-The Activity chart shows you daily activity count in the reporting period separated by product.

-The Services chart shows you count of users by activity type and Service.

-The **Active Users** chart shows you the total number of users using Microsoft Edge when used to access to Microsoft 365 services over the selected time period.

-| **Used Microsoft Edge**| Displays tick mark if the user used Microsoft Edge to connect to Microsoft 365 services.|

-|1. <br/> |The **Email activity** report can be viewed for trends over the last 7 days, 30 days, 90 days, or 180 days. However, if you select a particular day in the report, the table will show data for up to 28 days from the current date (not the date the report was generated). <br/> |

-|2. <br/> |The data in each report usually covers up to the last 24 to 48 hours. <br/> |

-|3. <br/> |The **Activity** chart enables you to understand the trend of the amount of email activity going on in your organization. You can understand the split of email send, email read, email received, meeting created, or meeting interacted activities. <br/> |

-|4. <br/> |The **User** chart enables you to understand the trend of the amount of unique users who are generating the email activities. You can look at the trend of users performing email sending, email reading, email receiving, meeting creating, or meeting interacting activities. <br/> |

-|5. <br/> | On the **Activity** chart, the Y axis is the count of activity of the type email sent, email received, email read, meeting created, and meeting interacted. <br/> On the **Users** activity chart, the Y axis is the user's performing activity of the type email sent, email received, email read, meeting created, or meeting interacted. <br/> The X axis on both charts is the selected date range for this specific report. <br/> |

-|6. <br/> |You can filter the series you see on the chart by selecting an item in the legend. <br/> |

-|7. <br/> | The table shows you a breakdown of the email activities at the per-user level. This shows all users that have an Exchange product assigned to them and their email activities. <br/> <br/> **Username** is the email address of the user. <br/> **Display name** is the full name if the user. <br/> **Deleted** refers to the user whose current state is deleted, but was active during some part of the reporting period of the report. <br/> **Deleted date** is the date the user was deleted. <br/> **Last activity date** refers to the last time the user performed a read or send email activity. <br/> **Send actions** is the number of times an email send action was recorded for the user. <br/> **Receive actions** is the number of times an email received action was recorded for the user. <br/> **Read actions** is the number of times an email read action was recorded for the user. <br/> **Meeting created actions** is the number of times a meeting request send action was recorded for the user. <br/> **Meeting interacted actions** is the number of times a meeting request accept, tentative, decline, or cancel action was recorded for the user. <br/> **Product assigned** is the products that are assigned to this user. <br/> If your organization's policies prevents you from viewing reports where user information is identifiable, you can change the privacy setting for all these reports. Check out the **How do I hide user level details?** section in the [Activity Reports in the Microsoft 365 admin center](activity-reports.md). <br/> |

-|8. <br/> |Select **Choose columns** to add or remove columns from the report. <br/> |

-|9. <br/> |You can also export the report data into an Excel .csv file, by selecting the **Export** link. This exports data of all users and enables you to do simple sorting and filtering for further analysis. If you have less than 2000 users, you can sort and filter within the table in the report itself. If you have more than 2000 users, in order to filter and sort, you will need to export the data. <br/> |

-|||

-

-|1. <br/> |The **Email apps usage** report can be viewed for trends over the last 7 days, 30 days, 90 days, or 180 days. However, if you select a particular day in the report, the table will show data for up to 28 days from the current date (not the date the report was generated). <br/> |

-|2. <br/> |The data in each report usually covers up to the last 24 to 48 hours. <br/> |

-|3. <br/> |The **Users** view shows you the number of unique users that connected to Exchange Online using any email app. <br/> |

-|4. <br/> |The **Apps** view shows you the number of unique users by app over the selected time period. <br/> |

-|5. <br/> |The **Versions** view shows you the number of unique users for each version of Outlook in Windows. <br/> |

-|6. <br/> | On the **Users** chart, the Y axis is the total count of unique users that connected to an app on any day of the reporting period. <br/> On the **Users** chart, the X axis is number of unique users that used the app for that reporting period. <br/> On the **Apps** chart, the Y axis is the total count of unique users who used a specific app during the reporting period. <br/> On the **Apps** chart, the X axis is the list of apps in your organization. <br/> On the **Versions** chart, the Y axis is the total count of unique users using a specific version of Outlook desktop. If the report can't resolve the version number of Outlook, the quantity will show as **Undetermined**. <br/> On the **Versions** chart, the X axis is the list of apps in your organization. <br/> |

