Announcement ID | MC927962 | Published Date | 11-07-2024 | |
Service | Microsoft365Defender | Last Updated | 11-07-2024 | |
Category | Plan for change | Expiration Date | 03-31-2025 | |
Roadmap ID | Action Required by Date | |||
Tags | Admin impact, Feature update, User impact |
Summary |
---|
Microsoft Defender for Office 365 introduces new limits for email remediation to maintain system stability. Key changes include a tenant-level limit of 50 concurrent remediations, an email count limit of 1 million, and specific recipient percentage requirements. Rollout begins late November 2024, with no admin action needed. |
More Information |
---|
Email remediation is an existing feature in Microsoft Defender for Office 365. With this rollout, we are introducing new limits for remediation actions, to ensure system stability and optimal performance. This change aims to prevent scenarios where large-scale remediation efforts affect other users and degrade system performance. Key changes
Note: If these limits are not met, the remediation request will be blocked, and an error message will prompt the admin to distribute the load. When this will happen:General Availability (Worldwide): We will begin rolling out late November 2024 and expect to complete by late January 2024. How this will affect your organization:If you as an admin have investigated using Explorer (Threat Explorer), an email entity, Advanced Hunting, or the Automated Investigations and Response (AIR) pending queue, and have selected entities to remediate, then you can create a remediation:
The new limits will be on by default. What you need to do to prepare:This rollout will happen automatically by the specified date with no admin action required before or after the rollout. Review your current configuration to determine the impact for your organization. You may want to notify your admins about this change and update any relevant documentation. |