Microsoft 365|Microsoft Teams

How to De-identify PII data from the Teams Admin Usage Report

Microsoft announced recently that the rollout of a new feature in Teams usage reporting has completed and should be available for all. This will put many an IT Pro’s minds’ at rest, at least a little more. :)

Prior to the rollout of MC244599, the Teams admin center exposed user identifiable information (PII) like AAD Id, username, email etc. in various reports. This included the Teams’ user activity and device usage reports, etc. The Teams usage reports available in the Microsoft 365 admin center already have the capability of having PII data de-identified. Now, this capability is shared in the Teams admin center.

Microsoft is introducing a capability to allow Global Admins to de-identify PII information in Teams usage reports based on anonymization settings in the M365 Admin Center. This will allow Global Administrators to hide PII data in their organization. Here’s how to check the current setting in your organization:

  1. Open the Microsoft 365 Admin Center -> https://admin.microsoft.com/
  2. Make sure the navigation menu along the left is expanded. Click Settings -> Org Settings.
  3. Scroll down and click the Reports item.
  4. If you want your user data de-identified, check the first box – ‘Display de-identified user, group, and site names in all reports.’
  5. Click Save and you’re done!

If you choose to de-identify data, here are the changes you’ll find in the Teams ‘user activity report:

Sponsored Content

Passwords Haven’t Disappeared Yet

123456. Qwerty. Iloveyou. No, these are not exercises for people who are brand new to typing. Shockingly, they are among the most common passwords that end users choose in 2021. Research has found that the average business user must manually type out, or copy/paste, the credentials to 154 websites per month. We repeatedly got one question that surprised us: “Why would I ever trust a third party with control of my network?

  • Report UI Changes – Display name column information will be de-identified.
  • Report Export changes – ID, DisplayName and UserName columns information will be de-identified.

Here are the changes you’ll discover in the Teams ‘device usage’ report:

  • Report UI changes – Display name column information will be de-identified
  • Report Export changes – ID, DisplayName and UserName columns will be de-identified.

As Global Administrators in your organization, you’ll have more control over the PII data in your reports. This will be helpful if your security and compliance folks would prefer (or require) that these reports NOT contain PII data. Be sure to bring this up to the attention of your compliance team and come to a decision on how you want to move forward.

Related Topics:

BECOME A PETRI MEMBER:

Don't have a login but want to join the conversation? Sign up for a Petri Account

Register
Comments (0)

Leave a Reply

Don't leave your business open to attack! Come learn how to protect your AD in this FREE masterclass!REGISTER NOW - Thursday, December 2, 2021 @ 1 pm ET

Active Directory (AD) is leveraged by over 90% of enterprises worldwide as the authentication and authorization hub of their IT infrastructure—but its inherent complexity leaves it prone to misconfigurations that can allow attackers to slip into your network and wreak havoc. 

Join this session with Microsoft MVP and MCT Sander Berkouwer, who will explore:

  • Whether you should upgrade your domain controllers to Windows Server
    2019 and beyond
  • Achieving mission impossible: updating DCs within 48 hours
  • How to disable legacy protocols and outdated compatibility options in
    Active Directory

Sponsored by: