Microsoft Roadmap, messagecenter en blogs updates van 28-08-2024

Updated August 27, 2024: We have updated the rollout timeline below. Thank you for your patience.

The OCR Cost Estimator allows customers to estimate the potential cost for using Optical Character Recognition (OCR). OCR can scan images for sensitive content and is chargeable based on the number of images scanned.

With the launch of the OCR Cost Estimator, customers can now estimate OCR costs without any pre-requisites. This means that customers will no longer be required to set up an Azure Subscription for billing first and can accurately estimate the cost they would have incurred while using OCR.

This message is associated with Microsoft 365 Roadmap ID 160009

[When this will happen:]

Public Preview: We will begin rolling out late August 2024 (previously early August) and is expected to be complete by late September 2024 (previously late August)

Rollout will begin in late October 2024 (previously early September) and is expected to be complete by late November 2024 (previously late September).

[How this will affect your organization:]

The primary use case is to see the potential cost that you might have incurred while using OCR.

The OCR Cost Estimator will allow you to try out different workload/user and site scope combinations to find the best setting for you to use OCR, and everything is free of cost. You will be able to see breakdown of cost and volume of images in the dashboards. The ability to download reports for the data is also available.

[What you need to do to prepare:]

Login to compliance.microsoft.com and “Start Cost Estimator” under Settings > Optical Character Recognition.

Users with either of the following role groups will be able to start the OCR Cost Estimator.

• Compliance Data Administrator
• Compliance Administrator
• Information Protection
• Information Protection Admin

Updated June 28, 2024: We have updated the rollout timeline below. Thank you for your patience.

Coming soon, Microsoft Purview Insider Risk Management will be rolling out public preview of progressive alert scoring.

This message is associated with Microsoft 365 Roadmap ID 179883

[When this will happen:]

Preview will begin in mid-October 2024 (previously early August) and is expected to be complete by late October 2024 (previously late August) 

[How this will affect your organization:]

With this new feature, user activities that could potentially result in data security incidents will be assessed more frequently within a 24-hour period compared with the current practice of once every 24 hours. Alert insights will now be updated every few hours with this increased frequency, providing analysts with timely alerts and continuously evolving insights.

[What you need to do to prepare:]

No action is needed for this update.

Microsoft Purview Insider Risk Management correlates various signals to identify potential malicious or inadvertent insider risks, such as IP theft, data leakage, and security violations. Insider Risk Management enables customers to create policies based on their own internal policies, governance, and organizational requirements. Built with privacy by design, users are pseudonymized by default, and role-based access controls and audit logs are in place to help ensure user-level privacy.

You can access the Insider Risk Management solution in the Microsoft Purview compliance portal.

https://purview.microsoft.com/compliance

Learn more: Investigate insider risk management activities 

Updated August 26, 2024: To ensure the optimal experience for our customers, we have decided not to proceed with the rollout at this time. We will communicate via Message center when we are ready to proceed. Thank you for your patience.

We are adding new fields in Microsoft Exchange to help prevent data loss. With these updates, admins can see more details about the attachments that are present in the email that violated the Data Loss Prevention (DLP) rules, including name, size, and labels. There will be new fields for the attachments that are in emails when they match a DLP rule that will be displayed in Activity Explorer, DLP Alerts, and Microsoft Theft Protection (MTP) Alerts. With these updates, you can get better insights into the violation that has occurred even before you start getting into the finer details of the issue.

This message is associated with Microsoft 365 Roadmap ID 369015

[When this will happen:]

We will communicate via Message center when we are ready to proceed.

[How this will affect your organization:]

You will see more details about the attachments that are present in emails when violations occur.

Activity Explorer:

DLP Alerts:

MTP Alerts:

[What you need to do to prepare:]

There is no action needed to prepare for this change. You may want to notify your users about this change and update any relevant documentation as appropriate.

Updated August 27, 2024: We have updated the rollout timeline below. Thank you for your patience.

Users now have the ability to save the filters applied to Microsoft 365 Activity Explorer and use them later.

This message is associated with Microsoft 365 Roadmap ID 374375

[When this will happen:]

Public Preview: We will begin rolling out in mid-September 2024 (previously mid-August) and expect to complete by early October 2024 (early September).

General Availability: We will begin rolling out in early October 2024 (previously early September) and expect to complete by early November 2024 (previously early October).

[How this will affect your organization:]

Customers will now have a better investigation experience in Activity Explorer without having to set the filters every time they go to the page.

[What you need to do to prepare:]

There is no action needed to prepare for this change. You may want to notify your users about this change and update any relevant documentation as appropriate.

Updated August 26, 2024: We have updated the rollout timeline below. Thank you for your patience.

Dear customer,

We are reaching out to share an update on this feature – the ‘Catch up’ tab on the homepage in Copilot. We have decided to completely roll this feature back, starting September 2. Please note: this feature is currently available to 50% of users; and as a result of this roll back, all Copilot users will only have ‘Try These Prompts’ on their homepage. (please refer to the image below).