-|7. <br/> |You can filter the series you see on the chart by selecting an item in the legend. <br/> |

-|8. <br/> | You might not see all the items in the list below in the columns until you add them.<br/> **Username** is the name of the email app's owner. <br/> **Last activity date** is the latest date the user read or sent an email message. <br/> **Mac mail**, **Mac Outlook** and **Outlook**, **Outlook mobile** and **Outlook on the web** are examples of email apps you may have in your organization. <br/> If your organization's policies prevents you from viewing reports where user information is identifiable, you can change the privacy setting for all these reports. Check out the **How do I hide user level details?** section in the [Activity Reports in the Microsoft 365 admin center](activity-reports.md). <br/> |

-|9. <br/> |Select **Choose columns** to add or remove columns from the report. <br/> |

-|10. <br/> |You can also export the report data into an Excel .csv file, by selecting the **Export** link. This exports data of all users and enables you to do simple sorting and filtering for further analysis. If you have less than 2000 users, you can sort and filter within the table in the report itself. If you have more than 2000 users, in order to filter and sort, you will need to export the data. <br/> |

-|||

-1. In the admin center, go to the **Reports** \> <a href="https://go.microsoft.com/fwlink/p/?linkid=2074756" target="_blank">Usage</a> page.

-You can view the activities in the Forms report by choosing the **Activity** tab.<br/>

-Select **Choose columns** to add or remove columns from the report. <br/> 

-You can also export the report data into an Excel .csv file by selecting the **Export** link. This exports data of all users and enables you to do simple sorting and filtering for further analysis. If you have less than 2000 users, you can sort and filter within the table in the report itself. If you have more than 2000 users, in order to filter and sort, you will need to export the data.

-|**Metric**|**Definition**|

-|Username <br/> |The email address of the user who performed the activity on Microsoft Forms. <br/> |

-|Last activity date (UTC) <br/> |The latest date a form activity was performed by the user for the selected date range. To see activity that occurred on a specific date, select the date directly in the chart.<br/><br/>This will filter the table to display file activity data only for users who performed the activity on that specific day. <br/> |

-|Number of forms created <br/> |The number of forms that the user created. <br/> |

-|Number of forms responded <br/> |The number of forms that the user has submitted responses to.|

-|||

-1. In the admin center, go to the **Reports** \> <a href="https://go.microsoft.com/fwlink/p/?linkid=2074756" target="_blank">Usage</a> page.

-You can view the activities in the Dynamics 365 Customer Voice report by choosing the **Activity** tab.<br/>

-You can also export the report data into an Excel .csv file by selecting the **Export** link. This exports data of all users and enables you to do simple sorting and filtering for further analysis. If you have less than 2000 users, you can sort and filter within the table in the report itself. If you have more than 2000 users, in order to filter and sort, you'll need to export the data.

-|**Metric**|**Definition**|

-|Username <br/> |The email address of the user who performed the activity on Microsoft Forms. <br/> |

-|Last activity date (UTC) <br/> |The latest date a form activity was performed by the user for the selected date range. To see activity that occurred on a specific date, select the date directly in the chart.<br/>This will filter the table to display file activity data only for users who performed the activity on that specific day. <br/> |

-|Number of surveys created <br/> |The number of surveys that the user created. <br/> |

-|Number of survey responses <br/> |The number of responses from responders to whom the survey was distributed.|

-|||

-|1. |The **Mailbox usage** report can be viewed for trends over the last 7 days, 30 days, 90 days, or 180 days. However, if you select a particular day in the report, the table will show data for up to 28 days from the current date (not the date the report was generated). |

-|2. |The data in each report usually covers up to the last 24 to 48 hours. |

-|3. |The Mailbox chart shows you the total number of user mailbox in your organization, and the total number that are active on any given day of the reporting period. A user mailbox is considered active if it had an email send, read, create appointment, send meeting, accept meeting, decline meeting and cancel meeting activity. |

