+Are you an admin whoΓÇÖs usually on the go? Even if you arenΓÇÖt, there may be times when you need to manage Microsoft 365 from your phone or tablet. Check out the free [Microsoft 365 Admin app](https://go.microsoft.com/fwlink/?LinkID=627216), the perfect companion to the web-based Microsoft 365 admin center. You can download the app from the [Apple App Store](https://apps.apple.com/app/apple-store/id761397963?pt=80423&ct=docsaboutadminapp&mt=8), and from the [Google Play Store](https://play.google.com/store/apps/details?id=com.ms.office365admin&referrer=utm_source%3Ddocsaboutadminapp%26utm_campaign%25docsaboutadminapp), as well as from Microsoft 365 Admin app link in the upper right in the <a href="https://go.microsoft.com/fwlink/p/?linkid=2024339" target="_blank">Microsoft 365 admin center</a>.

+The admin app has a lot of capabilities that enable you to manage Microsoft 365 from your mobile or tablet device when you canΓÇÖt get to a computer. Here's a list of a few of the tasks you can do from the app:

+<a href="https://go.microsoft.com/fwlink/p/?linkid=2024339" target="_blank">Microsoft 365 admin center</a> from the Microsoft 365 Admin app link in the upper right.

+## Basic Mobility and Security device management

+**Basic Mobility and Security** is offered with most Microsoft 365 plans, and is the only built-in choice offered for Microsoft 365 Business Standard and Microsoft 365 Business Basic. For more information, see [availability of Basic Mobility and Security](../basic-mobility-security/choose-between-basic-mobility-and-security-and-intune.md#availability-of-basic-mobility-and-security-and-intune).

+If you have either Microsoft 365 Business Basic or Microsoft 365 Business Standard, you can also purchase Intune if your organization has more complex security needs.

+## Microsoft stand-alone security plans

+**Microsoft Intune** is a stand-alone plan that is also included with some Microsoft 365 for business or enterprise plans. If you have Intune either as a stand-alone or a part of your subscription, it provides ability to fine-tune your device and app-data management. For more information on availability with Microsoft 365, see [availability of Intune](../basic-mobility-security/choose-between-basic-mobility-and-security-and-intune.md#availability-of-basic-mobility-and-security-and-intune).

+Microsoft Intune is a cloud-based service that focuses on mobile device management (MDM) and mobile application management (MAM). You control how your organizationΓÇÖs devices are used, including mobile phones, tablets, and laptops. You can also configure specific policies to control applications. For more information, see [Microsoft Intune documentation](/mem/intune/).

+**Azure Active Directory (AD) Premium** plans are standalone plans that also come with some of the Microsoft 365 for business and enterprise plans. For more information, see [Azure AD pricing](https://azure.microsoft.com/pricing/details/active-directory/).

+Azure AD Premium P1 and Azure AD Premium P2 allow you to set conditional access features, self-service password reset, etc. For more information on the capabilities of the Premium plans, see [Azure AD pricing](https://azure.microsoft.com/pricing/details/active-directory/) page.

+## Microsoft 365 plans with additional device and data protection features

+**Microsoft 365 Business Premium** includes Intune and Azure Active Directory Premium P1, Microsoft Defender for Office 365 Plan 1, and Microsoft Defender for Business.

+Microsoft 365 Business Premium offers a set of policy templates for securing your devices and app data. It offers a good level of security and threat protection for most businesses under 300 users. For more information, see [Microsoft 365 Business Premium Overview](../../business-premium/index.md) and [Overview of Microsoft Defender for Business](../../security/defender-business/mdb-overview.md).

+**Microsoft 365 for enterprise** subscriptions include Microsoft Intune and E5 also includes the Azure AD premium plans 1 and 2.

+Microsoft 365 E5 offers the highest level of security and threat protection of all the Microsoft 365 subscriptions. For more information, see [Microsoft 365 for enterprise overview](../../enterprise/microsoft-365-overview.md).

+ Title: "Upgrade distribution lists to Microsoft 365 Groups in Exchange Online"

+description: "Learn how to upgrade one or many distribution lists to Microsoft 365 Groups in Exchange Online, and how to use PowerShell to upgrade several distribution lists simultaneously."

+# Upgrade distribution lists to Microsoft 365 Groups in Exchange Online

+Upgrading a distribution list to a Microsoft 365 Group is a great way to improve the features and capabilities of groups in your organization. For more information, see [Why you should upgrade your distribution lists to groups in Outlook](https://support.microsoft.com/office/7fb3d880-593b-4909-aafa-950dd50ce188)

+You can upgrade distribution lists one at a time, or several at the same time. You can use the Exchange admin center (EAC) or Exchange Online PowerShell.

+## Upgrade one or many distribution list groups to Microsoft 365 Groups

+You must be a global admin or Exchange admin to upgrade a distribution list. To upgrade to Microsoft 365 Groups, the distribution list must have a designated owner, and that owner must be a mailbox.

+### Use the Classic EAC to upgrade one or many distribution list groups to Microsoft 365 Groups in Outlook

+> [!NOTE]

+> The procedures in this section are not available in the new EAC.

+1. Go to the Exchange admin center > **Recipients** \> <a href="https://go.microsoft.com/fwlink/?linkid=2183233" target="_blank">**Groups**</a>.

+ You'll see a notice indicating you have distribution lists (also called **distribution groups**) that are eligible to be upgraded to Microsoft 365 Groups.

+

+ 

+1. Select one or more distribution lists (also called **distribution groups**) from the **groups** page.

+ 

+1. Select the upgrade icon.

+ 

+1. On the information dialog, select **Yes** to confirm the upgrade. The process begins immediately. Depending on the size and number of distribution lits you're upgrading, the process can take minutes or hours.

+ If the distribution list can't be upgraded, a dialog appears saying so. See [Which distribution lists cannot be upgraded?](#which-distribution-lists-cant-be-upgraded).

+1. If you're upgrading multiple distribution lists, use the drop-down list to filter which distribution lists have been upgraded. If the list isn't complete, wait a while longer and then select **Refresh** to see what's been successfully upgraded.

+**Notes**:

+- You won't get a notification when the upgrades are complete. Instead, see what's listed under **Available for upgrade** or **Upgraded DLs**.

+- If you selected a distribution list for upgrade, but it's still appeared on the page as **Available to upgrade**, then it failed to upgrade. See [What to do if the upgrade doesn't work](#what-to-do-if-the-upgrade-doesnt-work).

+- The digest email of a group might offer to let you upgrade any eligible distribution lists that you're the owner of. For more information about digest email, see [Have a group conversation in Outlook](https://support.microsoft.com/office/a0482e24-a769-4e39-a5ba-a7c56e828b22).

+If one or more **eligible** distribution lists fail to be upgraded, do the following steps:

+1. Use [this script](https://aka.ms/DLToM365Group) to scan for possible issues. Fix any issues reported by the script and try upgrading the distribution list one more time.

+2. If the script doesn't help, open a [Support ticket](../../business-video/get-help-support.md). The issue will need to be escalated to the Groups Engineering team.

