Are security features enabled by default in Microsoft 365?
Microsoft 365 comes with several security features pre-configured, but not all advanced protections are enabled by default. Basic features like email filtering, antivirus, and simple policies are active, while advanced features like multi-factor authentication, Advanced Threat Protection (ATP), Conditional Access, and Secure Score require administrative activation and customization to provide a full level of security.
Background and overview
Security is a core part of Microsoft 365, but to maximize protection, administrators often need to configure and enable certain features. This is because organizations’ needs and risk profiles vary.
Basic security features
Businesses get direct protection against malware and spam via Exchange Online Protection, as well as basic antivirus for files and emails.
Advanced security features
Features such as Advanced Threat Protection (ATP), Safe Links, Safe Attachments, Conditional Access and MFA are not always enabled by default, but require administrative configuration.
Why some features are not active by default
Microsoft leaves flexibility for companies to customize security according to risk level, user groups and internal policies, leaving advanced settings to be manually enabled.
Enable and configure security
Administrators use Microsoft 365 Security & Compliance Center or Azure AD to enable MFA, configure ATP, Conditional Access and check Secure Score to improve security.
Reporting and transparency
Once activated, logs and reports provide visibility into user activity and security status, facilitating monitoring and compliance.
Benefits of enabling security features
Fully enabled security features reduce the risk of data breaches, phishing, ransomware and other cyber threats, while strengthening your organization’s compliance and security awareness.
Common mistakes
Relying on default settings without enabling advanced protections, or not informing users of new policies, can limit security.
Main points about the default activation of security features
- Basic protection: Malware and spam filtering is automatically activated.
- Advanced protections: Advanced Threat Protection (ATP), Safe Links and Safe Attachments require activation.
- Multi-factor authentication: Not always enabled by default, should be enabled manually.
- Conditional Access: Requires configuration to manage risk levels.
- Secure Score: Helps administrators identify and implement additional protections.
- Reporting: Provides transparency and facilitates compliance once the features are activated.
Related questions
Are all security features enabled by default?
No, basic functions are active, but advanced protections require administrative configuration.
Which functions are active directly?
Exchange Online Protection, basic antivirus and spam filters are examples of features that are active right away.
How to activate MFA and ATP?
Through the Microsoft 365 Security & Compliance Center or Azure AD, where administrators can configure policies and enable protection.
What is Secure Score?
A score showing the company’s security status and recommended actions to improve protection.
Why is it important to enable advanced features?
To protect against advanced threats such as phishing, ransomware and social engineering, which are not always stopped by basic protection.