-|4. |The **Storage** chart shows you amount of storage used in your organization. Storage Chart doesn't include archive mailboxes. For more information about auto-expanding archiving, see [Overview of auto-expanding archiving in Microsoft 365](../../compliance/autoexpanding-archiving.md). |

-|5. | The **Quota** chart shows you the number of user mailboxes in each quota category. There are four quota categories: <br/> Good - number of users whose storage used is below the issue warning quota. <br/> Warning - number of users whose storage used is at or above issue warning, but below prohibit send quota <br/> Can't send - number of users whose storage used is at or above the prohibit send quota, but below prohibit send/receive quota <br/> Can't send/receive - number of users whose storage used is at or above prohibit send/receive quota |

-|6. | On the **Mailbox** chart, the Y axis is the count of user mailboxes. <br/> On the **Storage** chart, the Y axis is the amount of storage being used by user mailboxes in your organization. <br/> On the **Quota** chart, the Y axis is the number of user mailboxes in each storage quota. <br/> The X axis on the Mailbox and Storage charts is the selected date range for this specific report. <br/> The X axis on the Quota charts is the quota category. |

-|7. |You can filter charts you see by selecting an item in the legend. |

-|8. | The table shows you a breakdown of mailbox usage at the per-user level. You can add additional columns to the table. <br/> **User name** is the email address of the user. <br/> **Display Name** is the full name if the user. <br/> **Deleted** refers to the mailbox whose current state is deleted, but was active during some part of the reporting period of the report. <br/> **Deleted date** is the date the mailbox was deleted. <br/> **Create date** is the date the mailbox was created. <br/> **Last activity date** refers to the date the mailbox had an email send or read activity. <br/> **Item count** refers to the total number of items in the mailbox. <br/> **Storage used (MB)** refers to the total storage used. <br/> **Deleted Item Count** refers to the total number of deleted items in the mailbox. <br/> **Deleted Item Size (MB)** refers to the total size of all deleted items in the mailbox. <br/> **Issue warning quota (MB)** refers to the storage limit when the mailbox owner will receive a warning that it's about to hit the storage quota. <br/> **Prohibit send quota (MB)** refers to the storage limit when the mailbox can no longer send emails. <br/> **Prohibit send receive quota (MB)** refers to the storage limit when the mailbox can no longer send or receive emails. <br/> **Recoverable Item Quota (MB)** refers to the storage limit for recoverable (deleted) items in the mailbox when the mailbox can no longer delete emails. <br/> **Has Archive** shows if the mailbox has an online archive enabled. <br/> If your organization's policies prevents you from viewing reports where user information is identifiable, you can change the privacy setting for all these reports. Check out the **Hide user details in the reports** section in the [Activity Reports in the Microsoft 365 admin center](activity-reports.md). |

-|9. |Select **Choose columns** to add or remove columns from the report. <br/> :::image type="content" alt-text="Mailbox usage report - choose columns." source="../../media/ea3d0b18-6ac6-41b0-9bb9-4844f040ea75.png":::|

-|10. |You can also export the report data into an Excel .csv file, by selecting the **Export** link. |

-|||

-Select **Choose columns** to add or remove columns from the report. <br/> 

-You can also export the report data into an Excel .csv file by selecting the **Export** link. This exports data of all users and enables you to do simple sorting and filtering for further analysis. If you have less than 2000 users, you can sort and filter within the table in the report itself. If you have more than 2000 users, in order to filter and sort, you will need to export the data.

-Select **Choose columns** to add or remove columns from the report. <br/> 

-You can also export the report data into an Excel .csv file by selecting the **Export** link. This exports data of all users and enables you to do simple sorting and filtering for further analysis. If you have less than 2000 users, you can sort and filter within the table in the report itself. If you have more than 2000 users, in order to filter and sort, you will need to export the data.

-1. In the admin center, go to the **Reports** \> <a href="https://go.microsoft.com/fwlink/p/?linkid=2074756" target="_blank">Usage</a> page.

-You can also export the report data into an Excel .csv file by selecting the **Export** link. This exports data of all users and enables you to do simple sorting and filtering for further analysis. If you have less than 2000 users, you can sort and filter within the table in the report itself. If you have more than 2000 users, in order to filter and sort, you will need to export the data. The exported format for **audio time**, **video time**, and **screen share time** follows ISO8601 duration format.