+## How to use Exchange Online PowerShell to upgrade several distribution lists at the same time

+To connect to Exchange Online PowerShell, see [Connect to Exchange Online PowerShell](/powershell/exchange/connect-to-exchange-online-powershell).

+### Upgrade a single distribution list

+To upgrade a single distribution list, use the following syntax:

+Upgrade-DistributionGroup -DLIdentities <EmailAddress>

+This example upgrade the distribution list marketing@contoso.com:

+Upgrade-DistributionGroup -DLIdentities marketing@contoso.com

+For detailed syntax and parameter information, see [Upgrade-DistributionGroup](/powershell/module/exchange/upgrade-distributiongroup).

+> You can also upgrade a single distribution list to a Microsoft 365 group using the [New-UnifiedGroup](/powershell/module/exchange/new-unifiedgroup) cmdlet.

+### Upgrade multiple distribution lists at the same time

+To upgrade multiple distribution lists at the same time, use the following syntax:

+Upgrade-DistributionGroup -DLIdentities <EmailAddress1>,<EmailAddress2>,...

+This example upgrades the specified distribution lists to Microsoft 365 Groups.

+Upgrade-DistributionGroup -DLIdentities marketing@contoso.com,finanace@contoso.com,hr@contoso.com

+For detailed syntax and parameter information, see [Upgrade-DistributionGroup](/powershell/module/exchange/upgrade-distributiongroup).

+### Upgrade all eligible distribution lists

+Use either of the following methods to upgrade all eligible distribution lists to Microsoft 365 Groups:

+- Upgrade all eligible distribution lists:

+ $All = Get-EligibleDistributionGroupForMigration -ResultSize unlimited

+ $All | Foreach-Object {Upgrade-DistributionGroup -DLIdentities $_.PrimarySMTPAddress}

+- Try to upgrade all distribution lists whether they're eligible or not:

+ $All Get-DistributionGroup -RecipientTypeDetails MailUniversalDistributionGroup -ResultSize unlimited

+ $All | Foreach-Object {Upgrade-DistributionGroup -DLIdentities $_.PrimarySMTPAddress}

+||::|

+|Distribution lists where one or more members are something other than a user mailbox, shared mailbox, team mailbox, or mail user. In other words, the **RecipientTypeDetails** value of any member of the distribution list is not **UserMailbox**, **SharedMailbox**, **TeamMailbox**, or **MailUser**.|No|

+|Distribution list that has more than 100 owners.|No|

+|Distribution list that only has members but no owner.|No|

+|Distribution list that has alias containing special characters.|No|

+|The distribution list is configured to be a forwarding address for a Shared mailbox.|No|

+|The distribution list is part of **Sender Restriction** in another distribution list.|No|

+|Mail-enabled security groups.|No|

+|Dynamic distribution groups.|No|

+|Distribution lists that were converted to **RoomLists**.|No|

+### Check which distribution lists are eligible for upgrade

+To check whether a specific distribution list is eligible for upgrade, run the following command:

+Get-DistributionGroup <EmailAddress> | Get-EligibleDistributionGroupForMigration

+To see all distribution groups that are eligible for upgrade, run the following command:

+- **Outlook**: After you upgrade a ditribution list to a Microsoft 365 group, the user's local recipient cache (also known as the nick name cache) is not aware of the change. Do the steps in the following article to reset the user's local recipient cache: [Information about the Outlook AutoComplete list](/outlook/troubleshoot/contacts/information-about-the-outlook-autocomplete-list).

+ If you don't update the recipient cache, any email sent to the Microsoft 365 Group will be delivered successfully, but the following issues will remain:

+

+ - The Group recipient will resolve as the distribution list instead of the Microsoft 365 Group.

+ - The contact card will be the distribution list's contact instead of the Microsoft 365 Group's.

+- **Outlook on the web**: Like Outlook, the distribution list will remain in the recipient cache. Follow the steps in this article to refresh the cache to see the Group's contact card: [Remove suggested name or email address from the Auto-Complete List](https://support.microsoft.com/office/9E1419D9-E88F-445B-B07F-F558B8A37C58).

+No. The setting to enable welcome messages is set to false by default. This setting affects both existing and new group members who may join after the migration is complete. If the group owner later allows guest users, guest users won't receive a welcome email in their Inbox. Guest members can continue working with the group.

+There are some cases in where eligible distribution lists can't be upgraded. For example:

+- An admin has applied a **Group Email Address Policy**, and the distribution list doesn't meet the requirements of the policy.

+- A distribution list has the **MemberJoinRestriction** or **MemberDepartRestriction** set to the value **Closed**.

+- The creation of Microsoft 365 Group creation is limited as described in this article: [this article](/microsoft-365/solutions/manage-creation-of-groups).

+ Use one of the following workarounds for this specific issue:

+ - Ensure all owners of the distribution list are allowed to create Microsoft 365 Groups (i.e., the owners are member of the security group that is allowed to create Microsoft 365 Groups).

+ - Temporarily replace the owner of the distribution list with a user who's allowed to create Microsoft 365 Groups.

+The upgrade will happen only when the call is submitted to the server. If the upgrade fails, your distribution lists will remain and function as they used to.

+# Internal admin takeover

+Each Microsoft 365 organization can have up to five onmicrosoft.com domains.

+1. In the Microsoft 365 admin center, select **Settings**, and then select **Domains**.

+2. Select your onmicrosoft.com default domain.

+ 

+

+3. On the domain properties page, in the **About this domain** section, select **Add onmicrosoft domain**.

+ 

+4. In the **Add onmicrosoft domain** page, in the **Domain name** box, type the name for your new onmicrosoft.com domain.

+ 

+ > [!NOTE]

+ > Make sure to verify the spelling and accuracy of the domain name you entered. You are limited to five onmicrosoft.com domains, and currently they cannot be deleted once they are created.

+5. Select **Add domain**. When successfully added, you will see a message stating this.

+

+ 

+You can set any domain you own as your default domain.

+For more details on how to add an onmicrosoft.com domain, see [Add or replace your onmicrosoft.com domain](add-or-replace-your-onmicrosoftcom-domain.md).

+ Title: "Manage and monitor priority accounts"

+f1.keywords:

+- CSH

+audience: Admin

+ms.localizationpriority: medium

+- Adm_O365

+- Adm_TOC

+- AdminSurgePortfolio

+- admindeeplinkMAC

+description: "Monitor failed and delayed emailed messages sent to or from accounts who have high business impact."

+# Manage and monitor priority accounts

+In every Microsoft 365 organization, there are people that are essential, like executives, leaders, managers, or other users who have access to sensitive, proprietary, or high priority information.

+To help your organization protect these accounts, you can now designate specific users as priority accounts and leverage app-specific features that provide them with extra protection. In the future, more apps and features will support priority accounts, and to start with, we've announced two capabilities: **priority account protection** and **premium mail flow monitoring**.

+- **Priority account protection** - Microsoft Defender for Office 365 (formerly Office 365 Advanced Threat Protection) supports priority accounts as tags that can be used in filters in alerts, reports, and investigations. For more information, check out [User tags in Microsoft Defender for Office 365](../../security/office-365-security/user-tags.md).

