Microsoft 365 Admins: December 2025 — Retirements, New Features & What IT Teams Need to Do Next

December 3, 2025December 1, 2025 by Kumaran

December is usually the month where admins brace for year-end freezes… but Microsoft apparently didn’t get the memo. This month’s wave of updates brings retirements, new capabilities, compliance upgrades, and several “fix this or something breaks” action items for enterprise tenants.

As 2025 comes to a close, Microsoft is rolling out a series of final updates that reinforce its focus on data governance, AI-powered productivity, and secure-by-default principles. With key feature retirements, new security protections in Teams, and compliance tools being supercharged, December is far from a quiet month for Microsoft 365 admins.

Whether you manage collaboration, security, data lifecycle, or compliance, this guide covers the critical retirements, new features, enhancements, and action items rolling out this month.

December at a Glance

Category	Count
🔻 Retirements	6
🆕 New Features	12
🔧 Enhancements	8
🔄 Functionality Changes	3
⚠️ Action Required	3

Retirements: Cleanup Season Arrives for Legacy Features

Favorite Contacts Retires in Microsoft Places

Early December marks the retirement of the Favorite Contacts experience in Microsoft Places, replaced with the more consistent Frequent Contacts model used across other apps. Admins also lose the related PowerShell control.

🔗 Learn more:
https://admin.cloud.microsoft/?#/MessageCenter/:/messages/MC1182693

App Skills Retired in Copilot for Excel

Microsoft is removing App Skills from Copilot for Excel and promoting Agent Mode as the new standard for in-workbook insights. Copilot Chat remains the recommended fallback.

🔗 Reference:
https://admin.cloud.microsoft/?#/MessageCenter/:/messages/MC1184407

TeamworkDevice (Beta) API Removed From Microsoft Graph

The TeamworkDevice (beta) Graph API will be retired on Dec 8, 2025. Device management now routes through the Teams Rooms Pro Management Portal.

🔗 Details:
https://admin.cloud.microsoft/?#/MessageCenter/:/messages/MC1183294

PowerPoint “Reuse Slides” Feature Retired

The well-loved Reuse Slides feature disappears from PowerPoint for Windows and Mac this month. Users must manually copy/paste slides after the removal.

🔗 Details:
https://admin.cloud.microsoft/?#/MessageCenter/:/messages/MC1179161

End of Support for Teams on Android 8

By late December, Microsoft will no longer provide security patches or bug fixes for Teams on Android 8 devices.

🔗 More info:
http://admin.cloud.microsoft/?#/MessageCenter/:/messages/MC1181212

Assignments & Courses ACEs Retired in Viva Connections/SharePoint

Education tenants should prepare for the retirement of Assignments and Courses ACEs on Dec 31, 2025, with end of support coming June 30, 2026.

🔗 Announcement:
https://admin.cloud.microsoft/?#/MessageCenter/:/messages/MC1184647

New Features: High-Impact Enhancements You’ll Want to Enable

Priority Cleanup for Purview Data Lifecycle Management

A powerful new capability allows admins to delete OneDrive and SharePoint content even if retention or legal holds apply, ideal for high-volume items like meeting recordings.

🔗 Feature documentation:
https://learn.microsoft.com/en-us/purview/priority-cleanup-exchange

Tenant-owned Domain Impersonation Detection in Teams

Teams will now automatically warn users when external senders use look-alike domains (e.g., “c0ntoso.com”), a major uplift in external collaboration protection.

🔗 Message Center:
https://admin.cloud.microsoft/?#/MessageCenter/:/messages/MC1187679

More Accurate Presence for Teams on the Web

Teams presence will finally behave intelligently in the browser by tracking device activity, not just active tabs.

🔗 Info:
https://admin.cloud.microsoft/?#/MessageCenter/:/messages/MC1184412

Cost Estimator & Transparency Reports for Data Security Investigations

Purview now offers a lightweight cost estimator and a billing usage dashboard for DSI workloads.

🔗 Reference:
https://admin.cloud.microsoft/?#/MessageCenter/:/messages/MC1186360

Automatic Work Location Based on Wi-Fi

Teams can automatically set a user’s work location when connecting to company Wi-Fi.

🔗 Roadmap item:
https://www.microsoft.com/en-US/microsoft-365/roadmap?filters=&searchterms=488800

Integration of Insider Risk & Data Security Investigation

Admins can now launch a pre-scoped DSI directly from an Insider Risk case, streamlining investigations.

🔗 Roadmap item:
https://www.microsoft.com/en-us/microsoft-365/roadmap?filters=&searchterms=501781

Microsoft 365 Backup Activity Logging

Backup policy changes and restore events will now surface in Microsoft 365 monitoring logs.

🔗 Roadmap:
https://www.microsoft.com/en-US/microsoft-365/roadmap?filters=&searchterms=500019

Actionable DLP Email Notifications

Users can now remediate DLP violations directly from email alerts: stop sharing, delete files, apply labels, and more.

🔗 Roadmap:
https://www.microsoft.com/en-US/microsoft-365/roadmap?filters=&searchterms=464996

PST Import Support for the New Outlook

Admins rejoice: PST import is coming to the new Outlook, easing migrations and mailbox recovery work.