-1. In the admin center, go to the **Reports** \> <a href="https://go.microsoft.com/fwlink/p/?linkid=2074756" target="_blank">Usage</a> page.

-Select **Choose columns** to add or remove columns from the report. <br/> 

-You can also export the report data into an Excel .csv file by selecting the **Export** link. This exports data of all users and enables you to do simple sorting and filtering for further analysis. If you have less than 2000 users, you can sort and filter within the table in the report itself. If you have more than 2000 users, in order to filter and sort, you'll need to export the data. The exported format for **audio time**, **video time**, and **screen share time** follows ISO8601 duration format.

-|1.|The **Microsoft 365 Apps usage** report can be viewed for trends over the last 7 days, 30 days, 90 days, or 180 days. However, if you select a particular day in the report, the table will show data for up to 28 days from the current date (not the date the report was generated).|

-|2.|The data in each report usually covers up to the last two days. Every six day, we will refresh the report with minor updates to ensure data quality.|

-|3.|The **Users** view shows the trend in the number of active users for each app ΓÇô Outlook, Word, Excel, PowerPoint, OneNote, and Teams. "Active users" are any who perform any intentional actions within these apps.|

-|4.|The **Platforms** view shows the trend of active users across all apps for each platform ΓÇô Windows, Mac, Web, and Mobile.|

-|5.|On the **Users** chart, the Y-axis is the number of unique active users for the respective app. On the **Platforms** chart, the Y-axis is the number of unique users for the respective platform. The X-axis on both charts is the date on which an app was used on a given platform.|

- 6.|You can filter the series you see on the chart by selecting an item in the legend. For example, on the **Users** chart, select Outlook, Word, Excel, PowerPoint, OneDrive, or Teams to see only the info related to each one. Changing this selection doesn't change the info in the grid table below it.|

-|7.|The table shows you a breakdown of data at the per-user level. You can add or remove columns from the table. <br/><br/>**Username** is the email address of the user who performed the activity on Microsoft Apps.<br><br/>**Last activation date (UTC)** is the latest date on which the user activated their Microsoft 365 Apps subscription on a machine or logs on shared computer and starts the app with their account. <br/><br/>**Last activity date (UTC)** is the latest date an intentional activity was performed by the user. To see activity that occurred on a specific date, select the date directly in the chart.<br/><br/>The other columns identify if the user was active on that platform for that app (within Microsoft 365 Apps) in the period selected.|

-|8.|Select the **Choose columns** icon to add or remove columns from the report.|

-|9.|You can also export the report data into an Excel .csv file by selecting the **Export** link. This exports data for all users and enables you to do simple aggregation, sorting, and filtering for further analysis. If you have less than 100 users, you can sort and filter within the table in the report itself. If you have more than 100 users, in order to filter and sort, you will need to export the data.|

-You can also export the report data into an Excel .csv file by selecting the **Export** link. This exports data of all users and enables you to do simple sorting and filtering for further analysis. If you have less than 2000 users, you can sort and filter within the table in the report itself. If you have more than 2000 users, in order to filter and sort, you'll need to export the data.

-You can also export the report data into an Excel .csv file by selecting the **Export** link. This exports data of all users and enables you to do simple sorting and filtering for further analysis. If you have less than 2000 users, you can sort and filter within the table in the report itself. If you have more than 2000 users, in order to filter and sort, you will need to export the data.

-|Last activity date (UTC) <br/> |The latest date a file activity was performed on the OneDrive account for the selected date range. . To see activity that occurred on a specific date, select the date directly in the chart. <br/> |

-1. In the admin center, go to the **Reports** \> <a href="https://go.microsoft.com/fwlink/p/?linkid=2074756" target="_blank">Usage</a> page.

-You can view the usage in the OneDrive report by choosing the **Usage** tab.<br/>

-Select **Choose columns** to add or remove columns from the report. <br/> 

-You can also export the report data into an Excel .csv file by selecting the **Export** link. This exports data of all users and enables you to do simple sorting and filtering for further analysis. If you have less than 2000 users, you can sort and filter within the table in the report itself. If you have more than 2000 users, in order to filter and sort, you will need to export the data.