+ A natural question is, "Aren't all users a priority? Why not designate all users as priority accounts?" Yes, all users are a priority, but priority account protection offers the following additional benefits:

+ - **Additional heuristics**: Our analysis of mail flow in the Microsoft datacenters indicates that mail flow patterns for company executives are different than the average employee. Priority account protection offers additional heuristics that are specifically tailored to company executives that wouldn't benefit a regular employee.

+ - **Additional visibility in reporting**: In effect, information for all users (or all affected users) is already available in alerts, reports, and investigations. The priority accounts tag as a filter allows you to specifically target your investigations.

+- **Premium Mail Flow Monitoring** - Healthy mail flow can be critical to business success, and delivery delays or failures can have a negative impact on the business. You can choose a threshold for failed or delayed emails, receive alerts when that threshold is exceeded, and view a report of email issues for priority accounts. For more information, check out [Email issues for priority accounts report in the modern EAC](/exchange/monitoring/mail-flow-reports/mfr-email-issues-for-priority-accounts-report)

+For security best practices for priority accounts, see [Security recommendations for priority accounts](../../security/office-365-security/security-recommendations-for-priority-accounts.md).

+## Before you begin

+The **Priority account protection** feature that's described in this topic is available only to organizations that meet the following requirements:

+- Microsoft Defender for Office 365 Plan 2, including those with Office 365 E3, Office 365 E5, Microsoft 365 E5, or Microsoft 365 E5 Security.

+The **Premium Mail Flow Monitoring** feature that's described in this topic is available only to organizations that meet the following requirements:

+- Your organization needs to have a license count of at least 5,000, from either one of, or a combination of the following products: Office 365 E3, Microsoft 365 E3, Office 365 E5, Microsoft 365 E5. For example, your organization can have 3,000 Office 365 E3 licenses and 2,500 Microsoft 365 E5, for a total of 5,500 licenses from the qualifying products.

+- Your organization needs to have at least 50 monthly active users for one or more core workloads ΓÇô Teams, One Drive for Business, SharePoint Online, Exchange Online and Office apps.

+> [!NOTE]

+> You can monitor up to 250 priority accounts.

+When you apply priority account protection to a mailbox, you should also apply priority account protection to users who have access to the mailbox (for example, the CEO and the CEO's executive assistant who manages the CEO's calendar).

+### Add priority accounts from the Setup page

+Add priority accounts from the **Setup page**.

+1. Go to the Microsoft 365 admin center at <a href="https://go.microsoft.com/fwlink/p/?linkid=2024339" target="_blank">https://admin.microsoft.com</a>.

+2. Go to **Setup** > **Organizational knowledge**, and choose **View** under **Monitor your most important accounts**.

+3. Select **Get Started** or **Manage**.

+4. On the **Add Priority accounts** page, in the search field, type the name or email address of the person you want to add to the priority accounts list. You can also set your email threshold for failed or delayed emails and get a weekly report of issues for priority accounts.

+5. Select the user and choose **Save**.

+You can also add priority accounts from the Active users page.

+### Add priority accounts from Active users page

+Add priority accounts from the Active users page.

+1. Go to the admin center at <a href="https://go.microsoft.com/fwlink/p/?linkid=2024339" target="_blank">https://admin.microsoft.com</a>.

+2. Go to **Users** > **Active users** and select the three dots (more actions) at the top of the page. Select **Manage priority accounts**.

+3. Select **Add accounts**, and on the **Add Priority accounts** page, in the search field, type the name of the person you want to add to the priority accounts list.

+4. Select the user and choose **Save**.

+## Remove a user from the priority accounts list

+1. Go to the Microsoft 365 admin center at <a href="https://go.microsoft.com/fwlink/p/?linkid=2024339" target="_blank">https://admin.microsoft.com</a>.

+2. Go to **Setup** > **Organizational knowledge**, and choose **View** under **Monitor your most important accounts**.

+3. On the **Monitor your most accounts** page, choose **Priority accounts** under **Manage this feature**.

+4. On the **Priority accounts** page, select the user or users you want to remove from the list and choose, **Remove accounts**.

+## Related topics

+[Using Priority Accounts in Microsoft 365](https://techcommunity.microsoft.com/t5/microsoft-365-blog/using-priority-accounts-in-microsoft-365/ba-p/1873314)

+2. An administrator enables auto-expanding archiving for the mailbox. If the mailbox has a hold or retention policy applied to it, the storage quota for the archive mailbox is increased to 110 GB and the archive warning quota is increased to 100 GB.

+

+ Then, when the archive mailbox (including the Recoverable Items folder) reaches its storage quota, the archive mailbox is converted to an auto-expanding archive. Extra storage space is added until it reaches a maximum size of 1.5 TB. It can take up to 30 days for the additional storage space to be provisioned.

+The **Policy dashboard** allows you to quickly see the policies in your organization, the health of the policy, manually add users to policies, and to view the status of alerts associated with each policy.

+- **Confirmed alerts**: The total number of alerts that resulted in cases from the policy in the last 365 days.

+Protecting data and preventing data leaks is a constant challenge for most organizations, particularly with the rapid growth of new data created by users, devices, and services. Users are empowered to create, store, and share information across services and devices that make managing data leaks increasingly more complex and difficult. Data leaks can include accidental oversharing of information outside your organization or data theft with malicious intent. With an assigned Microsoft Purview Data Loss Prevention (DLP) policy, built-in, or customizable triggering events, this template starts scoring real-time detections of suspicious SharePoint Online data downloads, file and folder sharing, printing files, and copying data to personal cloud messaging and storage services.

+Protecting healthcare record data and preventing the misuse of patient personal data is a significant concern for organizations in the healthcare industry. This misuse may include confidential data leaks to unauthorized persons, fraudulent modification of patient records, or the theft of patient healthcare records. Preventing this misuse of patient data, either by lack of awareness, negligence, or fraud by users is also key component in meeting the regulatory requirements of the Health Insurance Portability and Accountability Act (HIPAA) and the Health Information Technology for Economic and Clinical Health (HITECH) Act. Both of these acts establish the requirements for safeguarding patient protected health information (PHI).

+The policy health status gives you insights into potential issues with your insider risk management policies. The **Status** column on the **Policies** tab can alert you to policies issues that may prevent user activity from being reported or why the number of activity alerts is unusual. The policy health status can also confirm that the policy is healthy and doesn't need attention or configuration changes.

+- **Policies with incomplete configuration**. These issues may include missing users or groups in the policy or other incomplete policy configuration steps.

+- **Policies with indicator configuration issues**. Indicators are an important part of each policy. If indicators aren't configured, or if too few indicators are selected, the policy may not evaluate risky activities as expected.

+- **Policy triggers aren't working, or policy trigger requirements aren't properly configured**. Policy functionality may depend on other services or configuration requirements to effectively detect triggering events to activate risk score assignment to users in the policy. These dependencies may include issues with connector configuration, Microsoft Defender for Endpoint alert sharing, or data loss prevention policy configuration settings.