🔗 Roadmap:
https://www.microsoft.com/en-US/microsoft-365/roadmap?filters=&searchterms=485739

ChatGPT Enterprise Connector Integration with Purview

Organizations can now collect and review ChatGPT Enterprise prompt/response logs within Purview.

🔗 Roadmap:
https://www.microsoft.com/en-us/microsoft-365/roadmap?filters=&searchterms=401125

eDiscovery Premium Support for Non-M365 Data

Review sets in eDiscovery Premium will support non-Microsoft 365 content through direct import.

🔗 MC post:
https://admin.cloud.microsoft/?#/MessageCenter/:/messages/MC1176369

Enhancements: Improvements That Take Governance & Security Further

Sensitivity Label Group Modernization

Parent labels are being replaced by clean Label Groupings, reducing UI confusion.

🔗 Roadmap:
https://www.microsoft.com/en-US/microsoft-365/roadmap?filters=&searchterms=386900

Updated Identity Protection Alert Settings in Defender XDR

Starting Dec 11, admins can choose to ingest:

High-risk alerts only
High + Medium
All detections

The default will shift to High-risk only.

🔗 Message Center:
https://admin.cloud.microsoft/?#/MessageCenter/:/messages/MC1190195

Organizational Messages Expanded to Hybrid-Joined Devices

Hybrid-joined endpoints now receive Organizational Messages alongside cloud-joined devices.

🔗 Roadmap:
https://www.microsoft.com/en-US/microsoft-365/roadmap?filters=&searchterms=503564

Insider Risk Management Scale Increases

Variants, detection group size, and total indicators get major increases for enterprises with high-volume signals.

🔗 Roadmap:
https://www.microsoft.com/en-US/microsoft-365/roadmap?filters=&searchterms=518291

Multiple DLP Policies as IRM Triggers

IRM can now listen for multiple DLP policies at the same time.

🔗 Roadmap:
https://www.microsoft.com/en-in/microsoft-365/roadmap?searchterms=493757

SMTP DANE with DNSSEC for Exchange Online (GCC High & DoD)

Better email authentication and routing security arrives for government cloud tenants.

🔗 Roadmap:
https://www.microsoft.com/en-in/microsoft-365/roadmap?featureid=361914&searchterms=361914

Microsoft 365 Backup for GCC

GCC tenants will gain access to Microsoft 365 Backup this month.

🔗 Roadmap:
https://www.microsoft.com/en-US/microsoft-365/roadmap?filters=&searchterms=494517

Planner Retention Support (Data Lifecycle Management)

Admins will be able to apply retention policies to Planner content, finally enabling compliance-grade lifecycle control.

🔗 Roadmap:
https://www.microsoft.com/en-US/microsoft-365/roadmap?filters=&searchterms=486828

Existing Functionality Changes: Updates You’ll Notice Immediately

Teams App Usage Report → Integrated Apps Usage Report

The redesigned report now includes Teams, Outlook, Microsoft 365 apps, and Copilot extensions.

🔗 Roadmap:
https://www.microsoft.com/en-in/microsoft-365/roadmap?id=410248

Intune Firewall Rules Updated (Azure Front Door)

Starting Dec 2, Intune endpoints shift to Azure Front Door IPs. Firewall allowlists must be updated.

🔗 Message Center:
https://admin.microsoft.com/Adminportal/Home#/MessageCenter/:/messages/MC1150664

SharePoint Agent Usage Stats Aggregated Tenant-wide

Instead of per-site views, SharePoint now aggregates usage statistics across the entire tenant.

🔗 Roadmap:
https://www.microsoft.com/en-US/microsoft-365/roadmap?filters=&searchterms=480729

Action Required: These Items Must Be Addressed Before Year-End

UKG & Blue Yonder Connectors in Teams Shifts Retired (Dec 7)

UKG → migrate to UKG Flow
Blue Yonder → build a custom integration

🔗 MC post:
https://admin.cloud.microsoft/?#/MessageCenter/:/messages/MC1166868

Visio Data Visualizer Add-in Removed from Excel (Dec 8)

Creation of new diagrams via the add-in ends December 8. Export existing files to .vsdx.

🔗 MC post:
https://admin.cloud.microsoft/?#/MessageCenter/:/messages/MC1182535

Mailbox Audit Log Cmdlets Retired (Late 2025)

Search-MailboxAuditLog and New-MailboxAuditLogSearch will be retired; use Search-UnifiedAuditLog instead.

🔗 TechCommunity post:
https://techcommunity.microsoft.com/blog/microsoft-security-blog/microsoft-exchange-online-search-mailboxauditlog-and-new-mailboxauditlogsearch-w/4366310

Final Thoughts: A Busy Month Sets the Tone for 2026

December 2025 is a fitting finale for the year, focused on resilience, risk mitigation, and refinement. AI is evolving, compliance tools are tightening, and the experience across M365 is becoming more predictable, governable, and secure.

Review what’s retiring
Enable new protections
Prepare for shifting compliance baselines
Communicate change to stakeholders

Stay sharp. Stay secure. Stay compliant.