Please communicate the same to Copilot users in your organization. 

As we continue to try and improve Copilot for our customers, we really appreciate your cooperation in testing and providing feedback. 

 —

Catch up is a new feature in Microsoft Copilot for Microsoft 365 and Microsoft Teams that helps users take action on important updates. A Copilot for Microsoft 365 license is required for this feature.

This message is associated with Microsoft 365 Roadmap ID 388746.

[When this will happen:]

General Availability (Worldwide): We will begin rolling out early July (previously late June) 2024 and expect to complete by early August (previously late July) 2024.

[How this will affect your organization:]

Copilot users in your organization will see a new Catch up tab on the Copilot page in Microsoft365.com and Microsoft Teams. (Teams users may have to add the Copilot app to make it appear on the left side of the screen). On the Catch up tab, users will see a carousel of cards. Each Catch up card has an update related to an important meeting or document, along with a suggested prompt that users can select to catch up on that card in detail.

The Copilot Catch up tab in Microsoft 365:

[What you need to do to prepare:]

This rollout will happen automatically by the specified date with no admin action required. You may want to notify your users about this change and update any relevant documentation as appropriate.

Learn more

• Frequently asked questions about Copilot for Microsoft 365 – Microsoft Support
• Catch up on things quickly using Microsoft Copilot with Graph-grounded chat – Microsoft Support
• Get started with Microsoft Copilot with Graph-grounded chat – Microsoft Support

Your Microsoft Intune account has been updated to the latest service build.

How does this affect me?

You will see the service release number updated in the Tenant Status blade of the Intune console soon. We’ve introduced some changes that we’re excited for you to try out.

What do I need to do to prepare for this change?

Click additional information below to learn more about what’s new in this service release. We’ll continue to update the What’s new page with any features that are released between now and the next monthly service update. Learn more by reviewing features highlighted in the latest Intune What’s new 2408(August) Blog and how the Intune service updates each month is described in the Microsoft Intune Service Updates Blog. 

Additional Information:

Intune What’s new

Intune What’s new 2408(August) Blog

Staying up to date on Intune new features, service changes, and service health

Coming soon for Microsoft Fabric: Two new settings in the Fabric Admin portal that are designed to enhance security and flexibility for applications interacting with Microsoft OneLake.

[When this will happen:]

Public Preview: We will begin rolling out late September 2024 and expect to complete by late September 2024. You can start saving your settings in late August 2024.

When the General Availability release timeline is known, we will update you.

[How this will affect your organization:]

Before this rollout: Users could not generate SAS tokens in OneLake.

After this rollout: Admins will have support for short-lived user-delegated OneLake shared access signature (SAS) tokens in public preview. This functionality allows applications to request a user delegation key backed by a Microsoft Entra ID, which can then be used to build a OneLake SAS token. This token can be handed off to provide delegated access to another tool, node, or user, ensuring secure and controlled access. OneLake SAS tokens are constructed and used similarly to Azure Storage SAS tokens, with a few key differences:

• OneLake user delegation keys and SAS tokens cannot exceed a lifetime of one hour.
• OneLake SAS tokens are always user delegated and must be backed by an Entra ID.
• OneLake SAS can only grant access to data items in Fabric.

The usage of OneLake SAS in a Fabric tenant is controlled by two tenant switches:

1. A switch managed by tenant admins that controls the generation of OneLake SAS tokens
2. A switch automatically delegated to workspace admins that controls the acceptance of OneLake SAS tokens

Both switches must be turned on to allow the use of OneLake SAS in a workspace.

Scenarios supported by SAS

Delegated access with SAS tokens allows applications without native support for Microsoft Entra to gain temporary access to specific folders or files in OneLake. SAS tokens are commonly used for data integration workloads by granting external engines temporary permissions to write data to a staging location. Many ISVs also use SAS tokens to grant their users temporary scoped-down access to their data.

New tenant settings

1. Use Short-lived user-delegated SAS tokens (Preview):

• Default Status: ON
• This setting allows the creation of short-lived user-delegated SAS tokens by turning on the user delegation key API for the entire tenant.

2. Authenticate with OneLake user-delegated SAS tokens (Preview):

• Default Status: OFF
• This setting enables authentication using OneLake user-delegated SAS tokens. This setting is automatically delegated to workspace admins, allowing them to decide whether their workspace will accept OneLake SAS as a valid authentication method.

[What you need to do to prepare:]

1. Review and decide on settings:

• Use short-lived user-delegated SAS tokens: As this setting is turned ON by default, please review its implications and decide if it should remain enabled for your organization.
• Authenticate with OneLake user-delegated SAS tokens: This setting is OFF by default, and workspace admins will be able to enable this feature. Evaluate its potential benefits and determine if you would like to enable it automatically for all workspaces.

