IT Professional

SharePoint Online is a collection of Web-based tools and technologies that help your organization store, share, and manage digital information. Built on Microsoft SharePoint Server 2013, this hosted service is ideal for working on projects, storing data and documents in a central location, and sharing information with others. The following SharePoint features support IT Professionals in securing and managing their organization's SharePoint environment.

Active Directory synchronization

If your company has existing users in a local Active Directory environment, there are tools for synchronizing those users to your Office 365 for enterprise directory. The Office 365 directory then feeds the SharePoint Online user profile. Learn more about Active Directory Synchronization.

Alternate Access Mapping (AAM)

Not available to SharePoint Online customers. SharePoint Server 2013 customers can configure alternate access mapping to map requests where the URL of a Web request received by Internet Information Services (IIS) differs from the URL that was typed by a user.

Anti-malware protection

SharePoint Online provides anti-malware protection for files uploaded and saved to document libraries. This protection is provided by the Microsoft anti-malware engine that is also integrated into Exchange. This anti-malware service runs on all SharePoint Online Content Front Ends (CFEs).

Claims-Based Authentication Support

Not available to SharePoint Online customers. SharePoint Server 2013 customers configure claims-based authentication for web applications that support SharePoint Server 2013 server-to-server authentication and app authentication. Learn more about claims-based authentication.

Data loss prevention

Data loss prevention (DLP) identifies sensitive data stored in SharePoint Online. Identifying sensitive data can help you reduce risks to your organization. You can search for the sensitive information types in your organization using the eDiscovery Center. Sensitive content detections are noted, stored, and only available to approved users in the eDiscovery Center, and the classification results can be easily exported. To learn more about sensitive data types, see Sensitive information types inventory. Learn more about how to Use DLP in SharePoint Online to identify sensitive data stored on sites.

Encryption at rest

There are two levels of encryption at rest for SharePoint Online. SharePoint Online Encryption at rest will provide BitLocker encryption by default on all customer document libraries, users' OneDrive for Business data, and site data that reside in the Office 365 datacenters. Per-file encryption will encrypt every individual file stored in SharePoint Online and OneDrive for Business with its own unique key. SharePoint Online and OneDrive for Business always provide encryption in-transit. To learn more about Encryption at rest, see Innovations in security and compliance.

Host Header Site Collections

Not available to SharePoint Online customers. SharePoint Server 2013 site collections can have their own unique host header. Creating a host-named site collection enables organizations' to host multiple site collections with vanity URLs, which are easier for people to remember.

Mobile Device Management for Office 365

You can use Mobile Device Management (MDM) for Office 365 to set device security policies and access rules, and to wipe mobile devices if they're lost or stolen. You can use MDM for Office 365 to manage many types of mobile devices, such as Windows Phone, Android, iPhone, and iPad. To manage mobile devices used by people in your organization, each person must have an applicable Office 365 license and their device must be enrolled in MDM for Office 365.


Oauth is an Internet protocol for creating and managing app identity. Oauth allows for app identity to be recognized apart from user identity. This cross-platform mechanism means apps can be granted more permissions than the current user has. Learn more about server-to-server authentication.

Patch Management

Not available to SharePoint Online customers. SharePoint Server 2013 updates will be released by using a two-step phase process: patching and upgrading. During the patching steps, new binary files are copied to the Central Administration server. Any services that are using files that have to be replaced are temporarily stopped. There are some instances when a server must be restarted.

Quota Templates

Not available to SharePoint Online customers. A quota template consists of storage limit values that specify the maximum amount of data that can be stored in a site collection. When the storage limit is reached, a quota template can also trigger an email alert to the site collection administrator. SharePoint Online administrators and SharePoint Server 2013 farm administrators can create a quota template that can be applied to any site collection.

Read-Only Database Support

Not available to SharePoint Online customers. SharePoint Server 2013 administrators can set content databases to be read-only.

Remote BLOB Storage

Not available to SharePoint Online customers. Remote BLOB Storage (RBS) is an add-on feature pack for Microsoft SQL Server. RBS is designed to move the storage of binary large objects (BLOBs) from database servers to commodity storage solutions. If the content databases in Microsoft SharePoint Server 2013 are 4 gigabytes (GB) or larger, consider using RBS as part of your data storage solution.

Request Management

Not available to SharePoint Online customers. SharePoint Server 2013 administrators can define rules, by using Request Manager, to do request routing and throttling to improve performance.

Resource throttling

Not available to SharePoint Online customers. Resource throttling provides SharePoint Server 2013 administrators with options for monitoring and throttling server resources and large lists for Web applications. Resource throttling can monitor such resources as CPU, memory, and Wait Time, checking resources every 5 seconds.

Service Application Platform

SharePoint services can be individually consumed from any Web application. This platform provides the flexibility needed to use services, depending on application needs. Web Analytics is no longer a service application. Analyses and reporting processes were incorporated into the Search service application. Office for the web is no longer a service application. Office Web Apps Server is now a separate server product. Depending on what Office 365 plan your organization subscribes to, Office for the web may be available to SharePoint Online customers. Learn more about SharePoint service applications.

SharePoint Health Analyzer

Not available to SharePoint Online customers. New for SharePoint Server 2013, site collection pre-upgrade health check examines a site collection and then generates a report listing ay potential upgrade issues and how to address the issues. For example, if a file has been customized, it will be flagged, so your organization can identify the custom file and reset it to the default template if the site definition, if you want.

SharePoint admin center (Office 365)

The SharePoint admin center, available to certain SharePoint Online customers only, enables administrators to manage features such as the following:

  • Site collections

  • InfoPath forms

  • User Profiles

  • Business Connectivity Services (BCS)

  • Managed metadata and the Term Store

  • Records management

  • Search

  • Secure Store

  • Apps for SharePoint

  • External sharing

  • Information Rights Management

  • Self-service site creation

Learn more about SharePoint admin center.

Site Collection Compliance Policies

A site collection policy can be created in the Site Collection Policies list for the top-level site in a site collection. After a site collection policy is created, it can be exported so that site administrators of other site collections can import it into their Site Collection Policies list. Creating an exportable site collection policy enables SharePoint administrators to standardize the information management policies across the sites in an organization.

Usage Reporting and Logging

Not available to SharePoint Online customers. SharePoint Server 2013 administrators use audit log reports to view the data in the audit logs for a site collection. Learn more about Site Collection audit logs.

Windows PowerShell Support

SharePoint Online administrators can use SharePoint Online Windows PowerShell cmdlets to script and automate administrative tasks for their subscription, such as the following:

  • Site creation

  • Evaluation for site upgrade

  • Site upgrade

  • Adding and removing SharePoint users and groups

  • Site repair

  • Recycle bin management

Learn more about how to use SharePoint Online Management Shell.

Feature Availability

To view feature availability across Office 365 plans, standalone options, and on-premise solutions, see SharePoint Online Service Description.