+- **Volume limits are nearing or over limits**. Insider risk management policies use numerous Microsoft 365 services and endpoints to aggregate risk activity signals. Depending on the number of users in your policies, volume limits may delay identification and reporting of risk activities. Learn more about these limits in the Policy template limits section of this article.

+To quickly view the health status for a policy, navigate the **Policy** tab and the **Status** column. Here you'll see the following policy health status options for each policy:

+- *Healthy*: No issues have been identified with the policy.

+- *Recommendations*: There are some issues with the policy that may prevent the policy from operating as expected.

+- *Warnings*: There are issues with the policy that will prevent it from identifying risky activities.

+For more details about any recommendations or warnings, select a policy on the **Policy** tab to open the policy details card. More information about the recommendations and warnings, including guidance on how to address these issues, will be displayed in the **Notifications** section of the details card.

+|Policy isn't assigning risk scores to activity|All policy templates|You may want to review your policy scope and triggering event configuration so that the policy can assign risk scores to activities <br><br> 1. Review the users that are selected for the policy. If you have few users selected, you may want to select additional users. <br> 2. If you're using an HR connector, check that your HR connector is sending the correct data. <br> 3. If you're using a DLP policy as your triggering event, check your DLP policy configuration to ensure it's configured to be used in this policy. <br> 4. For security violation policies, review the Microsoft Defender for Endpoint alert triage status selected in Insider risk settings > Intelligent detections. Confirm that the alert filter isn't too narrow.|

+|Microsoft Defender for Endpoint alerts aren't being shared with the compliance portal|- General security policy violations <br> - Security policy violations by departing users <br> - Security policy violations by disgruntled users <br> - Security policy violations by priority users|Microsoft Defender for Endpoint alerts aren't being shared with the compliance portal. <br><br> Configure sharing of Microsoft Defender for Endpoint alerts.|

+ - **Name (required)**: Enter a friendly name for the policy. This name can't be changed after the policy is created.

+4. In the policy wizard, you can't edit the following:

+- **Case notes**: Reviewers can provide notes for a case in the Case Notes section. This list consolidates all notes in a central view and includes reviewer and date submitted information.

+In more serious situations, you may need to share the insider risk management case information with other reviewers or services in your organization. Insider risk management is tightly integrated with other Microsoft Purview solutions to help you with end-to-end risk resolution.

+When users leave an organization, either voluntarily or as the result of termination, there are often legitimate concerns that company, customer, and user data are at risk. Users may innocently assume that project data isn't proprietary, or they may be tempted to take company data for personal gain and in violation of company policy and legal standards. Insider risk management policies that use the [Data theft by departing users](insider-risk-management-policies.md#policy-templates) policy template automatically detect activities typically associated with this type of theft. With this policy, you'll automatically receive alerts for suspicious activities associated with data theft by departing users so you can take appropriate investigative actions. Configuring a [Microsoft 365 HR connector](import-hr-data.md) for your organization is required for this policy template.

+Users typically have a large degree of control when managing their devices in the modern workplace. This control may include permissions to install or uninstall applications needed in the performance of their duties or the ability to temporarily disable device security features. Whether this activity is inadvertent, accidental, or malicious, this conduct can pose risk to your organization and is important to identify and act to minimize. To help identify these risky security activities, the following insider risk management security policy violation templates scores security risk indicators and uses Microsoft Defender for Endpoint alerts to provide insights for security-related activities:

+Employment stresses events can impact user behavior in several ways that relate to insider risks. These stressors may be a poor performance review, a position demotion, or the user being placement on a performance review plan. Though most users don't respond maliciously to these events, the stress of these actions may result in some users to behave in ways they may not normally consider during normal circumstances. To help identify these types of risky activities, the following insider risk management policy templates use the Microsoft 365 HR connector and starts scoring risk indicators relating to behaviors that may occur near employment stressor events:

+Configure Preservation Lock after you've created a [retention policy](create-retention-policies.md), or a retention label policy that you [publish](create-apply-retention-labels.md) and contains only labels that [mark items as regulatory records](records-management.md#records).

+All retention policies with any configuration support Preservation Lock. To apply Preservation Lock on a retention label policy, it must contain only labels that mark items as regulatory records.

+## Week of May 30, 2022

+| Published On |Topic title | Change |

+|||--|

+| 5/31/2022 | [Detecting human-operated ransomware attacks with Microsoft 365 Defender](/microsoft-365/security/defender/playbook-detecting-ransomware-m365-defender?view=o365-21vianet) | added |

+| 5/31/2022 | [Responding to ransomware attacks](/microsoft-365/security/defender/playbook-responding-ransomware-m365-defender?view=o365-21vianet) | added |

+| 5/31/2022 | [Learn about retention for Yammer](/microsoft-365/compliance/retention-policies-yammer?view=o365-21vianet) | modified |

+| 5/31/2022 | [Mailbox utilization service alerts](/microsoft-365/enterprise/microsoft-365-mailbox-utilization-service-alerts?view=o365-21vianet) | modified |

+| 5/31/2022 | [MRS service alerts](/microsoft-365/enterprise/microsoft-365-mrs-source-delays-service-alerts?view=o365-21vianet) | modified |

+| 5/31/2022 | [Compare Microsoft Defender Vulnerability Management offerings](/microsoft-365/security/defender-vulnerability-management/defender-vulnerability-management-capabilities?view=o365-21vianet) | modified |

+| 5/31/2022 | [Creating and Testing Binary Files on Test Base](/microsoft-365/test-base/testapplication?view=o365-21vianet) | modified |

+| 6/1/2022 | [What's new in Microsoft 365 Lighthouse](/microsoft-365/lighthouse/m365-lighthouse-whats-new?view=o365-21vianet) | added |

+| 6/1/2022 | [Differences between document understanding and form processing models](/microsoft-365/contentunderstanding/difference-between-document-understanding-and-form-processing-model) | modified |

+| 6/1/2022 | [Licensing for SharePoint Syntex](/microsoft-365/contentunderstanding/syntex-licensing) | modified |

+| 6/1/2022 | [Compare Microsoft Defender Vulnerability Management offerings](/microsoft-365/security/defender-vulnerability-management/defender-vulnerability-management-capabilities?view=o365-21vianet) | modified |

+| 6/1/2022 | [End-user notifications for Attack simulation training](/microsoft-365/security/office-365-security/attack-simulation-training-end-user-notifications?view=o365-21vianet) | modified |

+| 6/1/2022 | [Payload automations for Attack simulation training](/microsoft-365/security/office-365-security/attack-simulation-training-payload-automations?view=o365-21vianet) | modified |

+| 6/1/2022 | [Payloads for Attack simulation training](/microsoft-365/security/office-365-security/attack-simulation-training-payloads?view=o365-21vianet) | modified |

+| 6/1/2022 | [User reported message settings](/microsoft-365/security/office-365-security/user-submission?view=o365-21vianet) | modified |

+| 6/1/2022 | [Connect Microsoft Defender for Office 365 to Microsoft Sentinel](/microsoft-365/security/office-365-security/step-by-step-guides/connect-microsoft-defender-for-office-365-to-microsoft-sentinel?view=o365-21vianet) | added |