Thank you for stopping by. ✌️

Microsoft 365 Admins: November 2025 Brings Major Retirements, AI-Driven Upgrades, and Required Actions – Here’s Your Definitive Guide

November 4, 2025November 2, 2025 by Kumaran

As 2025 winds down, Microsoft isn’t letting up. November is packed with meaningful retirements, AI-powered enhancements, and compliance-driven feature updates across SharePoint, Teams, Exchange, Purview, and Defender. Whether you’re overseeing tenant governance, security, automation, or user productivity, this month demands your attention.

Let’s walk through the key retirements, features, enhancements, and action items that Microsoft 365 admins and enterprise IT teams need to plan for right now.

November at a Glance

Category	Count
Retirements	6
New Features	12
Enhancements	5
Functionality Changes	2
Action Required	4

Retirements: What’s Going Away

SharePoint SendEmail API
Retires Nov 1, 2025 — For years, custom code, Power Automate, and legacy workflows leaned on SP.Utilities.Utility.SendEmail to fire off emails straight from SharePoint. Effective October 31, this API stops working. Purview logs can help discover impacted implementations. The modern path: shift all automation to the Microsoft Graph API or Outlook connector for any ongoing email requirements.
🔗 More Info
Mobile Devices Page in Outlook Web & New Outlook
Retires Nov 6, 2025 — The dedicated device management UI inside Outlook Web is going away November 6. Microsoft wants all device management to move to My Account (web portal) or native device tools on iOS/Android, reflecting the steady march toward unified endpoint management.
🔗 More Info
Power BI “Visualize the List/Library” in SharePoint
Mid-Nov 2025 — If your users like clicking a button to spin up instant Power BI reports from SharePoint lists, it’s time to adapt. These features are retiring in mid-November, along with previously published legacy-linked reports. Instead, exporting data to Power BI Desktop or using new integrations is now the path forward.
🔗 More Info
Viva Engage Desktop Notifications
Mid-Nov 2025 — With the ongoing convergence of notification systems, desktop push options in Viva Engage will disappear mid-month. The replacement? In-app notifications across Teams, Outlook, and Viva Engage provide a single, reliable place for alerting and engagement.
🔗 More Info
Microsoft Lists Mobile Apps (iOS & Android)
Mid-Nov 2025 — Bye-bye, native apps! hello, responsive web. From mid-November, Lists mobile apps will no longer be on the app stores. Guide your users to the Lists web experience instead.
🔗 More Info
“Refresh All on Page” in OneNote Meeting Details
Nov 15, 2025 — If you’re accustomed to using the “Refresh All” button in OneNote’s meeting details, mark your calendar for November 15. After this date, only manual updates (reselecting meetings) will keep things current.
🔗 More Info

New Features: Worth the Hype

Knowledge Agent in SharePoint
Launching November 1, this AI-powered tool transforms content management with Copilot-smart organization, metadata auto-fill, broken link detection, co-authoring help, and responsive Q&A features. Site admins can opt-in at their own pace.
🔗 More Info
Entra Authentication for Bots & Agents in Teams
From November 3, bots and agents in Teams group chats now use Entra-based authentication, supporting private and secure token handling. This helps organizations maintain tighter app control and smoother consent workflows.
🔗 Roadmap ID 503557
Enhanced Quarantine View in Defender for Office 365
Quarantine email previews in Defender for Office 365 now display per recipient for clarity, and clickable URLs within them are disabled for added safety. Teams, meanwhile, will now show real-time malicious link warnings in chats and channels, keeping phishing threats at bay.
🔗 More Info
Malicious URL Protection in Teams
Teams will warn users about harmful links in chats and channels.
🔗 More Info
SMTP Onboarding to App RBAC
Assigning send-as permissions gets easier now, SMTP.SendAsApp roles can be granted to apps for groups of mailboxes, streamlining what used to be a tedious PowerShell-driven process.
🔗 Roadmap ID 498356
Entra ID Passkey Profiles in Auth Methods Policy
Admins gain granular control over FIDO2 passkey policies, letting specific groups live with appropriate authentication methods as preview support lands this month.
🔗 More Info
Teams External Chat via Email
Teams is amping up external collaboration by allowing users to chat with outside contacts via email address even if they aren’t on Teams. This is enabled by default, but organizations can toggle it off through policy.
🔗 More Info
Enterprise Application Insights for SharePoint
SharePoint gains a major reporting boost with a new tool showing third-party app access, permissions, and request history, crucial for auditing and defending tenant data.
🔗 Roadmap ID 417481
IRM + DSI Integration in Microsoft Purview
Launch scoped investigations directly from Insider Risk cases.
🔗 Roadmap ID 486827
Immersive Events in Teams (GA)
Starting Nov 14, the global launch of 3D virtual events in Teams. Participants can mingle as avatars in a virtual space. Note: Premium licenses are needed for organizers, and events can handle up to 300 attendees.
🔗 More Info
Auto-Archiving in Exchange Online
When mailbox storage hits 96%, older emails are auto-moved to archive (if enabled). Rolling out for Targeted Release tenants on November 15, Exchange mailboxes nearing quota will auto-archive older emails (barring exceptions), keeping mail flowing without admin intervention
🔗 More Info
New Workflows Experience in SharePoint
Natural language flows, modernized builder, and default templates now live.
🔗 More Info

