Services
Affected Platforms
Summary
Microsoft Purview Insider Risk Management will increase variant limits per indicator from 3 to 10, total variants to 100, and detection group capacity from 200 to 500. Rollout starts December 2025 (preview) and January 2026 (general availability). No privacy or compliance changes; admins can review policies to utilize new limits.
Details
We’re increasing flexibility in Microsoft Purview Insider Risk Management to help organizations better manage insider risk scenarios. Based on customer feedback, we are raising the variant limit per indicator and expanding detection group capacity, enabling more comprehensive policy configurations.
This message is associated with Microsoft 365 Roadmap ID 518291.
When this will happen- Public Preview: Rollout begins in early December 2025 and is expected to complete by late December 2025.
- General Availability (Worldwide): Rollout begins in mid-January 2026 and is expected to complete by late January 2026.
Who is affected: Admins managing Microsoft Purview Insider Risk Management policies.
What will happen:
- Variant limit per indicator increases from 3 to 10.
- Overall variant limit across all indicators increases to 100.
- Detection group capacity increases from 200 to 500 items.
- No changes to privacy controls: users remain pseudonymized by default, and role-based access controls and audit logs continue to apply.
- No action is required before rollout.
- If desired, review your Insider Risk Management policies to take advantage of expanded limits.
Learn more: Configure policy indicators in Insider Risk Management | Microsoft Learn
No compliance considerations identified. Review as appropriate for your organization.