SharePoint
Feedback by UserVoice

SharePoint Administration

Welcome! This is your place to suggest ideas or vote for ideas for improving the SharePoint Administration experience.

How to submit a new idea

  1. Check if it's already been suggested. If it has, vote for it.
  2. If it's new, submit it in 50 words or less.
  3. Gather support!
  4. If your idea receives over 100 votes in 90 days, we will respond.
    If not, we will close it.

Want to engage further? Please visit the SharePoint Community

Note: we have partnered with UserVoice, a third-party service and your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms. Please do not send any novel or patentable ideas, copyrighted materials, samples or demos for which you do not want to grant a license to Microsoft.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Add the ability to force permission inheritance on new subsites

    Say I have our top level site. Underneath the top level site are subsites for each of our departments. I would like be able to assign a user "Site Designer" (Full control minus modifying permissions), but not allow them to modify site permission and if they create a subsite under their department site not allow them to break inheritance and be able to modify the subsite permissions.

    Discussed here:

    https://answers.microsoft.com/en-us/msoffice/forum/msofficesharepoint-msowinother/sharepoint-online-inheriting-permissions/d6567ccd-4b97-4720-ad76-ca7b213d858b?rtAction=1485959652618

    7 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  2. Prevent users from creating new folders in the root of a document library but still be able to create subfolders within existing folders

    Each department has their own folder - Marketing, Sales, etc.

    There is no supported way to restrict users from creating new files or folders in the root of a document library.

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  3. Security concerns around 404 Response for unauthorised users

    In recent discussions with a customer concerns were voiced around how SharePoint responds to requests for unauthenticated users.

    In particular when hitting a URL for a site collection that does exist vs one that doesn't.

    e.g.

    /sites/bar exists on the tenancy.
    /sites/foo does not exist on the tenancy

    When an unauthenticated user hits /sites/bar they get an auth challenge.
    When an unauthenticated user hits /sites/foo they get a very basic 404

    This behaviour makes it possible for unauthorised users to sniff around to understand what sites exist and what sites do not. This is a potential security risk as unauthorised…

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  4. Root Folder / Inherited Permissions - Prevent Root Folder Deletion

    We wish to create a document library called Common that would be accessible by all employees.

    Common and series of folders underneath Common (think departments for example) would be defined by the IT department.

    The root folders need a permission where only an admin can delete the folder, even though the below inherited permissions might allow user to create and delete folders at will.

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  5. Inherit and add permissions

    Extend the "inherit" behavior of SharePoint security role assignments to also allow for "inherit" + "add", instead of "stop inheriting" + "add".

    Right now you can either inherit or break the inheritance of permissions. My idea is to allow for combining the two, just as Windows does with ACLs.

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  6. We hope that access to SharePoint Online can be restricted by IP address

    *English follows Japanese
    ■Title(件名):
    SharePoint Online のみ IP アドレスによるアクセス制限を希望
    We hope that access to SharePoint Online can be restricted by IP address


    ■Description(内容):
    OneDrive for Business については、接続元IPアドレスに依らず接続可能とさせたいが、SharePoint Online のみ社内 IP アドレスだけにアクセスを限定させたい。
    現状どちらか片方のみ制限ができないため、別々に制限できるようにしてほしい。
    We want to be able to connect to OneDrive for Business regardless of the connection source IP address, but we want to limit access to only our corporate IP address for SharePoint Online.
    Currently it is not possible to limit just one side, so we hope this can be made possible.

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  7. Option to notify administrators when a given site is accessed by a user

    *English follows Japanese

    ■Title(件名):
    特定の SharePoint Online のサイトにユーザーがアクセスした際に管理者へ通知する機能について
    Option to notify administrators when a given site is accessed by a user


    ■Description(内容):
    特定の SharePoint Online のサイトにユーザーがアクセスした際に管理者へ通知する機能を実装してほしい。
    I would like an option to have a notification sent to administrators when a specific SharePoint Online site is accessed by any user.