Enhancements: Behind-the-Scenes Upgrades

Quarantine Preview in Defender
Plain text removed, link previews restricted, external content disabled by default.
🔗 More Info
SharePoint Version History Optimization
Grid view edits in SharePoint lists and libraries will now roll up rapid changes into a single version, reducing clutter and storage usage, a welcome efficiency boost.
🔗 Roadmap ID 511800
Purview DLP + Entra GSA Integration
Data loss prevention policies can now tap into the network layer, inspecting files in transit (for E3/E5 tenants) and curbing shadow IT or risky cloud behaviors.
🔗 More Info
Admin Consent Now Required for Exchange/Teams APIs
Expanding Secure by Default: Admin consent is now required for all third-party API access in Exchange and Teams, matching the higher bar already enforced on SharePoint and OneDrive.
🔗 More Info
Conditional Access + Audit Logs for eDiscovery Admins
Block non-compliant admins and log FilePreviewed actions in Purview. eDiscovery admins are now bound to Entra Conditional Access. If policy requirements (like MFA) aren’t met, admins will be blocked from accessing SharePoint content in Purview, and detailed audit logging (“FilePreviewed”) is enabled.
🔗 More Info

Functionality Changes

“Files” Tab Renamed to “Shared” in Teams Channels
Now includes files AND links shared in chats, not just the document library.
🔗 Roadmap ID 470597
New Teams Calendar Experience (Legacy Toggle Removed)
Includes Copilot/Places integration. Legacy calendar retired.
🔗 More Info

Action Required

Nov 3 – Retirement of Microsoft Places Team Guidance
Switch to Microsoft 365 Groups for scheduling. Team Guidance in Microsoft Places retires on November 3. Transition team scheduling to Microsoft 365 Groups as soon as possible.
🔗 More Info
Nov 14 – Retirement of UKG & Blue Yonder Shifts Connectors
UKG users move to UKG Flow; others need custom integrations. These connectors retire November 14. UKG customers should migrate to the UKG Flow app; others can develop custom integrations to maintain workforce data flows.
🔗 More Info
Late Nov – Retirement of Viva Insights Export via MGDC
Transition to Power BI Connector in Fabric or CSV export. Exporting via Microsoft Graph Data Connect is being phased out, migrate your reporting needs to the Power BI Connector in Microsoft Fabric or CSV export by November 27.
🔗 More Info

Final Thoughts

November 2025 pushes Microsoft 365 into a smarter, more secure, AI-assisted future. Whether you’re optimizing Exchange storage, modernizing SharePoint governance, or prepping Teams for immersive experiences and secure external access, there’s something here for every admin.

Review audit logs.
Test archiving policies.
Communicate upcoming retirements to users.
Double-check consent settings for your apps.

Because in Microsoft 365 land, “set it and forget it” no longer works.

Thank you for stopping by. ✌️

Microsoft 365 Copilot App Builder and Workflows: Turning “What If” Into “Done”

November 1, 2025October 30, 2025 by Kumaran

You know that feeling when you wish you could build an app or automate a task without summoning a developer, bribing them with coffee, or learning Power Automate yourself?
Well, Microsoft heard the collective sigh of the modern workforce and said, “Hold my cloud.”

Enter the newest duo in Microsoft 365 Copilot’s lineup, App Builder and Workflows, the AI-powered sidekicks that make “vibe coding” (yes, that’s now a thing) a workplace reality.

What’s the Big Idea?

Microsoft is leaning hard into natural language app creation, imagine chatting with your digital assistant and saying:

“Hey Copilot, build me an app that tracks our product launch tasks, assigns owners, and updates the dashboard weekly.”

And in a few conversational turns, boom!, it’s done.
No schema design. No Power Automate flow spaghetti. No weekend lost to trial-and-error.

These two new agents, App Builder and Workflows live inside the Microsoft 365 ecosystem, letting you build, automate, and connect your work life in Outlook, Teams, and SharePoint just by describing what you need.

Meet the Dynamic Duo

App Builder: Creating Functional Applications at Conversational Speed

App Builder, Instead of writing requirements documents, creating data models, and waiting for sprint cycles, you can now describe an application’s purpose to Copilot, and it generates a working prototype in minutes.

What Can You Actually Build?

The possibilities are expansive. Imagine preparing for a product launch and needing dashboard-style tracking for launch milestones, task assignments, and campaign progress. With App Builder, you describe this scenario, and Copilot generates an interactive application complete with:

Dashboards and visualizations – charts, progress indicators, and real-time data displays
Data collection forms – lists, input fields, and structured data capture
Calculators and computational tools – custom logic without a single line of code
Interactive elements – anything your imagination can conjure up in a conversation

The magic? Your app is grounded in actual Microsoft 365 content – documents, spreadsheets, presentations, and OneNote files. It’s not abstract; it’s connected to your organizational data. Even more powerful, App Builder can generate and store new data using Microsoft Lists as a backend, giving you a proper database foundation without the traditional database setup headaches.