+| 6/1/2022 | [Ensuring you always have the optimal security controls with preset security policies](/microsoft-365/security/office-365-security/step-by-step-guides/ensuring-you-always-have-the-optimal-security-controls-with-preset-security-policies?view=o365-21vianet) | added |

+| 6/1/2022 | [How to configure quarantine permissions and policies](/microsoft-365/security/office-365-security/step-by-step-guides/how-to-configure-quarantine-permissions-with-quarantine-policies?view=o365-21vianet) | added |

+| 6/1/2022 | [(False Negatives) How to handle malicious emails that are delivered to recipients using Microsoft Defender for Office 365](/microsoft-365/security/office-365-security/step-by-step-guides/how-to-handle-false-negatives-in-microsoft-defender-for-office-365?view=o365-21vianet) | added |

+| 6/1/2022 | [(False Positives) How to handle legitimate emails getting blocked from delivery using Microsoft Defender for Office 365](/microsoft-365/security/office-365-security/step-by-step-guides/how-to-handle-false-positives-in-microsoft-defender-for-office-365?view=o365-21vianet) | added |

+| 6/1/2022 | [How to prioritize and manage Automated Investigations and Response (AIR).](/microsoft-365/security/office-365-security/step-by-step-guides/how-to-prioritize-and-manage-automated-investigations-and-response-air?view=o365-21vianet) | added |

+| 6/1/2022 | [How to prioritize, Manage, Investigate & Respond to Incidents in Microsoft 365 Defender](/microsoft-365/security/office-365-security/step-by-step-guides/how-to-prioritize-manage-investigate-and-respond-to-incidents-in-microsoft-365-defender?view=o365-21vianet) | added |

+| 6/1/2022 | [How to run attack simulations for your team](/microsoft-365/security/office-365-security/step-by-step-guides/how-to-run-attack-simulations-for-your-team?view=o365-21vianet) | added |

+| 6/1/2022 | [How to setup automated attacks and training within Attack simulation training](/microsoft-365/security/office-365-security/step-by-step-guides/how-to-setup-attack-simulation-training-for-automated-attacks-and-training?view=o365-21vianet) | added |

+| 6/1/2022 | [Optimize and correct security policies with configuration analyzer](/microsoft-365/security/office-365-security/step-by-step-guides/optimize-and-correct-security-policies-with-configuration-analyzer?view=o365-21vianet) | added |

+| 6/1/2022 | [Protect your c-suite with Priority account protection in Microsoft Defender for Office 365 Plan 2](/microsoft-365/security/office-365-security/step-by-step-guides/protect-your-c-suite-with-priority-account-protection?view=o365-21vianet) | added |

+| 6/1/2022 | [Search for emails and remediate threats using Threat Explorer in Microsoft 365 Defender](/microsoft-365/security/office-365-security/step-by-step-guides/search-for-emails-and-remediate-threats?view=o365-21vianet) | added |

+| 6/1/2022 | [About the Exchange Administrator role](/microsoft-365/admin/add-users/about-exchange-online-admin-role?view=o365-21vianet) | modified |

+| 6/2/2022 | [Clone an existing package](/microsoft-365/test-base/clonepackage?view=o365-21vianet) | added |

+| 6/2/2022 | [Create device security policies in Basic Mobility and Security](/microsoft-365/admin/basic-mobility-security/create-device-security-policies?view=o365-21vianet) | modified |

+| 6/2/2022 | [Wipe a mobile device in Basic Mobility and Security](/microsoft-365/admin/basic-mobility-security/wipe-mobile-device?view=o365-21vianet) | modified |

+| 6/2/2022 | [Test your application on Test Base](/microsoft-365/test-base/testoverview?view=o365-21vianet) | modified |

+| 6/2/2022 | [Redirecting accounts from Microsoft Defender for Identity to Microsoft 365 Defender](/microsoft-365/security/defender/microsoft-365-security-mdi-redirection?view=o365-21vianet) | added |

+| 6/2/2022 | [Learn about trainable classifiers](/microsoft-365/compliance/classifier-learn-about?view=o365-21vianet) | modified |

+| 6/2/2022 | [eDiscovery (Premium) limits](/microsoft-365/compliance/limits-ediscovery20?view=o365-21vianet) | modified |

+| 6/2/2022 | [What's new in Microsoft 365 Lighthouse](/microsoft-365/lighthouse/m365-lighthouse-whats-new?view=o365-21vianet) | modified |

+| 6/2/2022 | [Data move general FAQ](/microsoft-365/enterprise/data-move-faq?view=o365-21vianet) | added |

+| 6/2/2022 | Data move general FAQ | removed |

+| 6/2/2022 | [During and after your data move](/microsoft-365/enterprise/during-and-after-your-data-move?view=o365-21vianet) | modified |

+| 6/2/2022 | [IPv6 support in Microsoft 365 services](/microsoft-365/enterprise/ipv6-support?view=o365-21vianet) | modified |

+| 6/2/2022 | [Moving core data to new Microsoft 365 datacenter geos](/microsoft-365/enterprise/moving-data-to-new-datacenter-geos?view=o365-21vianet) | modified |

+| 6/2/2022 | [Microsoft 365 data locations](/microsoft-365/enterprise/o365-data-locations?view=o365-21vianet) | modified |

+| 6/2/2022 | [How to request your data move](/microsoft-365/enterprise/request-your-data-move?view=o365-21vianet) | modified |

+| 6/2/2022 | [Configure and validate exclusions based on extension, name, or location](/microsoft-365/security/defender-endpoint/configure-extension-file-exclusions-microsoft-defender-antivirus?view=o365-21vianet) | modified |

+| 6/2/2022 | [Get started with troubleshooting mode in Microsoft Defender for Endpoint (preview)](/microsoft-365/security/defender-endpoint/enable-troubleshooting-mode?view=o365-21vianet) | modified |

+| 6/2/2022 | [Microsoft Defender Antivirus event IDs and error codes](/microsoft-365/security/defender-endpoint/troubleshoot-microsoft-defender-antivirus?view=o365-21vianet) | modified |

+| 6/3/2022 | [Communication compliance policies](/microsoft-365/compliance/communication-compliance-policies?view=o365-21vianet) | modified |

+| 6/3/2022 | [Microsoft Defender for Business frequently asked questions](/microsoft-365/security/defender-business/mdb-faq?view=o365-21vianet) | modified |

+| 6/3/2022 | [Learn about trainable classifiers](/microsoft-365/compliance/classifier-learn-about?view=o365-21vianet) | modified |

+| 6/3/2022 | [Use file plan to manage retention labels](/microsoft-365/compliance/file-plan-manager?view=o365-21vianet) | modified |

+| 6/3/2022 | [Case study - Contoso configures an inappropriate text policy](/microsoft-365/compliance/communication-compliance-case-study?view=o365-21vianet) | modified |

+| 6/3/2022 | [Plan for communication compliance](/microsoft-365/compliance/communication-compliance-plan?view=o365-21vianet) | modified |

