Table of Contents

Get Started

What is Microsoft Customer Lockbox?

With the Lockbox feature within Office 365, Microsoft will be required to alert you of their plan and await your approval to take the appropriate action. In the Office 365 Administrative portal, admins will see a request, and be able to accept/reject the request.

Office 365 and Enterprise Mobility and Security Suite can actually improve the security posture of the firm, which was the case for the State of Minnesota.

FAQ about Customer Lockbox

Who is notified when there is a request to access a customer’s content?

Administrators in the customer’s Office 365 environment are notified via email that there is a request for access. The Office 365 Admin Center portal will also display requests that have been submitted to the customer for approval.

Who can approve or reject these requests in a customer’s organization?

Administrators in the customer’s Office 365 environment can approve or reject Customer Lockbox requests.

Under what circumstances do Microsoft engineers need access to customer’s content?

No one at Microsoft has standing access to customer content in Office 365. Furthermore, Office 365 services are being engineered so that people performing service operations never have access to customer content. Therefore, we believe that the only scenario where a Microsoft engineer will need to access customer content is when the customer asks us to do so.

What happens if a customer rejects the Microsoft engineer’s access to content?

Microsoft can only proceed following approval of a Customer Lockbox request. If a customer rejects a Customer Lockbox request, no access to customer content will occur. If a user was experiencing a service issue that required Microsoft to access customer content in order to resolve (though such circumstances are expected to be extremely rare), then the service issue might simply persist. Microsoft would inform the customer of this outcome.

What happens to a Customer Lockbox request that was not acted upon by the customer in a timely manner?

Customer Lockbox requests have a default lifetime of 12 hours, after which they expire. Expired requests do not result in access to customer content.

How do I purchase Customer Lockbox for Office 365?

Customer Lockbox for Office 365 will be available as part of a new premium Office 365 Enterprise Suite called E5. More information on E5 can be found here.

Video: Customer Lockbox Overview

Resources

Instagram Hack - Protect Yourselves This Holiday

Enjoying those holiday photos you're getting in the mail and seeing online? Instagram recently had a security issue that accidentally exposed some of its users' passwords. You can read about it at...

Understanding Office 365 Identities

Which one is right for you? Your identity model is how you choose to integrate your Office 365 user directory with your existing corporate directory. When moving your organization to Office 365, this...

Spear Phishing Attack Simulator

What is Spear Phishing?

Cloud Security Assessment

We hear about breaches ever day now.  Make sure you are doing your best to protect your organization.  Discuss your strategies with our engineers.