The Development Workflow is Deceptively Simple

Here’s where this becomes useful for those of us who’ve managed enterprise deployments: the development loop is instantaneous.

Describe what you need in natural language through Copilot’s chat interface
Preview your application directly within Copilot without leaving the chat
Refine iteratively based on feedback – add fields, adjust visualizations, modify logic
Deploy at conversational speed – each edit happens in the same conversation, making refinement effortless

Sharing? It’s trivial. Generate a link and distribute it exactly like you would a document. No complicated deployment processes, no provisioning requests, no waiting for your infrastructure team to create Azure resources. It’s the democratization of app development we’ve been theoretically discussing for the past five years, now actualized.

The Backend Reality Check

For those of us who’ve spent years wrestling with application architecture, here’s the beautiful part: App Builder abstracts complexity while maintaining enterprise integrity. The backend uses Microsoft Lists, which is infinitely more robust than Excel spreadsheets but infinitely simpler than building custom databases. It respects your organizational structure, permissions model, and data governance frameworks – not because it’s forced to, but because it’s natively integrated within the Microsoft 365 ecosystem.

Workflows: Your New Favorite Colleague That Never Forgets

Remember that one co-worker who keeps missing the Monday reminder email? Replace them (kindly) with Workflows, the Copilot agent that automates repetitive tasks across Outlook, Teams, SharePoint, and Planner.

Describing Automation, Not Coding It

The Workflows agent converts natural language descriptions into automated processes across your entire M365 ecosystem. Imagine you want to:

Send recurring team updates – describe it to Copilot, and it generates a flow that sends Teams messages every Monday with upcoming deadlines and priority tasks from Planner
Post approval reminders – describe the requirement, and Copilot creates workflow logic that posts reminders in Teams channels
Manage calendar automation – handle scheduling, time zone conversions, and conflict management without writing integration code
Email orchestration – send triggered emails based on conditions you describe conversationally

The workflow visualization happens in real-time as Copilot builds your automation. You see each step as it’s created, understand the logic flow, and can request modifications mid-conversation. Want to add another condition? Describe it. Need to adjust a trigger? Say it out loud (well, type it). The conversation remains context-aware, allowing iterative refinement without starting over.

Enterprise-Grade Reliability with End-User Simplicity

Here’s the strategic genius: Workflows is optimized for end-user simplicity but built on the same enterprise infrastructure that powers Agent Flows in the full Copilot Studio experience. This isn’t a toy framework; it’s production-ready automation infrastructure made accessible through conversational interfaces.

For those of us managing enterprise deployments, this means:

Consistent reliability – same backend as enterprise solutions
Scalability – handles organizational-scale automation without degradation
Supportability – integration with existing support structures and monitoring systems
Governance – compliant with organizational policies and audit requirements

Your IT department won’t wake up at 3 AM because the Workflow agent created an automation that broke the email system. It’s designed to function reliably at scale.

And Then There’s Copilot Studio…

If App Builder and Workflows are your starter Pokémon, Copilot Studio is your evolved form. While App Builder and Workflows handle individual productivity, Copilot Studio serves as the gateway to enterprise-scale agent deployment.

It lets you build personalized, work-grounded agents that can fetch data from SharePoint, meeting transcripts, chats, or even external systems like Jira and ServiceNow.
You can start simple, “Build an agent that answers product launch FAQs” and later scale it into a fully governed, enterprise-wide digital assistant.

Security and Governance: Because AI Still Needs Adult Supervision

Microsoft didn’t forget the admins (bless them).
Everything built with App Builder and Workflows respects your existing permissions, roles, and compliance policies.

Management is streamlined through the Microsoft 365 Admin Center’s agent inventory section. Instead of one-by-one guardrails for each application or automation, admins can:

Manage group-level access – approve which departments can use App Builder or Workflows
Control agent creation and sharing – determine who can publish agents across the organization
Monitor activity – visibility into what agents are being built and how they’re distributed
Enforce compliance – ensure all agent activity aligns with organizational policies

This addresses the concern every IT leader has about democratized development: “Won’t everyone build chaotic, unsupported applications?” With App Builder and Workflows, the answer is “Not if you don’t want them to” – because governance is enforced systematically, not through hope and prayer.

Admins can manage all these conversational AI tools right from the Microsoft 365 admin center, with unified visibility and granular control. That means no more rogue automations or apps accidentally emailing the entire company (we’ve all been there).

Who Gets to Play? Join the Frontier Program

These features are currently rolling out under the Microsoft 365 Frontier Program, Microsoft’s early-access sandbox for bleeding-edge AI features.
It’s like being a beta tester, but with less risk of your PC catching fire.

The Frontier program serves another purpose beyond technical access: it creates feedback loops. Microsoft collects real-world usage patterns, identifies edge cases, and refines the platform based on actual deployment experiences. Early access participants are shaping the future of these tools which is either exciting or terrifying depending on your perspective.