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  8. Advanced settings for "Anyone" links (guest/anonymous links) at site level

    Currently 'Advanced settings for "Anyone" links' (or so-called guest/anonymous links) is only available at the organization level. We have cases that require sharing document links without time limit, but we are forced to allow all site members create links without time limit since there is no such option at the site level.

    It would be great to have this setting at the site level, so that we can allow a few sites to have unrestricted "Anyone" links only.

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  9. have a sharing permission

    On the Edit Permission Levels - have Sharing as one of the assignable permissions.

    Otherwise the ability to do this is a bit sledge-hammer like. Restricting to Site Owners is often to restrictive, while contributors or everyone, is far too broad.

    By having sharing as an assignable permission, groups with just that permission could be created.

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  10. Change the default option for Allow Editing

    I'd like to be able to change the default option for Allow Editing. Currently whenever someone shares, it defaults to edit.

    As an administrator, I'd like to be able to change this to default.

    This could prevent potential sharing accidents.

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  11. SharePoint Online and OneDrive for Business embed links capable of being unauthenticated

    The consumer OneDrive offering has the option to be able to allow unauthenticated people to view a document straight from the embed link without having to log into O365. The OneDrive for Business offering requires users to have to login in order to see the embedded file.

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  12. Control the opening of a downloaded file on a client using IRM

    Under the SharePoint Online IRM function, there is an option to disallow opening files in a browser, but there is no function to prevent opening the file on a client. Please add a function to disallow opening a file on a client machine after having downloaded it from SharePoint.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  13. sharepoint http iFrame

    Site Settings -> HTML Field Security

    Use this page to control the security settings for HTML fields under this site collection

    Allow external iframes
    Specify whether contributors can insert external iframes in HTML fields and Embed web parts on pages in this site. Iframes are commonly used on Web pages to show dynamic content from other web sites, like directions from a mapping site, or a video from a video site.

    When using the list of allowed domains, note that all subdomains of the allowed domains are automatically trusted.

    These settings do not affect content placed in scriptable Web Parts.…

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  14. Control access to sharepoint via Country blocking.

    Would be nice to go in and allow or deny access to sharepoint via Country selection. I know Geo 2 IP locations are not 100% accurate. But If your a US based company, there is no need for any IP's registered to China or any other country to access your sharepoint/onedrive data.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  15. Retrieve the folder file permission information of the document library

    It would be great that we could retrieve the folder file permission of the document library.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  16. Add Site Permission to Hide "Cog/Gear/Settings Menu"

    We don't want users with READ ONLY writes to see the Settings Menu (Gear/Cog) and its submenus. Even with View only permissions users see Site Contents, Site Permissions and Site Usage.

    We can hide it via clunky CSS, however would like to see a change to the permission set, or new permission set which hides this by default for users who have RO access to a site.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  17. SPO Conditional Access by Network location on Folder level

    SPO Conditional Access by Network location on Folder level

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  18. Add breadcrumbs to the permissions page in SharePoint.

    When you get to the permissions page in SharePoint, there is no breadcrumb or identification to determine what object your modifying permissions for (list/library/item).

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  19. build an expiration process around external (authenticated) sharing

    Allow external access to files to expire after 30 days (configurable). Allow content owners to "extend" upon request or notify in advance. Productionalize this: https://blogs.msdn.microsoft.com/richarddizeregasblog/2014/08/30/expiring-external-user-sharing-in-sharepoint-online/

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  20. Allow site administrators to disable "Get A Link" without also disabling File Sharing

    Currently, the only way to prevent a user from using the Get a Link functionality is to disable all file sharing by site members. Get a Link creates a link which can be forwarded to anyone inside the company, granting them access not intended by the original sender.
    Although site members can do the same through file sharing, it is much less likely this would happen by accident, or at least without careful thought.
    We would like to be able to user member file sharing, but disable Get a Link.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base