Inherited group-based license service plan checkboxes are now editable but fail on save
Hello, We are observing a possible UI regression in the Microsoft 365 admin center related to group-based licensing. Environment / scenario: - Microsoft 365 admin center - User-level “Licenses and apps” screen - The user receives the Microsoft 365 license through group-based licensing - The source group is a Microsoft Entra dynamic security group - The license and service plan settings are intended to be controlled at the group-based license assignment level We understand that when a license is inherited from a group-based license assignment, the apps/services for that inherited license should not normally be changed directly at the individual user level. The service plan configuration should be managed at the group/license assignment level. However, the current UI behaviour is confusing. Observed behaviour: 1. Open a user in the Microsoft 365 admin center. 2. Go to the user’s “Licenses and apps” screen. 3. The user has a Microsoft 365 license inherited from a group-based license assignment. 4. Some app/service checkboxes appear to be enabled and editable. 5. An administrator can actually clear/uncheck those checkboxes. 6. However, when clicking OK/Save, the operation fails with an error. In other words, the UI allows an administrator to make a change that cannot actually be committed. The reason this looks like a regression is that the previous UI behaviour was different. Previously, when a user’s Microsoft 365 license was inherited from a group-based license assignment, the relevant app/service checkboxes on the user-level “Licenses and apps” screen were greyed out or effectively read-only. Administrators could visually understand that those service plan settings could not be changed directly at the individual user level. Recently, those same checkboxes appear to be active and editable. The administrator can uncheck them, but the change fails only after clicking OK/Save. From an administrator UX perspective, this is confusing because the UI appears to allow an unsupported operation and only rejects it at save time. Expected behaviour: If service plan settings for an inherited group-based license cannot be changed at the individual user level, we would expect one of the following behaviours: - The checkboxes should remain disabled/read-only from the beginning. - The UI should clearly state that these apps/services are inherited from a group-based license assignment. - The Save/OK button should be disabled for changes that cannot be applied. - The UI should provide a link or guidance to manage the setting at the group-based license assignment level. Questions: 1. Has anyone else observed this recent change in behaviour? 2. Was this UI change intentional? 3. Is this a known issue or known UX regression in the Microsoft 365 admin center? 4. Is there any scenario where these checkboxes are intentionally editable for a user who receives the license only through group-based licensing? 5. Does this behaviour differ depending on whether the source group is an assigned security group or a dynamic security group? 6. Is there any recommended administrator workflow when troubleshooting service plan settings for a user whose license is inherited from a group-based license assignment? To clarify, this is not a question about how group-based licensing works. The concern is specifically about the UI behaviour where inherited license service plan checkboxes were previously greyed out, but now appear editable even though the change fails on save. If this is not intentional, it would be helpful if the Microsoft 365 admin center could restore the previous read-only/greyed-out behaviour, or clearly explain in the UI why the change cannot be saved. Thank you.
Why is Microsoft 365 setup (Groups + SharePoint + Domains) still so complex?
Microsoft 365 Setup Feedback Summary Summary of Experience: Setting up two small business workspaces (Cork & Clarity and Stone Clarity Consulting) in Microsoft 365 required navigating multiple disconnected systems including the Admin Center, Outlook, SharePoint, and an external DNS provider. The process was significantly more complex than expected and not intuitive for a non-technical user. Key Issues Encountered: 1. Identity and Account Confusion - Unclear whether to create separate users or use one account with aliases - Creating multiple users caused login confusion, broken permissions, and access issues 2. Domain and DNS Setup Complexity - Required switching between Microsoft and external DNS (Looka) - Instructions were unclear and required manual troubleshooting - No clear distinction between required and optional DNS records 3. Default Domain Confusion - New groups defaulted to the wrong domain - No visible option to change domain during group creation - Required changing global default domain (non-intuitive) 4. Inconsistent Group Behavior - Outlook groups and Teams-backed groups behave differently - No indication of differences or consequences - Groups appeared in some places but not others 5. Membership and Ownership Issues - Group creator was not consistently added as member - Ownership did not always persist after changes - Groups existed but were inaccessible or invisible 6. Outlook UI Limitations - Groups not visible despite existing and being correctly configured - No clear instructions on how to 'activate' or 'follow' groups 7. SharePoint Site Not Created Automatically - SharePoint sites were not created when groups were created - Required hidden steps: Outlook → Files → Open in SharePoint - No indication that the site did not exist yet 8. SharePoint Discovery Issues - Sites do not appear until manually accessed or followed - No onboarding or guidance for discovering sites 9. Ghost/Deleted Items Still Visible - Deleted group (Cork & Clarity Hub) remained visible - No clear distinction between deleted vs followed sites 10. Fragmented User Experience - Required switching between multiple platforms - No single place to manage or understand setup status - High cognitive load for basic configuration Conclusion: While Microsoft 365 is a powerful platform, the initial setup experience is overly complex and fragmented, especially for small businesses. Simplifying group creation, making SharePoint provisioning automatic and visible, and improving UI consistency across apps would significantly improve usability and adoption.