+| 6/3/2022 | [Adjust scheduling preferences for Scheduler for Microsoft 365 Overview](/microsoft-365/scheduler/scheduler-preferences?view=o365-21vianet) | modified |

+| 6/3/2022 | [Setup overview for Microsoft 365 for Campaigns](/microsoft-365/business-premium/m365-campaigns-setup?view=o365-21vianet) | added |

+| 6/3/2022 | [Work with a Microsoft partner](/microsoft-365/business-premium/m365bp-ms-partner?view=o365-21vianet) | added |

+| 6/3/2022 | [Threats detected by Microsoft Defender Antivirus](/microsoft-365/business-premium/m365bp-threats-detected-defender-av?view=o365-21vianet) | added |

+| 6/3/2022 | [Microsoft Defender for Business Premium trial playbook](/microsoft-365/business-premium/m365bp-trial-playbook-microsoft-business-premium?view=o365-21vianet) | added |

+| 6/3/2022 | [Use Microsoft Teams for collaboration](/microsoft-365/business-premium/create-teams-for-collaboration?view=o365-21vianet) | modified |

+| 6/3/2022 | [Sign in to Microsoft 365](/microsoft-365/business-premium/m365-campaigns-sign-in?view=o365-21vianet) | modified |

+| 6/3/2022 | [Increase threat protection for Microsoft 365 Business Premium](/microsoft-365/business-premium/m365bp-increase-protection?view=o365-21vianet) | modified |

+| 6/3/2022 | [Edit or set application protection settings for Windows devices](/microsoft-365/business-premium/m365bp-protection-settings-for-windows-10-devices?view=o365-21vianet) | modified |

+| 6/3/2022 | [Secure Windows devices](/microsoft-365/business-premium/m365bp-secure-windows-devices?view=o365-21vianet) | modified |

+| 6/3/2022 | [Welcome to Microsoft 365 Business Premium](/microsoft-365/business-premium/m365bp-setup-overview?view=o365-21vianet) | modified |

+| 6/3/2022 | [Set up Microsoft 365 Business Premium](/microsoft-365/business-premium/m365bp-setup?view=o365-21vianet) | modified |

+| 6/3/2022 | [Validate app protection settings on Android or iOS devices](/microsoft-365/business-premium/m365bp-validate-settings-on-android-or-ios?view=o365-21vianet) | modified |

+| 6/3/2022 | [Validate app protection settings for Windows 10 PCs](/microsoft-365/business-premium/m365bp-validate-settings-on-windows-10-pcs?view=o365-21vianet) | modified |

+| 6/3/2022 | Setup overview for Microsoft 365 for Campaigns | removed |

+|Sweden |SWE |Europe datacenters |

+- **Time zone**. The time zone Scheduler uses to determine an appropriate time for meetings. See [Add, remove, or change time zones](https://support.microsoft.com/en-us/office/add-remove-or-change-time-zones-5ab3e10e-5a6c-46af-ab48-156fedf70c04) for information.

+## What's included with Defender for Business

+## Network Protection

+>[!NOTE]

+>Network Protection on Microsoft Defender for Endpoint is now in public preview. The following information relates to prereleased product which may be substantially modified before it's commercially released. Microsoft makes no warranties, express or implied, with respect to the information provided here.

+This feature provides protection against rogue Wi-Fi related threats and rogue certificates which are the primary attack vector for Wi-Fi networks. Admins can list the root Certificate Authority (CA) and private root CA certificates in Microsoft Endpoint Manager Admin center and establish trust with endpoints. It provides the user a guided experience to connect to secure networks and also notifies them if a related threat is detected.

+It includes several admin controls to offer flexibility, such as the ability to configure the feature from within the Microsoft Endpoint Manager Admin center as well as add trusted certificates. Admins can also enable [privacy controls](android-configure.md) to configure the data that is sent by Defender for Endpoint from Android devices.

+Network protection in Microsoft Defender for endpoint is enabled by default. Admins can use the following steps to **configure Network protection in Android devices.**

+1. In Microsoft Endpoint Manager Admin, navigate to Apps > App configuration policies. Create a new App configuration policy.

+ > [!div class="mx-imgBorder"]

+ > 

+1. Provide a name and description to uniquely identify the policy. Select **'Android Enterprise'** as the platform and **'Personally-owned work profile only'** as the profile type and **'Microsoft Defender'** as the Targeted app.

+ > [!div class="mx-imgBorder"]

+ > 

+1. In Settings page, select **'Use configuration designer'** and add **'Enable Network Protection in Microsoft Defender'** as the key and value as **'0'** to diable Network Protection. (Network protection is enabled by default)

+ > [!div class="mx-imgBorder"]

+ > 

+

+ > [!div class="mx-imgBorder"]

+ > 

+1. If your organization uses root CAΓÇÖs which could be private in nature, explicit trust needs to be established between Intune (MDM solution) and userΓÇÖs devices so that defender doesnΓÇÖt detect flag them as rogue certificates.

+ To establish trust for the root CAs use **'Trusted CA certificate list for Network Protection (Preview)'** as the key and in value add the **'comma separated list of certificate thumbprints'**.

+ > [!div class="mx-imgBorder"]

+ > 

+1. For other configurations related to Network protection, add the following keys and appropriate corresponding value.

+<br>

+ | Configuration Key| Description|

+ |||

+ |Enable Network Protection Privacy|1 - Enable , 0 - Disable ; This setting is managed by IT admins to enable or disable privacy in network protection.|

+ |Enable Users to Trust Networks and Certificates|1 - Enable , 0 - Disable ; This setting is used by IT admins to enable or disable the end user in-app experience to trust and untrust the unsecure and suspicious networks and malicious certificates.|

+ |Automatic Remediation of Network Protection Alerts|1 - Enable , 0 - Disable ; This setting is used by IT admins to enable or disable the remediation alerts that is sent when a user performs remediation activities, such as switching to a safer Wi-Fi access points or deleting suspicious certificates detected by Defender|

+1. Add the required groups on which the policy will have to be applied. Review and create the policy.

+> Vulnerability assessment is part of [Microsoft Defender Vulnerability Management](../defender-vulnerability-management/defender-vulnerability-management.md) in Microsoft Defender for Endpoint.

+### What are the removable storage media and policy limitations?

+Either from the Microsoft Endpoint Manager admin center (Intune) or through Microsoft Graph API, the backend call is done through OMA-URI (GET to read or PATCH to update) and therefore the limitation is the same as any OMA-URI custom configuration profile in Microsoft which is officially 350,000 characters for XML files.

+

+For example, if you need two blocks of entries per user SID to "Allow"/"Audit allowed" specific users and two blocks of entries at the end to "Deny" all, you will be able to manage 2,276 users.

