Customer Lockbox for office 365

 

What is Customer Lockbox Request?

One of the worries that keeps many companies from adopting cloud services for e-mail and other collaboration services; the question that who has control over the security of the content. So Microsoft has provided the solution to this concern by introducing a new feature of Customer Lockbox Request in its E5 license.

As an Office 365 admin, customer lockbox requests allow you to control how a Microsoft support engineer accesses your data. Sometimes if you run into an issue, you might need a Microsoft support engineer to help you fix it. In some cases, the support engineer will require access to your Office 365 content to troubleshoot and fix the issue. Customer lockbox requests allows you to control whether or not to give the support engineer access to your data. There’s also an expiration time on the request and content access is removed after the support engineer has fixed the issue.

Microsoft has automated everything to avoid the need of any human to touch customer’s data. There are very rare instances when a Microsoft engineer has to log in to a customers’ services. And even if he does need to do that, in those cases customer’s approval is necessary.

Customer lockbox is included in the Office 365 E5 plan. If you don’t have an Office 365 E5 plan, you can buy a separate customer lockbox subscription with any Office 365 Enterprise plan.  Customer lockbox works with Exchange Online, SharePoint Online, and OneDrive for Business.

How Customer LockBox Works?

Customer Lockbox brings an additional layer of protection to Microsoft’s already rigorous access control policies, in an effort to maximize data security and privacy for Office 365 customers.

It gives customers unique control over their data by eliminating unnecessary access by Microsoft. This means that Microsoft needs your permission to access your data. For example if your business is experiencing a service issue that requires Microsoft to access your systems in order to resolve, then you need to provide explicit permission for them to do so. You – or your Office 365 administrator, will be notified via email that there is a request for access. And then accordingly you can approve or reject these Customer Lockbox requests. So it means that you know on each and every occasion that a Microsoft engineer has a need to gain access to your company information. Until the approval of request, the Microsoft engineer will not have access.