Want in?
Submit that IT ticket. Be nice to your IT folks. Maybe throw in the brownie offer. They’ll appreciate it, and you’ll get access to tools that genuinely reshape what’s possible in your organization.

The Bottom Line

We’re at an inflection point. Ten years ago, suggesting that non-technical employees could build business applications was theoretical. Five years ago, it was aspirational. Today, it’s genuinely achievable through Microsoft 365 Copilot’s App Builder and Workflows agents.

This doesn’t eliminate the need for IT professionals – quite the contrary. Enterprise architects, security engineers, and integration specialists will be more valuable as organizational development velocity increases. The role changes from “gatekeeper of development” to “enabler of development at scale.” The skill set evolves from hand-coding solutions to designing governance frameworks, establishing architectural patterns, and managing organizational complexity.

Reality Check: It’s Still Early Days

Now, despite all the buzzwords and Microsoft’s glossy demos, App Builder and Workflows still have their fair share of quirks. I’ve tried both, and while I did eventually get a workflow up and running, it took a few rounds of stubborn persistence, a bit of patience, and maybe some caffeine-powered optimism.

The concept is brilliant, Microsoft has already proven that low-code/no-code works with Power Apps but perfecting this new, conversational layer will take time. It’s one thing for Copilot to understand “build me an app to track product launches,” and another for it to build exactly what you pictured in your head without losing context halfway through the conversation.

That said, this is absolutely a step in the right direction. In a world where IT teams are stretched thinner than an overused OneNote license, not everyone should have to learn Python just to automate a weekly task. Tools like these empower business users to take initiative without waiting weeks for development queues or change approvals.

So yes, App Builder and Workflows aren’t flawless yet, but they’re a promising start toward a workplace where “I wish this was automated” turns into “done! built it over lunch.”

Microsoft 365 Copilot’s App Builder and Workflows are a leap toward a world where anyone, not just developers can build digital solutions that actually get work done.

App Builder turns ideas into working apps.
Workflows automates the boring stuff.
Copilot Studio takes it all enterprise-scale.

Together, they’re redefining what “low-code” really means more like no-code-but-still-looks-like-magic.

Thank you for stopping by. ✌️

Source: Microsoft 365 Copilot now enables you to build apps and workflows

Microsoft 365 Admins: October 2025 Brings Key Retirements, Security Enhancements & Admin Controls – Here’s Your Definitive Guide

October 5, 2025October 1, 2025 by Kumaran

October 2025 is another loaded month for Microsoft 365 admins. From the retirement of long-standing apps like OneNote for Windows 10 and Outlook Lite to the introduction of AI-powered tools, granular Teams policies, and more secure authentication flows – this is a month to tune in and take action.

Whether you’re managing mail flow, SharePoint governance, Teams collaboration, or compliance policies, this post breaks down all the new features, enhancements, retirements, and action items in one go-to guide.

October at a Glance

Category	Count
Retirements	6
New Features	10
Enhancements	6
Functionality Changes	5
Action Required	4

Retirements: What’s Going Away

“Add to Existing Remediation” in Defender for Office 365
Retires Oct 1, 2025 – Admins can no longer add messages to ongoing remediation jobs.
Use “Create new remediation” instead.
🔗 Ref – MC1146813
Web-based “Share to Teams” from Outlook
Retires Oct 3, 2025 – The feature will prompt users to install the Teams desktop app.
Install Teams desktop to continue using “Share to Teams.”
🔗 Ref – MC1140180
Outlook Lite App
Retires Oct 6, 2025 – No new installations allowed after this date.
Use the full Outlook Mobile app for a richer experience.
🔗 Ref
OneNote for Windows 10
Retires Oct 14, 2025 – The app becomes read-only and unsupported.
Switch users to the latest OneNote for Windows app.
🔗 Ref – MC899174
SharePoint SendEmail API
Retires Oct 31, 2025 – Impacts custom code and Power Automate flows.
Use Microsoft Graph API or Outlook connectors instead.
🔗 Ref
Legacy Outlook for Mac
End of support after Oct 2025 – Legacy versions will no longer work with Microsoft 365 accounts.
Upgrade to the latest version of Outlook for Mac.
🔗 Ref

New Features: Worth the Hype

Admin Controls for Copilot Agents
Granular sharing controls for Copilot Studio agents.
🔗 Ref – MC1138797
Entra ID Free Subscription
Automatically added to track tenant ownership.
🔗 Ref – MC1156361
AI-Powered Data Security Investigations (DSI) in Purview
Find and mitigate risks with deep content analysis and smart visualizations.
🔗 Ref – MC1047912
SharePoint Assessment Dashboard
New Content Management Assessment (CMA) for lifecycle and access governance.
🔗 Ref – MC11 4 8538
Streamlined Authenticator Experience
No number matching on same-device; improved first run onboarding.
🔗 Ref – MC1117816
Info Barriers V2 Upgrade
Multi-segment support, flexible discoverability.
🔗 Ref – Roadmap ID 115482
Just-in-Time DLP Protection in SharePoint
Apply DLP rules only when risk occurs (e.g., external sharing).
🔗 Ref – Roadmap ID 139457
Cross-Cloud Sync in Entra
Sync users across commercial, Gov, and China clouds.
🔗 Ref – MC1124558
Drag & Drop Between Outlook Accounts
Move mail and files across mailboxes in New Outlook for Windows.
🔗 Ref – MC1104315
Teams External Access by Domain + User/Group
Granular federation controls now supported.
🔗 Ref – MC1150123