+Android| <br /> | <br /> | <br />

+iOS| <br /> | <br /> | <br />

+<summary>20220603.3</summary>

+&ensp;Package version: **20220603.3**<br/>

+&ensp;Platform version: **4.18.2203.5**<br/>

+&ensp;Engine version: **1.1.19200.6**<br/>

+&ensp;Signature version: **1.367.1009.0**<br/>

+### Fixes

+- None

+### Additional information

+- None

+<br/>

+</details><details>

+|Network Protection *(Public Preview)*| Protection against rogue Wi-Fi related threats and rogue certificates; ability to allow list the root CA and private root CA certificates in Intune; establish trust with endpoints.|

+Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://signup.microsoft.com/create-account/signup?products=7f379fee-c4f9-4278-b0a1-e4c8c2fcdf7e&ru=https://aka.ms/MDEp2OpenTrial?ocid=docs-wdatp-exposedapis-abovefoldlink)

+Network protection is a part of the attack surface reduction group of solutions in Microsoft Defender for Endpoint. Network protection enables layer the network layer of blocking URLs and IP addresses. Network protection can block URLs from being accessed by using certain browsers and standard network connections.

+By default, network protection guards your computers from known malicious URLs using the SmartScreen feed, which blocks malicious URLs in a manner similar to SmartScreen in Microsoft Edge browser. The network protection functionality can be extended to:

+- Block unsanctioned services from Microsoft Defender for Cloud Apps (formerly Microsoft Cloud App Security)

+- Block sites based on category (Web content filtering)

+Network Protection is a critical part of the Microsoft protection and response stack.

+## Optimizing network protection performance

+Network Protection now has a performance optimization that allows Block mode to start asynchronously inspecting long connections after they are validated and allowed by SmartScreen, which might provide a potential reduction in the cost that inspection has on bandwidth and can also help with app compatibility problems. This optimization capability is on by default. You can turn off this capability by using the following PowerShell cmdlet:

+`Set-MpPreference -AllowSwitchToAsyncInspection $false`

+You can find the Microsoft protection log file in **C:\ProgramData\Microsoft\Windows Defender\Support**.

+|[</li></ul>|

+<a name="intune-enrollment"></a>

+### Intune enrollment options

+This guidance helps you decide which enrollment option is best for your endpoints, including options for:

+- Windows devices

+- macOS

+- iOS/iPad

+- Android

+| Item | Description |

+|:--|:--|

+|[</li><li>[Microsoft Intune planning guide](/mem/intune/fundamentals/intune-planning-guide)</ul>|

+|[</li></ul>|

+Use the guidance in this article together with this illustrated version of enrollment options for each platform.

+[](https://download.microsoft.com/download/e/6/2/e6233fdd-a956-4f77-93a5-1aa254ee2917/msft-intune-enrollment-options.pdf) <br/> [PDF](https://download.microsoft.com/download/e/6/2/e6233fdd-a956-4f77-93a5-1aa254ee2917/msft-intune-enrollment-options.pdf) | [Visio](https://download.microsoft.com/download/e/6/2/e6233fdd-a956-4f77-93a5-1aa254ee2917/msft-intune-enrollment-options.vsdx) <br/> Updated June 2022

+| &nbsp; |Enroll |Onboard |

+ Title: 'Create a new Test Base account'

+description: Details on how to create a new account on Test Base

+search.appverid: MET150

+audience: Software-Vendor

+ms.localizationpriority: medium

+f1.keywords: NOCSH

+# Step 1: Create a Test Base account

+If you don't have an Azure subscription, create a [free account](https://azure.microsoft.com/free/) before you begin.

+## Enter details for test base account

+

+1. Search for **'Test Base'** in the Azure portal.

+

+2. Click **'Create'** to create a Test Base account.

+

+3. Read through the ```Terms of Use``` then select the checkbox to confirm your satisfaction with the ```Terms of Use```.

+

+4. Fill in the correct information under the following requirements:

+ - Subscription: Resource Group

+ - Instance Details: Name.

+**Currently, Test Base only supports Standard Pricing tier.**

+

+5. Finally, click on ```Review + Create``` to validate and enable your newly created account.

+## Next steps

+Advance to the next article to get started with Step 2: **Learn how upload your package.**

+> [!div class="nextstepaction"]

+> [Next step](uploadapplication.md)

+<!

+Add button for next page

+-->

+ See [Creating and Testing Binary Files on Test Base](testapplication.md) to prepare a package with a Binary application file (that is, .exe, .msi) for uploading and testing.

+ See [Uploading pre-built zip package](uploadapplication.md) if you already have an offline built package in .zip format.

+ Title: 'Uploading a pre-built zip package'

+description: How to edit, upload, and test a pre-built .zip file on Test Base

+search.appverid: MET150

+audience: Software-Vendor

+ms.localizationpriority: medium

+f1.keywords: NOCSH

+# Uploading a pre-built zip package

+This section provides all the steps necessary to edit, upload, and test on Test Base when you already have a pre-built .zip file.

+**Pre-requests**

+ - Test Base account: If you don't have a **Test Base** account, you'll need to create one before proceeding, as described in [Creating a Test Base account](createAccount.md).

+ - Pre-built .zip file: A .zip file built offline containing your application binary and test scripts. See [Build a package | Microsoft Docs](buildpackage.md) to prepare your Test Base .zip package from desktop.

+## Upload an offline built package

+In the [Azure portal](https://portal.azure.com/), go to the **Test Base** account for which you'll be creating and uploading your package and perform the steps that follow.

+In the left-hand menu under **Package catalog**, select the **New package**. Then select the third card **'Upload pre-built package'**.

+> [!div class="mx-imgBorder"]

+> [  ](Media/uploadingzip01-new-package.png#lightbox)

+### Step 1. Define content

+1. In the **Package source** section, select Pre-built package (.zip) in the Package source type.

+ > [!div class="mx-imgBorder"]

+ > [  ](Media/uploadingzip02-define-content.png#lightbox)

+2. Upload your pre-built package (zip) file by selecting 'Select file' button.

+3. Type in your package's name and version in the **Basic information** section.

+ > [!NOTE]

+ > The combination of package name and version must be unique within your Test Base account.

+ > [!div class="mx-imgBorder"]

+ > 

+4. After all the requested information is specified, select the **Next: Configuration test** button.

+ > [!div class="mx-imgBorder"]

+ > 

+### Step 2. Configure test

+1. Select the **Type of test** according to your pre-built package. There are two test types supported:

+ - An **Out of Box (OOB) test** performs an install, launch, close, and uninstall of your package. After the install, the launch-close routine is repeated 30 times before a single uninstall is run. The OOB test provides you with standardized telemetry on your package to compare across Windows builds.

+ - A **Functional test** executes your uploaded test script(s) on your package. The scripts are run in the sequence you specified and a failure in a particular script will stop subsequent scripts from executing.

+ > [!NOTE]

+ > Out of Box test is optional now.

+ > [!div class="mx-imgBorder"]

+ > [  ](Media/uploadingzip05-configure-test.png#lightbox)

+2. Once all required info is filled out, select the Next button.

+### Step 3. Edit package

+1. In the Edit package tab, you can:

+ - check your package folder and file structure in **Package Preview**.

+ - edit your scripts online with the **PowerShell code editor**.

+ > [!NOTE]

+ > Your pre-built package is extracted to edit. Script tags are added according to the script name, please review these script tags and adjust if need. Script tags indicate the correct script paths which will be used when testing is initiated.

