Problem with Configuration analyzer - Drift Analysis and History

%3CLINGO-SUB%20id%3D%22lingo-sub-2750665%22%20slang%3D%22en-US%22%3EProblem%20with%20Configuration%20analyzer%20-%20Drift%20Analysis%20and%20History%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2750665%22%20slang%3D%22en-US%22%3E%3CP%3EHello%2C%3C%2FP%3E%3CP%3EWhen%20we%20make%20a%20change%20in%20policy%20in%20O365%20security%20and%20compliance%2C%20for%20example%20blocking%20a%20domain%2C%20all%20the%20previous%20configurations%20also%20get%20saved%20under%20the%20same%20administrator's%20name%20with%20new%20timestamps.%3C%2FP%3E%3CP%3EPerhaps%20it%20is%20because%20the%20entire%20config%20file%20gets%20saved%20under%20the%20new%20settings.%20So%20all%20the%20history%20of%20who%20changed%20what%20gets%20lost.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3ESo%20if%20I%20add%20a%20domain%20in%20%22blocked%20list%22%2C%20all%20the%20previous%20changes%20get%20saved%20under%20my%20name%20as%20well%2C%20overwriting%20every%20change%20history%20including%20timestamps.%20Not%20good.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3ECan%20this%20be%20fixed%20some%20how%20%3F%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2767487%22%20slang%3D%22en-US%22%3ERe%3A%20Problem%20with%20Configuration%20analyzer%20-%20Drift%20Analysis%20and%20History%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2767487%22%20slang%3D%22en-US%22%3E%3CP%3EHi%20%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F818249%22%20target%3D%22_blank%22%3E%40salkhan%3C%2FA%3E%2C%20thank%20you%20for%20your%20feedback.%20We%20will%20consider%20improving%20this%20in%20future%20enhancements%20of%20configuration%20analyzer.%20Confirming%20that%20this%20is%20current%20behavior%20in%20configuration%20analyzer%20today.%20This%20happens%20if%20the%20user%20uses%20the%20UX%2Fportal%20to%20make%20policy%20changes.%20One%20way%20around%20this%20today%2C%20it%20to%20make%20policy%20changes%20via%20PowerShell.%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E
Occasional Contributor

Hello,

When we make a change in policy in O365 security and compliance, for example blocking a domain, all the previous configurations also get saved under the same administrator's name with new timestamps.

Perhaps it is because the entire config file gets saved under the new settings. So all the history of who changed what gets lost.

 

So if I add a domain in "blocked list", all the previous changes get saved under my name as well, overwriting every change history including timestamps. Not good.

 

Can this be fixed some how ?

 

  

1 Reply

Hi @salkhan, thank you for your feedback. We will consider improving this in future enhancements of configuration analyzer. Confirming that this is current behavior in configuration analyzer today. This happens if the user uses the UX/portal to make policy changes. One way around this today, it to make policy changes via PowerShell.