MC1269241 - Can't turn off antropic for agentmode
Hi, I’m trying to figure out how to turn off the new feature where Anthropic is enabled by default for everyone in the EU for agent mode in excel and powerpoint, as described in the Message Center news in the title. It is not possible to press Save when you have unchecked the setting unless you also consent to the terms of use, it is greyed out. Since we want the feature turned off, we do not want to agree to any terms of use. Has anyone found a solution? This seems to be misconfigured.
M365 only admin locked out MFA error 53003
I am learning this the hard way....so here it goes. Currently I am locked out of as the only admin on the tenant with error 53003. I was updating some Microsoft MFA default policy settings in Entra and mistakenly deleted the admin user from the exclusions list, and got locked out. Thankfully I have another tenant, not as big the one locked out. Initiated several support tickets for which everyone calls, and despite of subline mentioning the issue says that they have to assign this ticket to Entra. Then the ticket gets updated and noone has been assigned every since. I have initiated severity A support tickets from Azure portal but no one has called in last 24 hours to help. We area business with Business Premium licenses with over 20 users, and now completely locked out. I have looked almost everywhere online. There is no phone number that takes you to a support agent - PLEASE HELP........
Microsoft Feedback Portal account issue
I changed my Microsoft email a year ago, and it updated everywhere other than the Feedback Portal. As a result, I get an error when I try to login, or do anything on the page. Microsoft account support's suggestion was to login to the Feedback Portal which is insane given I'm having issues accessing it. How can I get this issue resolved? I've got three separate support tickets now and they keep asking me to wait 24 hours to get the issue resolved. Can someone from the Feedback Portal team please contact me to resolve this? This is what Microsoft Support have said: "understand your frustration, and yes—this is an account‑related issue because the Feedback Portal is still tied to your old alias, which causes login conflicts and forces you out. Your Microsoft account itself signs in correctly, but the Feedback Portal is pulling outdated identity data that you cannot update on your own. Since you cannot access the Portal to submit feedback, directing you back there is not a workable solution. What you need is for Support to escalate this to the internal Identity/Feedback Platform engineering team so they can manually correct the outdated alias mapping on the backend. In this situation, the Feedback Portal and Tech Community teams are the ones who manage and maintain that specific platform. Because the issue appears on the Feedback Portal side—even though your Microsoft account is working normally—only their dedicated team can make the necessary corrections on their end. That’s why we are guiding you to connect with them through the links provided: https://techcommunity.microsoft.com/ or https://feedbackportal.microsoft.com/feedback. They will be able to review the portal‑specific account data and assist you further. I understand why this is frustrating. Since you’re unable to stay signed in to the Feedback Portal, I completely see why posting there isn’t possible for you. However, I do need to be transparent: I’m not able to escalate this issue directly to the Feedback Portal team, as they don’t provide internal escalation channels for us and only accept requests through their own platform."
Distribution List & Security Group
I need a group that is a distribution list (so we can send emails to members of the group) & a security group (so I can assign the group to intune policies). How do I accomplish this? I don't want to just create the security group as our memebers don't like to go to groups in Outlook to check for email, they rather have it in their inbox... TIA, JAudit Log, what is TokenIssuedAtTime?