-Select **Choose columns** to add or remove columns from the report. <br/> 

-You can also export the report data into an Excel .csv file by selecting the **Export** link. This exports data of all users and enables you to do simple sorting and filtering for further analysis. If you have less than 2000 users, you can sort and filter within the table in the report itself. If you have more than 2000 users, in order to filter and sort, you'll need to export the data.

-You can also export the report data into an Excel .csv file by selecting the **Export** link. This exports data of all users and enables you to do simple sorting and filtering for further analysis. If you have less than 2000 users, you can sort and filter within the table in the report itself. If you have more than 2000 users, in order to filter and sort, you will need to export the data.

-1. In the admin center, go to the **Reports** \> <a href="https://go.microsoft.com/fwlink/p/?linkid=2074756" target="_blank">Usage</a> page.

-> [!div class="mx-imgBorder"]

-> 

-1. In the admin center, go to the **Reports** \> <a href="https://go.microsoft.com/fwlink/p/?linkid=2074756" target="_blank">Usage</a> page.

-You can view the activities in the Yammer report by choosing the **Activity** tab.<br/>

-Select **Choose columns** to add or remove columns from the report. <br/> 

-You can also export the report data into an Excel .csv file by selecting the **Export** link. This exports data of all users and enables you to do simple sorting and filtering for further analysis. If you have less than 2000 users, you can sort and filter within the table in the report itself. If you have more than 2000 users, in order to filter and sort, you will need to export the data.

-1. In the admin center, go to the **Reports** \> <a href="https://go.microsoft.com/fwlink/p/?linkid=2074756" target="_blank">Usage</a> page.

-You can view the usage in the OneDrive report by choosing the **Device usage** tab.<br/>

-Select **Choose columns** to add or remove columns from the report. <br/> 

-You can also export the report data into an Excel .csv file by selecting the **Export** link. This exports data of all users and enables you to do simple sorting and filtering for further analysis. If you have less than 2000 users, you can sort and filter within the table in the report itself. If you have more than 2000 users, in order to filter and sort, you will need to export the data.

-1. In the admin center, go to the **Reports** \> <a href="https://go.microsoft.com/fwlink/p/?linkid=2074756" target="_blank">Usage</a> page.

-You can view the groups activities in the Yammer report by choosing the **Groups activity** tab.<br/>

-Select **Choose columns** to add or remove columns from the report. <br/> 

-You can also export the report data into an Excel .csv file by selecting the **Export** link. This exports data of all users and enables you to do simple sorting and filtering for further analysis. If you have less than 2000 users, you can sort and filter within the table in the report itself. If you have more than 2000 users, in order to filter and sort, you'll need to export the data.

-|Group name <br/> |The name of the group. <br/> |

-|Group admin <br/> |The name of the group administrator, or owner. <br/> |

-|Deleted <br/> |The number of deleted Yammer groups. If the group is deleted, but had activity in the reporting period it will show up in the grid with this flag set to true. <br/> |

-|Type <br/> |The type of group, public or private. <br/> |

-|Connected to Office 365 <br/> |Indicates whether the Yammer group is also a Microsoft 365 group. <br/> |

-|Last activity date (UTC) <br/> | The latest date a message was read, posted or liked by the group. <br/> |

-|Members <br/> | The number of members in the group. <br/> |

-|Posted <br/> |The number of messages posted in the Yammer group over the reporting period. <br/>|

-|Read <br/> |The number of conversations read in the Yammer group over the reporting period. <br/> |

-|Liked <br/> |The number of messages liked in the Yammer group over the reporting period. <br/>|

-|Network name <br/> |The full name of the network that the group belongs to. |

-|||

-If youΓÇÖre not going to [reassign the unused licenses to other users](../../managed-desktop/get-started/assign-licenses.md), consider [removing the licenses from your subscription](../../commerce/licenses/buy-licenses.md) so that youΓÇÖre not paying for more licenses than you need.

-Use the following tabs to learn about each mission and how to set up Microsoft 365 Business Premium security.

-## [**Fortify your environment**](#tab/Fortify)

-[:::image type="content" source="medi)

-## Cybersecurity playbook

-The guidance in these missions is based upon the zero trust methodology and helps your business achieve the goals described in the Harvard Kennedy School [Cybersecurity Campaign Playbook](https://go.microsoft.com/fwlink/p/?linkid=2015598). A summary is available for you to download.