+ > [!div class="mx-imgBorder"]

+ > [  ](Media/uploadingzip06-edit-package.png#lightbox)

+2. In the **Package Preview**, per your need, you can:

+ - create a new folder.

+ - create a new script.

+ - upload a new file.

+3. Under **scripts folder**, sample scripts and script tags have been created for you. All script tags are editable. You can reassign them to reference your script paths.

+ - If the **Out of Box test** is selected in step 2, you can see the **outofbox** folder under the scripts folder. You can also choose to add **'Reboot after install'** tag for the Install script.

+ > [!div class="mx-imgBorder"]

+ > [  ](Media/uploadingzip07-edit-script.png#lightbox)

+ > [!NOTE]

+ > Install, Launch, and Close script tags are mandatory for the OOB test type. Reassigning tags ensures that the correct script path will be used when testing is initiated.

+ > [!div class="mx-imgBorder"]

+ > [  ](Media/uploadingzip08-required-prompt.png#lightbox)

+ - If the **Functional test** is selected in step 2, you can see the **functional** folder under the scripts folder. More functional test scripts can be added using the **'Add to functional test list'** button. You need a minimum of one (1) script and can add up to eight (8) functional test scripts.

+ > [!div class="mx-imgBorder"]

+ > [  ](Media/uploadingzip09-add-to-list.png#lightbox)

+ > [!NOTE]

+ > At least 1 functional script tag is mandatory for the functional test type.

+ Select **Add to functional test list** to add more functional scripts from the action panel. Here are the options:

+ - Reorder the script paths by dragging with the left ellipse buttons. The functional scripts run in the sequence they're listed. A failure in a particular script stops subsequent scripts from executing.

+ - Set 'Restart after execution' for multiple scripts.

+ - Apply update before on specific script path. This update is for users who wish to perform functional tests to indicate when the Windows Update patch should be applied in the sequence of executing their functional test scripts.

+ > [!div class="mx-imgBorder"]

+ > [  ](Media/uploadingzip10-functional-test.png#lightbox)

+4. Once all required info is filled out, you can proceed to step 4 by selecting the Next button at the bottom.

+### Step 4. Test matrix

+1. In the Test matrix tab, select the **OS update type**. There are two OS update types supported.

+ - The **Security updates** enable your package to be tested against incremental churns of Windows pre-release monthly security updates.

+ - The **Feature updates** enable your package to be tested against Windows pre-release bi-annual feature updates builds from the Windows Insider Program.

+2. Select the OS version(s) for Security update tests.

+ If **Security updates** is selected in OS update type, you need to select the OS version(s) of Windows your package will be tested on.

+ > [!NOTE]

+ > If you select to test your package against both Server and Client OSes, please make sure that the package is compatible and can run on both OSes.

+3. Select options for Feature update tests.

+ - If **Feature updates** is selected in OS update type, you need to finish the following options.

+ - For **Insider Channel**, select the Windows Insider Program Channel as the build that your packages should be tested against. We currently use builds flighted in the **Insider Beta Channel**.

+ - For **OS baseline for Insight**, select the Windows OS version to be used as a baseline in comparing your test results.

+ > [!div class="mx-imgBorder"]

+ > [  ](Media/uploadingzip11-test-matrix.png#lightbox)

+4. Once all the required info is filled out, you can proceed to step 5 (the last step) by selecting the Next button at the bottom.

+### Step 5. Review + publish

+1. Review all the information for correctness and accuracy of your draft package. To make corrections, you can navigate back to early steps where you specified the settings as needed.

+ > [!div class="mx-imgBorder"]

+ > [  ](Media/uploadingzip12-review.png#lightbox)

+2. You can also check the notification box to receive the email notification of your package for the validation run completion notice.

+ > [!div class="mx-imgBorder"]

+ > 

+3. When you're done finalizing the input data configuration, select **Publish** to upload your package to Test Base. The notification that follows displays when the package is successfully published and has entered the Verification process.

+ > [!NOTE]

+ > The package must be verified before it is accepted for future tests. The Verification can take up to 24 hours, as it includes running the package in an actual test environment.

+ > [!div class="mx-imgBorder"]

+ > 

+4. You'll be redirected to the **Manage Packages** page to check the progress of your newly uploaded package.

+ > [!div class="mx-imgBorder"]

+ > [  ](Media/uploadingzip15-package-list.png#lightbox)

+ > [!NOTE]

+ > When the Verification process is complete, the Verification status will change to Accepted. At this point, no further actions are required. Your package will be acquired automatically for execution whenever your configured operating systems have new updates available. If the Verification process fails, your package is not ready for testing. Please check the logs and assess whether any errors occurred. You may also need to check your package configuration settings for potential issues.

+## Continue package creation

+If you have any previous draft packages, you can view the list of your saved draft packages on the **New package** page. You can continue your edit directly to the step you paused last time by selecting the 'edit' pencil icon.

+> [!div class="mx-imgBorder"]

+> [  ](Media/uploadingzip16-draft-packages.png#lightbox)

+> [!NOTE]

+> The dashboard only shows the working in progress package. For the published package, you can check the Manage Packages page.

+ Title: 'Understand your usage cost'

+description: Billing hub feature to help users understand their test usage and cost

+search.appverid: MET150

+audience: Software-Vendor

+ms.localizationpriority: medium

+f1.keywords: NOCSH

+# Understand your usage cost

+> [!NOTE]

+> Test Base now offers the billing hub feature to help users understand their test usage and cost.

+## Usage console under Billing hub

+By access the new ΓÇ£Usage consoleΓÇ¥ under the "Billing hub" section from portal, user will be able to review their Total usage for the selected period, Free hour balance and the Billable cost based on the usage.

+**Prep Step**

+1. Login with your Test Base account.

+2. In the navigation bar on the left, click Usage console under Billing Hub

+> [!div class="mx-imgBorder"]

+> [  ](Media/usagecost01-usage-console.png#lightbox)

+Users can switch between different time periods or specify customized start end date up to three months from the current date.

+> [!div class="mx-imgBorder"]

+> [  ](Media/usagecost02-switch-time.png#lightbox)

+Usage details by package and test type can be further reviewed in the lower section after you click on the "Expand all". There normally will be one or more test executions for a particular package scheduled for a specific test type on the target platform.

+> [!div class="mx-imgBorder"]

+> [  ](Media/usagecost03-usage-details.png#lightbox)

+Clicking on the "Detail" column will pop up the detailed execution records for all the executions including the execution ID, usage hour breakdown by free hour portion and paid hour portion.

+> [!div class="mx-imgBorder"]

+> [  ](Media/usagecost04-execution-records.png#lightbox)

+In other, Export function is provided to download the detailed usage report for your own analysis or reporting purposes.

+> [!div class="mx-imgBorder"]

+> [  ](Media/usagecost05-export-function.png#lightbox)

+> [!NOTE]

+> Please be remind that usage console currently shows all test usage records at subscription level. You might notice test activities from other test accounts if you have more than one Test Base account recreated under the subscription.