Enhancements: Small but Strategic

Teams Guest Invitation Sender Address Updated
Now sent from no-reply@teams.mail.microsoft.com.
🔗 Ref – MC1148535
OCR on Windows Endpoints for Purview DLP
DLP can now detect text in images and PDFs.
🔗 Ref – Roadmap ID 160008
SMTP DANE/DNSSEC for Exchange GCC/DoD
Improved email encryption in restricted environments.
🔗 Ref – Roadmap ID 361914
Unified Licensing View in Admin Center
Shows user and group-based assignments in one place.
🔗 Ref – MC1160187
DLP Alert UX Overhaul in Purview
More visibility, faster triage, unified views.
🔗 Ref – MC1148526

Functionality Changes: Worth Noting

DLP Policy Tips & Email Notifications Can Be Set Independently
Finally decoupled for SharePoint and OneDrive.
🔗 Ref – Roadmap ID 396575
Exchange Cmdlet Database Output Format Updated
More descriptive paths in Get-Mailbox, etc.
🔗 Ref – MC1108848
Throttling on onmicrosoft.com Domains
Outbound email limited to 100/day to encourage branded domains.
🔗 Ref
Office Scripts Settings Move to Cloud Policy
Admins must manage three specific script settings via CPS.
🔗 Ref – MC1150681
Shorter Teams Meeting URLs
Cleaner meeting links like https://teams.microsoft.com/meet/<meeting_id>?p=<HashedPasscode>
🔗 Ref – MC772556

Action Required: Do These Before Deadlines Hit

Deadline	Task
Oct 14	Migrate off Office 2016/2019 and Visio/Project legacy apps
Oct 20	Update MFA policy for credential management on “My Sign-ins”
Oct 20	Ensure TLS 1.3/1.2 cipher suites supported (legacy TLS deprecated)
Oct 31	Prepare for Defender for Endpoint Deception retirement

🔗 Office Retirement – MC1154299
🔗 TLS Cipher Deprecation – MC1155427
🔗 MFA for Sign-ins – MC1135479
🔗 Defender Deception Retirement

Final Thoughts

October 2025 continues Microsoft’s march toward zero-trust architecture, intelligent compliance, and tighter collaboration controls. As legacy tools like OneNote for Windows 10 and Outlook Lite fade out, the spotlight is now on AI-driven governance, adaptive DLP, and personalized admin controls.

Start planning your transitions now.
Communicate changes to your org.
Automate where possible.
Don’t wait for a 2 a.m. incident to discover a policy broke silently.

Thank you for stopping by ✌️

Microsoft 365 Admins: September 2025 Retirements, Security Shifts, and Copilot Usage Insights – Here’s Your Definitive Guide

September 5, 2025September 1, 2025 by Kumaran

September 2025 is shaping up to be one of the most impactful months for Microsoft 365 admins this year. From long-awaited retirements (farewell, Classic eDiscovery and Azure AD Graph API) to robust new features (Progressive Alert Scoring, SharePoint smart tagging, and Copilot usage metering), this month is packed with changes that demand action and attention.

Whether you’re in charge of compliance, identity, collaboration, or cloud security, this comprehensive guide gives you what you need to stay one step ahead.

September at a Glance

Category	Count
🔻 Retirements	9
🆕 New Features	13
🔧 Enhancements	10
🔄 Changes in Functionality	4
⚠️ Action Required	6

Retirements: Legacy Features You Can Let Go

1. Classic Message Trace (Exchange Online)

Sep 1, 2025 – Legacy UI and cmdlets (Get-MessageTrace, Get-MessageTraceDetail) retired.
Do this: Update to Get-MessageTraceV2 and use the modern EAC interface.
🔗 Ref

2. Client Access Rules (Exchange Online)

Sep 1, 2025 – Deprecated in favor of Conditional Access with Continuous Access Evaluation.
Do this: Migrate access controls to Entra Conditional Access.
🔗 Ref

3. Classic eDiscovery (Premium)

Sep 1, 2025 – Fully removed from Purview.
Do this: Move to Unified eDiscovery for better search and case handling.
🔗 Ref

4. Mobile Devices Page in Outlook Web

Sep 9, 2025 – Removed from OWA and New Outlook.
Do this: Use the My Account portal or native device management tools.
🔗 Ref

5. Cognitive Services & Azure ML in Power BI

Sep 15, 2025 – AI features being pulled in favor of Microsoft Fabric AutoML.
Do this: Transition to Microsoft Fabric for ML workloads.
🔗 Ref

6. Microsoft To Do Ends Support for iOS 16/macOS 12

Mid-Sep 2025 – No updates for outdated devices.
Do this: Update org device baselines to iOS 17 / macOS 13+.
🔗 Ref