-Click (or tap) the infographic to see a larger version, or [Download a copy of the Cybersecurity playbook poster](https://download.microsoft.com/download/9/c/1/9c167271-8209-492e-acc2-38a39d1834c2/m365bp-cybersecurity-playbook.pdf)!

-[Get the PDF](https://download.microsoft.com/download/9/c/1/9c167271-8209-492e-acc2-38a39d1834c2/m365bp-cybersecurity-playbook.pdf).

-## How Microsoft 365 Business Premium helps your business

-Microsoft 365 Business Premium is a comprehensive security and collaboration solution for small and medium businesses. [Learn more about the benefits of Microsoft 365 Business Premium](m365bp-secure-users.md).

-## Next steps

-Now, let's [fortify your environment against cyberattackers](m365bp-setup-overview.md)!

-> [!NOTE]

-> When a term or directive is unclear, you can find definitions in the [glossary of terms](m365bp-glossary.yml).

-## [**Train your team**](#tab/Train)

-[:::image type="content" source="medi)

-## Cybersecurity playbook

-The guidance in these missions is based upon the zero trust methodology and helps your business achieve the goals described in the Harvard Kennedy School [Cybersecurity Campaign Playbook](https://go.microsoft.com/fwlink/p/?linkid=2015598). A summary is available for you to download.

-Click (or tap) the infographic to see a larger version, or [Download a copy of the Cybersecurity playbook poster](https://download.microsoft.com/download/9/c/1/9c167271-8209-492e-acc2-38a39d1834c2/m365bp-cybersecurity-playbook.pdf)!

-[Get the PDF](https://download.microsoft.com/download/9/c/1/9c167271-8209-492e-acc2-38a39d1834c2/m365bp-cybersecurity-playbook.pdf).

-## How Microsoft 365 Business Premium helps your business

-Microsoft 365 Business Premium is a comprehensive security and collaboration solution for small and medium businesses. [Learn more about the benefits of Microsoft 365 Business Premium](m365bp-secure-users.md).

-## Next steps

-Now, let's [fortify your environment against cyberattackers](m365bp-setup-overview.md)!

-> [!NOTE]

-> If a term or directive is unclear, see the [glossary of terms](m365bp-glossary.yml).

-## [**Safeguard managed devices**](#tab/Safeguard)

-[:::image type="content" source="medi)

-## How Microsoft 365 Business Premium helps your business

-A billing profile contains a payment method, Bill-to information, and other invoice settings, such as purchase order number and email invoice preference. You use a billing profile to pay for the products that you buy from Microsoft. A billing profile is automatically created when a user makes a self-service purchase. Each billing profile is invoiced separately.

-> Billing profiles are not available to customers who buy products and services from Microsoft.com or on the **Purchase services** page of the Microsoft 365 admin center.

-On 1 July 2022, Microsoft and other online merchants will no longer store credit card information. To comply with this regulation, Microsoft will remove all stored card details from the Microsoft 365 admin center. To avoid service interruption, you must add a payment method and make a one-time payment for all subscriptions and billing profiles.

-The auto-labeling settings for Office apps are available when you [create or edit a sensitivity label](create-sensitivity-labels.md). Make sure **Files & emails** is selected for the label's scope:

- 

- - If **Files & emails** is selected, you can configure settings that apply to apps that support sensitivity labels, such as Office Word and Outlook. If this option isn't selected, you see the first page of these settings but you can't configure them and the labels won't be available for users to select in these apps.

- 

- The policy settings that you see match the scope of the labels that you selected. For example, if you selected labels that have just the **Files & emails** scope, you don't see the policy settings **Apply this label by default to groups and sites** and **Require users to apply a label to their groups and sites**.

