SharePoint
Feedback by UserVoice

SharePoint Administration

Welcome! This is your place to suggest ideas or vote for ideas for improving the SharePoint Administration experience.

Update: Microsoft will be moving away from UserVoice sites on a product-by-product basis throughout the 2021 calendar year. We will leverage 1st party solutions for customer feedback. Learn more

How to submit a new idea


  1. Check if it's already been suggested. If it has, vote for it.
  2. If it's new, submit it in 50 words or less.
  3. Gather support!
  4. If your idea receives over 100 votes in 90 days, we will respond.
    If not, we will close it.



Want to engage further? Please visit the SharePoint Community

Note: we have partnered with UserVoice, a third-party service and your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms. Please do not send any novel or patentable ideas, copyrighted materials, samples or demos for which you do not want to grant a license to Microsoft.


  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Restrict sharing]

    Provide the capability to restrict sharing to specific domains for internal users, not just for external users. It is a common scenario for organizations with multiple domains to not allow sharing between domains.

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  2. Option to Reset all item permissions in a document library

    With the advent of the copy a link funcitonality there are now an extreme number of broken inheritance items in document libraries. Should we need to reset these permissions for compliance or because a mistake was made in the permission model the only way to do this is through CSOM code. We have document libraries with 300,000 files in them so this is very impractical and time consuming if users are locked out a lot of the files in the site.

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  3. Enable "Edit Group Quick Launch" on Communication Sites

    The page _layouts/15/associatedgroups.aspx for any Communication site will not permit me to make changes. When I save, I get Access Denied. I am a Tenant Admin and SCA on the site.

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  4. Site Sharing

    Site Sharing should have an initial request in the site creation process on whether you want to share with outside users. Reason, if admin has not done this and his away and external users MUST be shared to a site, this becomes an administrative issue. Simply put, bring it to the admin's mind upon creating the site. They already know if external users are required, and the issue is then done. There are too many permissions in different places as well.

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  5. Anonymous access to a page

    Allow anonymous access to a web content.

    I tried to allow an anonymous access (qr-link posted by email) to a page on my site. It seems not to work.

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  6. You should be using a zero-trust model for access control, so that all of the confusions and misconfigurations in access control will stop

    PLEASE provide a zero-trust methodology to your access control system such that permissions can ONLY be added not removed. This means that no permissions can ever conflict with each other;
    If I don't want a user to have access to a resource they should not be added to that group! Period
    Zero trust is WELL understood and easy to implement. Admittedly it does increase complexity for explicit permissions, but that complexity would need to be put into the overriding access control regardless, so leaving it closer to the resources isn't a weakness, but a strength.

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  7. Only show the relevant site permission groups when viewing the People and Groups page.

    Currently, all groups are shown on the People and Groups page. It would be nicer if this page only shows the permission groups which are relevant to a particular site.

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  8. Allow Admins greater control over users' access to SharePoint

    Allow SharePoint admins to be able to control access to SharePoint for individual users.

    For example, we'd like to limit normal staff to access between working hours, and locked down to our company IP.

    We'd like our managers to be able to access out of hours by any IP.

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  9. Add facility to remove Share and Download Links

    It is possible to disable sharing very simply through Permissions | Access Request Settings but all the Share Links can still be seen. True, they don't work and lead to an error message, but this is not good practice. If Sharing is disabled the links should ideally disappear automatically or, at the very least, have a simple check box control to make them disappear.

    The same thing applies to the Download Link. On a confidential site I have given Users View only permission so that they cannot Download, but the link is still there. Once again, it leads to an…

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  10. Put back the print button on IRM-enabled library

    In IRM-enabled library, we have users that has View-only access and no rights to download the document. Previously in IRM-enabled library and with allow viewers to print being ticked, users are able to see the print button when they open the document online. But with the new UI, this function is no longer visible. Please put this back.

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  11. Show default groups for other languages

    When a user has another language than English, they cannot add "Everyone", but have to select the language specific term instead. ("Alle" in Danish for example)
    Please make it possible to find and select groups like this, with the default language name.

