What is office 365
Microsoft can only proceed following approval of a Customer Lockbox request.Check the image below where you get the option to approve or reject a request. You, as an Office 365 administrator, can approve or reject Customer Lockbox requests.In addition to this, the Office 365 Admin Center portal will also display requests that have been submitted to the customer for approval, as shown in the image below.Administrators in the customer’s Office 365 environment are notified via email that there is a request for access, as shown in the image below.So this is how the process flows when you have Customer Lockbox turned on in your tenant. The engineer, upon reviewing your request, feels that he/she might need access to your Exchange/SharePoint Online content to fix it. Let’s consider a scenario wherein something is broken in SharePoint Online or Exchange Online and you raised a support case for that. Now that we have understood about this feature, let's take a look on how this complete process works …. It brings customers into the access approval process, requiring the customer to provide explicit approval of access to their content by a Microsoft employee for service operations. So with this feature, Microsoft has given their assurance to its customers that their content will not be accessed by Microsoft employees without their explicit approval. The below mentioned image depicts the complete approval process In addition to that, all access control activities performed by the Microsoft engineer does gets logged and audited. So with this feature, Microsoft enforces access control through multiple levels of approval, providing just-in-time access with limited and time-bound authorization. Only during some circumstances where something is broken in your tenant and you raise a support case for that, Microsoft engineers access your content to fix it. Roughly around couple of years back Microsoft had come up with this feature to maximize data security and privacy for Office 365 customers by ensuring that there’s zero interaction with the customer’s content by Microsoft engineers.Īlmost all the service operations performed by Microsoft are either fully automated so there is no human interaction, or the human involvement is abstracted away from the customer’s content that’s stored in Office 365.
SharePoint Online, Exchange Online, Skype for Business Online etc…) To put it in simple words, it’s a feature that’s available in Office 365 to ensure that there’s zero interaction by Microsoft on your contents that’s saved in Office 365 (i.e.