2. Action for tenant admins:

• In late September 2024, OneLake SAS will be available in public preview. If no actions are taken on the tenant setting, workspace admins will be able to turn ON OneLake SAS authentication for their workspace. Note that Authenticate with OneLake user-delegated SAS tokens is automatically delegated to workspace admins. If you prefer not to have these features available for your organization, please turn OFF the Use short-lived user-delegated SAS tokens setting in Fabric before late September 2024. This will disable OneLake SAS generation for your tenant, ensuring OneLake SAS cannot be used, regardless of the workspace admins setting.
• Workspace admins will be able to enable authentication with SAS tokens for their workspaces if no action is taken by tenant admins.
• We encourage you to assess these new settings and make any necessary changes to align with your organization’s security and access control policies.

If you have any questions or need further assistance, please do not hesitate to contact our support team.

This rollout will happen automatically by the specified dates with no admin action required before the rollout. You may want to notify your admins about this change and update any relevant documentation.

Explore Microsoft Fabric documentation. Before rollout, we will update this post with links to new documentation.

Within Microsoft Purview AI Hub, prompts and responses will appear in Activity explorer for the AI Interaction event for Microsoft Copilot for Microsoft 365. 

This message is associated with Microsoft 365 Roadmap ID 408545.

[When this will happen:]

Public Preview: We will roll out in late August.

General Availability (Worldwide): We will roll out in late November 2024.

[How this will affect your organization:]

Before this rollout, prompts and responses were not available within Activity explorer in Microsoft Purview AI Hub.

After this rollout, you will have the ability to see user prompts and responses from Copilot for Microsoft 365 within Microsoft Purview AI Hub. 

To see the prompts and responses, the Microsoft Purview Content Explorer Content Viewer role must be assigned to the user. For more information, see Permissions for Microsoft Purview AI Hub. 

Some use cases do not properly display the prompts and responses within Microsoft Purview AI Hub and have been documented as known issues. 

[What you need to do to prepare:]

Get ready for this change by reviewing the documentation and assigning the Microsoft Purview Content Explorer Content Viewer role to users who should have access to view prompts and responses within Microsoft Purview AI Hub.

Learn more: Considerations for Microsoft Purview AI Hub and data security and compliance protections for Microsoft Copilot.

Like Lists and libraries, Viva Amplify campaigns can contain sensitive information, such as marketing campaign budgets or human resources initiatives. The Required approval feature brings compliance, accountability, and workflows to Lightweight Approvals in Viva Amplify. Whether you require multiple levels of approvals or approvals from a single decision maker, the new Required approval feature in Viva Amplify empowers communicators to customize the process to suit their approval workflow and ensure every piece of content undergoes a thorough review process before it is published.

The Required approval button is present under the Advanced settings of the Campaign settings experience, which can be accessed in any given campaign’s header section. When the Required approval setting is enabled, all newly created publications will be required to go through the approval process before content can be published. 

This is an optional setting. 

This message is associated with Microsoft 365 Roadmap ID 409233.

[When this will happen:] 

General Availability (Worldwide): We will begin rolling out late August 2024 and expect to complete by late September 2024.

[How this will affect your organization:]

Viva Amplify users will be able to set a campaign’s setting so that approval is required across all publications before the content is published. This feature is available for users in the web/desktop experience. Please note that Viva Amplify on Mobile iOS and android applications is currently out of scope.  

This update is available by default.

[What you need to do to prepare:]

This rollout will happen automatically with no admin action required. You may want to notify your users about this change and update any relevant documentation as appropriate.

We've released updates to the following update channel for Microsoft 365 Apps:

• Current Channel

[When this will happen:]

We'll be gradually rolling out this update of Microsoft 365 Apps to users on that update channel starting August 27th, 2024 (PST).

[How this will affect your organization:]

If your Microsoft 365 Apps clients are configured to automatically update from the Office Content Delivery Network (CDN), then no action is required.

If you manage updates directly you can now download this latest update and begin deployment.

[What you need to do to prepare:]

To get more details about this update view the following release notes:

• Current Channel

• You can now share content to your Android device from the Windows Share window. To do this, you must pair your Android device to your Windows PC. Use the Link to Windows app on your Android device and Phone Link on your PC.​​​​​​​
• ​​​​​​​This update makes scan mode respond quicker in Narrator. This is especially helpful when you use Microsoft Edge and read large documents. To use scan mode, you must turn on Narrator first (Windows logo key + Ctrl + Enter). Then, turn on scan mode by pressing Caps lock + Spacebar during a Narrator session.
• This update improves Voice access. You can now dictate the characters that you spell at a faster speed. You also have more editing options for the commands that select, delete, and move within text.
• This update improves Widgets Board security and APIs for creating widgets and feeds for users in EEA regions. 

• Windows 11, version 23H2 and 22H2: KB5041587

1. Select Environments.
2. Choose your environment.
3. Navigate to Settings.
4. Navigate to Product.
5. Navigate to Features.
6. Adjust the AI prompts feature setting as needed.

• Create masking rules.
• Enable a secured column with a masking rule.
• Create security profiles and set permissions.