-1. Follow the general instructions to [create or edit a sensitivity label](create-sensitivity-labels.md#create-and-configure-sensitivity-labels) and make sure **Files & emails** is selected for the label's scope:

-2. Then, on the **Choose protection settings for files and emails** page, make sure you select **Encrypt files and emails**

- 

- 

-Use this configuration only when you don't need to restrict who can open the protected document or email. [More information about this setting](#requirements-and-limitations-for-add-any-authenticated-users)

-|Personal|Non-business data, for personal use only.|**Scope**: File, Email <br /><br />**Content marking**: No<br /><br />**Auto-labeling**: No <br /><br />**Group settings**: No<br /><br />**Site settings**: No <br /><br />**Auto-labeling for database columns**: None|

-|Public|Business data that is specifically prepared and approved for public consumption.|**Scope**: File, Email <br /><br />**Content marking**: No<br /><br />**Auto-labeling**: No <br /><br />**Group settings**: No<br /><br />**Site settings**: No <br /><br />**Auto-labeling for database columns**: None|

-|General|Business data that is not intended for public consumption. However, this can be shared with external partners, as required. Examples include a company internal telephone directory, organizational charts, internal standards, and most internal communication.|**Scope**: File, Email <br /><br />**Content marking**: No<br /><br />**Auto-labeling**: No <br /><br />**Group settings**: No<br /><br />**Site settings**: No <br /><br />**Auto-labeling for database columns**: None|

-|General <br /> \ Anyone (unrestricted)|Organization data that isnΓÇÖt intended for public consumption but can be shared with external partners if appropriate. Examples include customer conversations that donΓÇÖt include sensitive info or released marketing materials.|**Scope**: File, Email <br /><br />**Content marking**: No<br /><br />**Auto-labeling**: No <br /><br />**Group settings**: No<br /><br />**Site settings**: No <br /><br />**Auto-labeling for database columns**: None|

-|General <br /> \ All Employees (unrestricted)|Organization data that isnΓÇÖt intended for public consumption. If you need to share this content with external partners, confirm with other data owners that it's OK to share and then change the label to General \ Anyone (unrestricted) . Examples include a company internal telephone directory, organizational charts, internal standards, and most internal communication.|**Scope**: File, Email <br /><br />**Content marking**: No<br /><br />**Auto-labeling**: No <br /><br />**Group settings**: No<br /><br />**Site settings**: No <br /><br />**Auto-labeling for database columns**: None|

-|Confidential|Sensitive business data that could cause damage to the business if shared with unauthorized people. Examples include contracts, security reports, forecast summaries, and sales account data.|**Scope**: File, Email <br /><br />**Content marking**: No<br /><br />**Auto-labeling**: No <br /><br />**Group settings**: No<br /><br />**Site settings**: No <br /><br />**Auto-labeling for database columns**: None|

-|Confidential <br /> \ Anyone (unrestricted)|Confidential data that doesnΓÇÖt need to be encrypted. Use this option with care and appropriate business justification.|This label is selected for [client-side auto-labeling](#client-side-auto-labeling) and [service-side auto-labeling](#service-side-auto-labeling).<br /><br /> **Scope**: File, Email <br /><br />**Content marking**: Footer: Classified as Confidential<br /><br />**Auto-labeling**: Recommend that users apply the label <br /><br />**Group settings**: No<br /><br />**Site settings**: No <br /><br />**Auto-labeling for database columns**: None|

-|Confidential <br /> \ All Employees|Confidential data that requires protection, which allows all employees full permissions. Data owners can track and revoke content.|This label is selected for [client-side auto-labeling](#client-side-auto-labeling) and [service-side auto-labeling](#service-side-auto-labeling).<br /><br /> **Scope**: File, Email <br /><br />**Encryption**: All users and groups in the org: Co-Author<br /><br />**Content marking**: Footer: Classified as Confidential<br /><br />**Auto-labeling**: Recommend that users apply the label <br /><br />**Group settings**: No<br /><br />**Site settings**: No <br /><br />**Auto-labeling for database columns**: None |

-|Confidential <br /> \ Trusted People|Confidential data that can be shared with trusted people inside and outside your organization. These people can also reshare the data as needed.|**Scope**: File, Email <br /><br />**Encryption**: Let users assign permissions: <br /> - Encrypt-Only for Outlook <br />- Prompt users in Word, PowerPoint, and Excel<br /><br />**Content marking**: Footer: Classified as Confidential<br /><br />**Auto-labeling**: No <br /><br />**Group settings**: No<br /><br />**Site settings**: No <br /><br />**Auto-labeling for database columns**: None|