7. Defender for Cloud Apps: Sub-Domains Visibility

Sep 22, 2025 – Low-use feature retired.
🔗 Ref

8. Legacy MFA & SSPR Method Management

Sep 30, 2025 – Management of authentication methods moves to the unified policy.
Do this: Transition to converged authentication methods now.
🔗 Ref

9. Azure AD Graph API

Early Sep 2025 – All apps must migrate to Microsoft Graph.
Do this: Use Entra admin center’s Recommendations tab to identify affected apps.
🔗 Ref

New Features: Worth the Hype

1. Progressive Alert Scoring in Insider Risk Management
Assess user activity multiple times per day instead of once every 24 hours. Get near real-time insights into risky behavior.
🔗 Ref

2. High Volume Exchange Email (HVE)
Send large volumes of internal mail for LOB applications and SMTP use cases—beyond standard Exchange Online limits.
🔗 Ref

3. Information Barriers in Microsoft Planner
Prevents users from discovering non-segmented users while sharing Planner plans via web and Teams.
🔗 Ref

4. Silent Test Calls in Teams
Simulate Teams call quality for network diagnostics—now available for Windows and Mac (Teams Premium required).
🔗 Ref

5. Rule-Based App Management in Teams
Set app permissions and availability based on scopes and publisher trust—control Microsoft 365 certified apps centrally.
🔗 Ref

6. New Secure Score Recommendations
Enhance security posture with new recommendations:
• Remove inactive service accounts
• Remove passwords from AD attributes
🔗 Ref

7. Teams + Defender for Office 365 Integration
Manage allow/block lists for external domains using the Tenant Allow/Block List (TABL) in Microsoft Defender.
🔗 Ref

8. New SharePoint Workflows
Power Automate-based automation embedded in SharePoint with natural language, Madlib-style editor, and better UI.
🔗 Ref

9. Retention Based on Last Accessed
Configure Purview retention policies for OneDrive and SharePoint based on when files were last accessed.
🔗 Ref

10. Priority Cleanup in Data Lifecycle Management
Allows deletion of SharePoint/OneDrive items before retention expires. Includes dual admin approval, simulation mode, and logs.
🔗 Ref

11. Copilot Usage Report
Monitor and manage costs from Copilot Chat with detailed reporting on metered message usage by user, agent, and policy.
🔗 Ref

12. Smart Tags for eSigned Docs in SharePoint
Automatically tag signed documents and add metadata columns for signature status and provider.
🔗 Ref

13. Teams Private Channel Expansion
Big lift for Teams limits:
• 1000 private channels per team
• 5000 members per private channel
• Meeting scheduling and DLP support
🔗 Ref

Enhancements: Small but Mighty

Auto Work Location Detection in Teams – Based on Wi-Fi or peripherals.
Updated SharePoint Page Analytics – Up to 365-day view history, reactions, shares, and Excel exports.
Purview Diagnostics Access – Now available to more admin roles.
Outlook Mail Merge (Advanced) – Dynamic fields and personalizations now in web and Windows clients.
Authenticator Improvements – No more number matching for same-device logins, cleaner FRX setup.
SharePoint Smart Tagging – Auto-adds metadata for eSigned documents.
Teams Join URL Validation – Ensure rewritten links don’t break meeting joins.
License Assignment Path in Admin Center – Easily view direct vs group-based license sources.
Streamlined Purview DLP Alert Settings – Sync alert states between portal and PowerShell.
Teams Auth Module Updates – New app permissions required: GroupMember.Read.All, RoleManagement.Read.Directory.

Functionality Changes: Take Note

Access Review History Limited to 12 Months
Export old data now using Microsoft Graph or Azure Data Explorer.
🔗 Ref
Defender for Identity Alert Migration to XDR
Update alert workflows and exclusions for XDR platform.
🔗 Ref
OneDrive: Unlicensed Accounts Enter Read-Only Mode
Deadline: July 28 → Enforcement: Sep 26, 2025
🔗 Ref
DLP Rule Visibility Fix in Portal
Now reflects accurate status if disabled via PowerShell.
🔗 Ref

Action Items: Handle These Before the Alarm Bells Ring

Deadline	Task
Sep 1, 2025	Migrate to new Message Trace, Unified eDiscovery, Conditional Access
Sep 2, 2025	Create Azure DevOps–specific Conditional Access policy
Sep 14, 2025	Update Teams PowerShell app permissions
Sep 15, 2025	MFA required for credential management in Entra
Sep 30, 2025	Converge legacy MFA and SSPR policies
Ongoing	Migrate apps from Azure AD Graph to Microsoft Graph

Final Thoughts

September 2025 is a turning point month for Microsoft 365 environments. Between the retirement of major legacy features and a flood of next-gen tools and AI insights, it’s clear that Microsoft is pushing the ecosystem toward tighter security, smarter automation, and more control for admins.

Bookmark this guide.
Review your tenant configurations.
Communicate changes to your teams.
Knock out required actions before deadlines bite.

Because in enterprise IT, proactive beats reactive every time.

Thank you for stopping by. ✌️