    The current behaviour is confusing for users, as when the "Alle" group has been added, it shows up in the list as "Everyone"

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  12. Currently a site collection administrator has all rights on a site collection level. It would be a good i define site collection administrat

    Currently a site collection administrator has all rights on a site collection level. It would be a good idea to do the following:


    • define site collection administration policies (enable or disable site collection admin rights like activate sandboxed solution, delete site collection and so on)

    • assign this site collection administration policy to site collection

    • define standard policy for new site collections

    • create a new super user where the rights can not be change

    With this it would be possible in enterprise companies to give the site owner site collections rights and reduce the number of tickets

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  13. Add a DraftVisibilityType to avoid author to be able to see draft versions when they only have reading access

    In the Library settings, for the object DraftVersionVisibility, there are three possible values :
    - Any user who can read items
    - Only users who can edit items
    - Only users who can approve items (and the author of the item)

    Regardless the option you choose, the author of a document will always be able to see draft versions, even if he does't have contribute access.

    With "Only users who can edit items" setting, the author of a document with reading access can see the draft files, can open them and see the content, but cannot edit the documents.

    There…

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  14. Ability to apply an access policy folders and files so that the user can edit the item but can not delete or download it to the machine.

    Ability to apply an access policy folders and files so that the user can edit the item but can not delete or download it to the machine.

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  15. Allow farm administrators to manage User Profile Service using PowerShell

    Unlike other service applications, the User Profile Service does not allow you to manage its configuration with PowerShell unless you are running as the farm account.

    If you run a command that tries to use the object model, you get an error similar to:

    UserProfileApplicationNotAvailableException_Logging :: UserProfileApplicationProxy.ApplicationProperties ProfilePropertyCache does not have <guid>

    Here is a simple script to repro the issue:

    Add-PSSnapin Microsoft.SharePoint.PowerShell -ErrorAction:SilentlyContinue

    $profileApp = @(Get-SPServiceApplication | ? {$_.TypeName -eq "User Profile Service Application"})[0]
    $serviceContext = [Microsoft.SharePoint.SPServiceContext]::GetContext($profileApp.ServiceApplicationProxyGroup,[Microsoft.SharePoint.SPSiteSubscriptionIdentifier]::Default)

    $upm = new-object Microsoft.Office.Server.UserProfiles.UserProfileManager($serviceContext)

    Getting the UserProfileManager will throw the error.

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  16. Support HSTS Preload and IncludeSubDomains Response Headers

    With SharePoint Server 2016 supporting HSTS, we can enable it and set the MaxAge header through SPWebApplication.HttpStrictTransportSecuritySettings. It would be beneficial to also support the preload and includeSubDomains response headers in order to add the site to the preload list, supported by the major current browsers - https://hstspreload.appspot.com/.

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  17. Add security groups to unified groups

    large corporations need to be able to manage security at a group level and not an individual level.
    unified groups only provide individual membership which is in feasible to manage across a large enterprise.

    OneDrive for Business folders and SharePoint online document libraries already allow ability to set membership at the security group level.
    Unified groups needs to have the same functionality.

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  18. Limit site collection access to specific AD groups

    Currently it is only possible to limit access to a site collection to all persons within the organisation. I would like to limit sharing to a specific (or multiple) AD group(s).

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  19. View Rights Assigned to an OAuth Token

    Currently there's no supported way of being able to see what rights are assigned to an OAuth token. I.e. if you use /_layouts/appinv.aspx to look up a client ID, it will not show you the current and actual rights assigned to this token. If we install an App or manually register a new client id, we can assign it any kinds of rights. Later on we can modify these rights using appinv.aspx or PowerShell, but we'll never be able to see what rights it currently has. This is a security implication. Would be nice if we could make them visible.

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  20. Design external sharing per site basis for SharePoint site that is connected to O365 Group

    Security Concern - Not being able to configure external sharing per-site basis for any SharePoint Online site that is connected to an O365 Group. When you configure external sharing now at the SharePoint Admin Center at the tenant level, all O365 connected sites inherit the sharing settings from the Admin center, we can't configure a per-site basis for those O365 group connected sites.

    Noe: If you create a SharePoint team site without an O365 connected group or a communication site then the Tenant level external sharing settings do not get inherited to them and that is ideal so we can…

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base