Forum Discussion
Secure Score Summary value wrong direction?
there must be some telemetry reporting issue as the scores are going down in the last 3 days. We went from 470 to 230
I was once at 435 before plateauing at 399. Just in the last 2 weeks, I have seen it drop down to 314 (today). I wish that if the telemetry cannot be confirmed, then the points should not be deducted. Obviously, there is some sort of error occurring that I would get dinged for not having more than one global administrator (we have 9... complicated reasons and also due to some apps needing global administrator in order to administer them), use non-global administrative roles (we have a whole bunch), enable data loss prevention policies (even the description says we have 9 enabled), user alternate contact info says we have 0 people who have not completed it, store documents in OneDrive for Business says we have it set to True (but someone stated that there was another reason why this was taken away, even though I personally store documents in there), etc.
Secure Score is a great concept and I use it to remind me of the administrative tasks that I should take. It is kind of fun to try and get the score to inch up. But, if the checks are not reliably being made, then the secure score does not have much meaning. Hopefully, they will be able to fix the issues soon.
- DeletedNov 14, 2018
I agree, we were quite excited to find the feature and thought it would be of great use to help us ensure we were filling the holes. Now it has started failing to detect our changes it has taken the shine off somewhat.
- Norm KrombergNov 14, 2018Brass Contributor
I had a 100 point drop in 1 day. Based on the discussion, it seems there should be some form of alerting or notices with with telemetry changes or risks. I share the score with our C-Level executives. But I may have to change due to the un-controlled variability.
Can a Microsoft professional weight in?
- DeletedNov 14, 2018
That echoes my worry, we tout the scores as being a sign of how we are looking to be security conscious but then a telemetry goes offline etc and we look like we have broken stuff!