want to read/write Shifts data.|

+|[Graph API change notifications](/graph/api/resources/change-notifications-api-overview?view=graph-rest-1.0)|Your organization doesn't require frontline managers' approval for open shift requests. You can use Shifts webhooks notifications to trigger the approval automation process for open shift requests.|Apps that read Shifts data and want to be notified about changes made in Shifts. Additionally, these apps arenΓÇÖt data owners and donΓÇÖt have additional validation to run. |

+|[Shifts + Power Automate](https://make.powerautomate.com/connectors/shared_shifts/shifts-for-microsoft-teams/)|Your organization wants to take information from Shifts and create custom workflows with other apps and services. For example, create a flow to automatically approve swap shift requests and receive email notifications.|[Learn more](/connectors/shifts).|

+## Shifts resources

+|:::image type="icon" source="/office/media/icons/help.png":::| **[Shifts data FAQ](/microsoftteams/expand-teams-across-your-org/shifts/shifts-data-faq?bc=/microsoft-365/frontline/breadcrumb/toc.json&toc=/microsoft-365/frontline/toc.json)** Learn where Shifts data is stored and other information related to Shifts data, including retention, retrieval, and encryption.|

+|:::image type="icon" source="/office/medi)** Get an overview of Shifts connectors and how they work. Learn about the managed connectors that are available and the supported WFM systems. |

+|:::image type="icon" source="/office/medi).</li></ul> |

+## Training for end-users

+|&nbsp; |&nbsp; |&nbsp; |&nbsp; |&nbsp; |&nbsp; |