Home > Violations Report
Export to PDFViolations Report
Violations report displays all detected violations within your Microsoft 365 tenants. You can click the Refresh button any time to refresh the information on this page.
To quickly locate violations, click the Filter button, set filter conditions, and click Apply to activate the filters. Alternatively, you can search for a specific rule or object by entering the rule name or object name in the Search text box and pressing Enter on your keyboard.
Fix Violations
In the violations table, each rule name is clickable. Clicking the rule name will open the rule details panel, where you can find the specific information about the violation and review the rule configurations by clicking the rule name. When a violation is marked as Waiting to fix, the Fix button will be available. You can click Fix to fix the violations promptly.
To fix multiple violations in batch, select the violations marked as Waiting to fix, and click Fix. A job will start to fix the violations. You can navigate to Job monitor to check the job details.
The following table lists the violation statuses and their definitions.
| Violation Status | Definition |
|---|---|
| Cannot be fixed | The violation cannot be fixed due to current rule configurations or restrictions in your Microsoft 365 environment. You can refer to Details to find more detailed information regarding why the violation cannot be fixed. |
| Error | An unexpected error occurred while monitoring your Microsoft 365 environment. You can refer to Details to find more detailed information on the error. |
| Failed to fix | An unexpected error occurred while fixing the violation. You can refer to Details to find more detailed information on the failure. |
| Fixed | The violation has been fixed. |
| Manual fix required | This status is typically associated with data deletion. Policies for Microsoft 365 cannot decide how this violation should be resolved. You can manually fix the violation directly within your Microsoft 365 environment. |
| No need to fix | This status will appear when Policies for Microsoft 365 attempts to fix the violation but finds that the violation no longer exists. |
| Skipped | This status generally occurs when Policies for Microsoft 365 attempts to fix the violation but finds that the associated object no longer exists in the Microsoft 365 tenant. |
| Waiting to fix | The violation is waiting to be fixed. You can click the Fix button to fix the violation promptly. This status usually occurs when the auto-fix-violations feature is disabled in rule configurations. |
| Manually fixed | This status is designed for the Risk management module of Elements, indicating user-initiated resolution of violations. For some violations, users can fix them directly through the Elements interface. This operation will trigger a rescan process in the backend of Policies for Microsoft 365. If the rescan process verifies that the violation no longer exists, this status will be displayed. |
| Rescanning | This status is designed for the Risk management module of Elements, indicating a rescan is currently in progress. For some violations, users can fix them directly through the Elements interface. This operation will trigger a rescan process in the backend of Policies for Microsoft 365. If the rescan process is in progress, this status will be displayed. |
Ignore Risks
For the violations of the Guest User Access Enforcement or Site Collection Administrator Restriction rules, you can choose to ignore the violations if the out-of-policy users are intentionally allowed in your Microsoft 365 environment. This functionality gives you flexibility to balance security compliance with business needs.
To review violation details, click the rule name to open the rule details panel. For each risk reported in the details, you can choose to fix the risk or ignore the risk. Once a risk is ignored, the out-of-policy user in the ignored risk will no longer be reported as a violation by this policy.
All ignored risks can be reviewed in the Violations report > Ignored risks tab. You can click the rule name to open the rule details panel where you can find the rule configurations and the ignored risks.
To remove an ignored risk, click the Remove button next to it, and click Save. Click OK in the pop-up confirmation window to confirm your operations. The ignored risk will be removed, and it will be reported again as a violation the next time the policy is enforced.
Export Violations
To export violations, select some violations and then click Export to export the selected violations. Without selecting any violations, all violations in the table will be exported. If you have configured some filters, only the filtered violations will be exported. An Export violations job will start, and you can navigate to Job monitor to check the job details. After the job is completed, you can download the report.