The latest Microsoft 365 update comes about two years too late

Over the next couple of months, Microsoft will gradually roll out a new security feature for the web version of its popular collaboration and productivity platform, Microsoft 365.

Announcing the news in a blog post, the company’s Product Manager for Office Identity, Namit Gupta, explained IT managers will be able to set up a tenant-wide timeout policy to automatically sign out users after a period of inactivity on Microsoft 365 web apps.

Besides Outlook and SharePoint, which already benefit from this functionality, the update will soon be introduced to the web versions of Word, Excel, PowerPoint, OneDrive and the Microsoft 365 admin center.

Share your thoughts on Cybersecurity and get a free copy of the Hacker’s Manual 2022. Help us find how businesses are preparing for the post-Covid world and the implications of these activities on their cybersecurity plans. Enter your email at the end of this survey to get the bookazine, worth $10.99/£10.99.

Customer feedback

According to Gupta, the new feature was introduced after reviewing community feedback, with many business struggling with employees no longer working from the safety of the office since the start of the pandemic.

“Based on multiple customer conversations and feedback sessions, it became evident that our customers were looking for a more predictable and coherent solution covering the entirety of Microsoft 365 web apps,” the announcement reads.

“Idle session timeout is one of the many controls you can use with Microsoft 365 to balance user productivity and security to meet your organizational security requirements.”

Microsoft believes the update will improve the overall security posture of organizations using its collaboration platform.

Remote workers using private devices for work, as well as other people’s endpoints found in coffee shops, and libraries, present a unique risk to the organization. From time to time, workers remain logged into their Microsoft 365 accounts, leaking sensitive data to whoever uses the device after them.

Besides being more secure, Microsoft hopes such a feature will also help businesses stay compliant with data privacy laws and regulations.