Solved

Office 365 ediscovery security

Posted on 2016-08-24
2
21 Views
Last Modified: 2016-09-13
Our Managed service provider has access to our Office 365 console. With Office 365 there is an ediscovery module. Is there any security around this feature in terms of engineers being able to view company email. Can we restrict this or view logs that allow us to confirm there is no one viewing emails that shouldn't be, thanks.
0
Comment
Question by:Sid_F
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 41

Assisted Solution

by:Vasil Michev (MVP)
Vasil Michev (MVP) earned 250 total points
ID: 41768497
Depends on the level of access they have. If they are added as global admin, they can do pretty much anything they want. All relevant actions are audited, but that isnt much of prevention.

Also, there are many other ways they can gain access to other people's email, such as transport/Journal rules, forwarding, full access permissions, impersonation, etc.
0
 
LVL 63

Accepted Solution

by:
btan earned 250 total points
ID: 41768717
Specifically for this ediscovery module, you can adopt a supervisor oversight too.
Define a supervisory review policy to indicate who in your organization will have their email communications reviewed and who will perform those reviews.

By defining a supervisory review policy, you can capture employee communications for examination by internal or external reviewers.
https://support.office.com/en-us/article/Search-and-investigation-in-the-Office-365-Security-Compliance-Center-c4915c5f-82a7-4871-ba20-ef47c7588043

Also there are audit capability to oversight the use by admin and other mailbox users

• Administrator audit logging  - Administrator audit logging allows customers to track changes made by their administrators in the Exchange Online Archiving environment, including changes to RBAC roles or Exchange policies and settings.
• Mailbox audit logging  - Mailbox audit logging allows customers to track access to mailboxes by users other than the mailbox owner.
You can have the report generated for regular review and oversight - besides audit report, other type of report covering supervisory and data loss prevention alerts are available. Do catch them and here is an excerpt on the audit report on the logging
For both admin and mailbox audit logging, you can run audit reports to view the audit log entries. You can also export mailbox and admin audit logs, which are sent to you within 24 hours in an XML file that is attached to email message. For more information about exporting audit logs
https://support.office.com/en-us/article/Reports-in-the-Office-365-Security-Compliance-Center-7acd33ce-1ec8-49fb-b625-43bac7b58c5a
0

Featured Post

Office 365 Training for Admins - 7 Day Trial

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Scam emails are a huge burden for many businesses. Spotting one is not always easy. Follow our tips to identify if an email you receive is a scam.
Find out what Office 365 Transport Rules are, how they work and their limitations managing Office 365 signatures.
This lesson covers basic error handling code in Microsoft Excel using VBA. This is the first lesson in a 3-part series that uses code to loop through an Excel spreadsheet in VBA and then fix errors, taking advantage of error handling code. This l…
Migrating to Microsoft Office 365 is becoming increasingly popular for organizations both large and small. If you have made the leap to Microsoft’s cloud platform, you know that you will need to create a corporate email signature for your Office 365…

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question