I used audit log to search user delete MS Teams files, by using Recycled File and Recycled Folder, I got the log file. Why the TokenIssuedAtTime and the CreationTime are so much different? Below is one of the log record {"AppAccessContext":{"AADSessionId":"8f382a1d-b233-425c-92f4-3cf9ed395c9e","CorrelationId":"ae68fba0-40db-2000-ce07-a7bde7727c3f","TokenIssuedAtTime":"2023-12-23T00:47:57","UniqueTokenId":"U4m5SFCmckOiN_QLrysqAQ"},"CreationTime":"2023-12-26T04:24:52","Id":"7a3dc23c-2699-485b-0a87-08dc05ca9b40","Operation":"FolderRecycled","OrganizationId":"7cf9c29c-c6af-4790-b98b-4eff7637f9be","RecordType":6,"UserKey":"i:0h.f|membership|email address removed for privacy reasons","UserType":0,"Version":1,"Workload":"SharePoint","ClientIP":"2001:d08:e2:58d:61cb:e4bc:c451:aef9","UserId":"email address removed for privacy reasons","AuthenticationType":"FormsCookieAuth","BrowserName":"","BrowserVersion":"","CorrelationId":"ae68fba0-40db-2000-ce07-a7bde7727c3f","EventSource":"SharePoint","IsManagedDevice":false,"ItemType":"Folder","ListId":"33880cd7-1db1-450f-9cd0-5c437c0ccaee","ListItemUniqueId":"184cd92b-40cf-4fa1-82aa-ad5fa61a2a05","Platform":"WinDesktop","Site":"f1bb631d-8ff4-4411-b49f-066e20be905c","UserAgent":"Microsoft SkyDriveSync 23.246.1127.0002 ship; Windows NT 10.0 (19045)","WebId":"aa607282-8b47-47d1-938b-c0cde8e2d87d","DeviceDisplayName":"2a01:111:2055:202:4701:ee31:fe3f:156","CrossScopeSyncDelete":false,"HighPriorityMediaProcessing":false,"SharingType":"","SourceFileExtension":"","SiteUrl":"https://mysharepoint.sharepoint.com/sites/mysite/","SourceRelativeUrl":"Shared Documents/test/MyFolder","SourceFileName":"Quotation","ObjectId":"https://mysharepoint.sharepoint.com/sites/mysite/Shared Documents/test/MyFolder/Test1"}
Microsoft 365 admin center support
I am extremely disappointed with the customer support experience associated with Microsoft 365 Business. As a business customer, I expected a reliable support system. Unfortunately, the reality has been the opposite, and I feel compelled to caution others to carefully consider their options before committing their hard-earned money to a Microsoft 365 business subscription. After purchasing Microsoft Business licenses and transitioning my services from GoDaddy to Microsoft, I lost access to my global admin credentials. This should be a straightforward issue for support to resolve, yet it has turned into a prolonged and frustrating ordeal. For the past two weeks, I have been trying to obtain assistance without success. I contacted Microsoft support over ten days ago and received a ticket, with the assurance that someone would contact me within 24 hours. No one has reached out to me—not in 24 hours, and not in the ten days since. I attempted to escalate the issue, but even then, no meaningful support was provided. This level of customer service is unacceptable for any business solution, especially one that organizations rely on for critical operations. It is unreasonable to expect customers to run their businesses effectively without access to timely and competent support. At this point, I am requesting a refund for the service that has not been delivered, and I strongly urge Microsoft to address the shortcomings in its support system. The support I received from GoDaddy in the past was significantly better. I hope no other business has to experience this level of frustration, and I sincerely urge Microsoft to acknowledge and fix these issues.tenant completely unreachable after update PLAID number on partner portal
Hi, i'm a reseller in Italy. I have a partnership with a local distributor to resell Office 365 product from many years. On the license side (my panel at vendor) i see my license available yet, like other customers. In these days we have changed the PLAID as requested to enable again our partnership. I've opened the ticket as suggested and after that we have lost completeley the access with any admin of our domain (@noorduffici.com and onmicrosoft.com) I can't login even in the partner portal of microsoft that reply with ( the mail doesn't exists) I've tried to call any number of support but anytime I go on with a virtual caller without a solution . Someone could hel about this issue ? The domain is not corrupted because i've access and i change the MX record to work temporaly with mail NOT microsoft.
Changing the default @onmicrosoft domain
We recently have started to use sharepoint and noticed that the domain is our old business name. It is using the @onmicrosoft.com domain. Is there a way to change the domain that was created when we made the O365 account? The main reason this is wanted is because our sharepoint sites will show the old company name, that was used to signup for O365, and not the new domain that we added. If we share out a sharepoint site or folder to a client, having the new company name would be better. Anyone have any thoughts on a way to change this, besides creating a new O365 account?