-|Highly Confidential|Very sensitive business data that would cause damage to the business if it was shared with unauthorized people. Examples include employee and customer information, passwords, source code, and pre-announced financial reports.|**Scope**: File, Email <br /><br />**Content marking**: Watermark: HIGHLY CONFIDENTIAL<br /><br />**Auto-labeling**: No <br /><br />**Group settings**: No<br /><br />**Site settings**: No <br /><br />**Auto-labeling for database columns**: None|

-|Highly Confidential <br /> \ All Employees|Highly confidential data that allows all employees view, edit, and reply permissions to this content. Data owners can track and revoke content.|**Scope**: File, Email <br /><br />**Encryption**: All users and groups in the org: Co-Author<br /><br />**Content marking**: Footer: Classified as Highly Confidential<br /><br />**Auto-labeling**: No <br /><br />**Group settings**: No<br /><br />**Site settings**: No <br /><br />**Auto-labeling for database columns**: None|

-|Highly Confidential <br /> \ Specific People |Highly confidential data that requires protection and can be viewed only by people you specify and with the permission level you choose.|**Scope**: File, Email <br /><br />**Encryption**: Let users assign permissions: <br />- Do Not Forward for Outlook <br />- Prompt users in Word, PowerPoint, and Excel<br /><br />**Content marking**: Footer: Classified as Highly Confidential<br /><br />**Auto-labeling**: No <br /><br />**Group settings**: No<br /><br />**Site settings**: No <br /><br />**Auto-labeling for database columns**: None|

-To configure the settings for the default sharing link type for a site, the [scope of the sensitivity label](sensitivity-labels.md#label-scopes) must include **Groups & sites** when you create the sensitivity label in the Microsoft Purview compliance portal. After it's created, you see this displayed as **Site, UnifiedGroup** in the **Scope** column on the **Labels** page, and the PowerShell *ContentType* setting also displays this same value. For documents, the scope must include **Files & emails**, which displays as **File, Email**. Then:

-

-

-

-> If you use label separation by selecting just the **Groups & sites** scope for labels that protect containers: Because of the **Detected document sensitivity mismatch** audit event and email described in this section, consider [ordering labels](sensitivity-labels.md#label-priority-order-matters) before labels that have a scope for **Files & emails**.

-By default, the **Files & emails** scope is always selected. The other scopes are selected by default when the features are enabled for your tenant:

-If you change the defaults so not all scopes are selected, you see the first page of the configuration settings for scopes you haven't selected, but you can't configure the settings. For example, if the scope for files and emails is not selected, you can't select the options on the next page:

-When you create your sensitivity labels in your admin center, they appear in a list on the **Sensitivity** tab on the **Labels** page. In this list, the order of the labels is important because it reflects their priority. You want your most restrictive sensitivity label, such as Highly Confidential, to appear at the **bottom** of the list, and your least restrictive sensitivity label, such as Public, to appear at the **top**.

-# Use your Threat & Vulnerability Management dashboard in Microsoft Defender for Business

-Microsoft Defender for Business includes a Threat & Vulnerability Management dashboard that is designed to save your security team time and effort. In addition to providing an exposure score, you can also view information about exposed devices and security recommendations. You can use your Threat & Vulnerability Management dashboard to:

-Want to see how it works? Watch this video, which describes [Microsoft Defender Vulnerability Management](../defender-vulnerability-management/defender-vulnerability-management.md).

-> [!VIDEO https://www.microsoft.com/videoplayer/embed/RE4Y1FX]

-Verify that "tamper_protection" is set to "disabled" to observe the state change.

-

- 

-You can also run full `mdatp health` and look for the "tamper_protection" in the output:

-

-If you use Microsoft 365 but you aren't using a custom domain (you use onmicrosoft.com), you don't need to do anything else. SPF is already set up for you, and Microsoft 365 automatically generates a DKIM signature for your outgoing mail. There is nothing more to do to configure DMARC for your organization. For more information about this signature, see [Default behavior for DKIM and Microsoft 365](use-dkim-to-validate-outbound-email.md#DefaultDKIMbehavior).

-[Use trusted ARC Senders for legitimate mailflows](/microsoft-365/security/office-365-security/use-arc-exceptions-to-mark-trusted-arc-senders?view=o365-21vianet&branch=tracyp_emailauth)