Forum Discussion
Surya kumar
Jun 06, 2018Copper Contributor
Office365 secure score - Not scoring
Few actions are not getting scored like "Use audit data", "Review role changes weekly".
Christopher Withrow
Jun 06, 2018Copper Contributor
I'm seeing lots of reports from other communities about exactly the same thing.
Anthony Smith (A.J.)
Microsoft
Jun 06, 2018Hi Christopher and Surya,
Are either of you using a global admin account when clicking the review button in Secure Score for these reports? If not, please try as a global admin and let me know if that works.
We are not aware of any issues on the report scoring data telemetry and I want to see if this is a permissions issue.
Thanks!
- Matthew MorganJun 07, 2018Copper Contributor
We also review reports weekly (using a Global Admin account) but are not seeing points assigned for doing this. Is it a requirement to have to review the reports using the 'Review' button in Secure Score? If so, that may be the reason why it is not being scored as we access the weekly reports using links in a recurring weekly appointment.
We also see the following not being correctly scored by Secure Score:
- Not correctly identifying the number of Global Admins who’s accounts have been MFA enabled
- Not correctly identifying the Customer Lockbox feature has been enabled
- Anthony Smith (A.J.)Jun 07, 2018
Microsoft
Hi Matthew,
The requirement is that you click the review button versus going directly to the report. The reason is that the reports don't have any telemetry. The review button is the only way we know you have looked at the report.
For the other issues, I would recommend using the feedback button in the bottom right of Secure Score with that info as I see this working correctly and might be something specific to your tenant.
Thanks!
- Matthew MorganJun 26, 2018Copper Contributor
Hi Anthony,
For scoring for actions on Mobile Devices, it seems that this is only applicable if you use Mobile Device Management for Office 365? (not Microsoft Intune). As an example, one of the Actions is 'Require mobile devices to use a password', which we have configured but are not seeing points assigned for this. Would this be because it is only scoring for Mobile Device Management for Office 365? (not Microsoft Intune).
Thanks,
Matt