Microsoft 365 - Remote Device Wipe
Important: Only mobile phones/tablets (Android/iPhone/iPad/Google devices) that have a connection to M365 via Exchange/ActiveSync can be remotely wiped. This means:
- Laptops/desktops cannot be remotely wiped.
- Phones/tablets using Outlook on the web or a client configured for POP/IMAP cannot be remotely wiped (unless they also have an account configured via Exchange/ActiveSync).
- Only Mobile devices, when configured for your M365 account via Exchange/ActiveSync protocol, can be remotely wiped.
Remote Wipe Policy
An M365 account holder can initiate a self-service remote wipe for their mobile device.
Note: If you contact the Help Desk to perform a remote wipe, they will be unable to do this and will need to escalate the case to the M365 service and support team to perform this action.
In extraordinary cases (device is stolen, device has been compromised, and/or legal purposes), Cybersecurity and M365 support staff will initiate a remote wipe under the following conditions:
- For a university-owned device, the remote wipe must be authorized by the Dean or Director of the employing unit, or that unit’s HR department.
- For a non-university-owned device, the remote wipe must be authorized by the Dean or Director of the employing unit in consultation with the Chief of the UW-Madison Police Department or the Provost.
- If ownership of the device is uncertain, it must be treated as a non-university-owned device.
Internal Notes
Help Desk agents can assist the account holder by guiding them through the self-service process. The DoIT Help Desk cannot initiate or perform a remote wipe on the customer’s behalf.
If a customer requests a remote wipe for someone else’s account, the customer should be referred to their local IT staff or a case escalated to IT-Security for follow up.
Instructions/Information on remote wiping a device: https://docs.microsoft.com/en-us/exchange/clients/exchange-activesync/remote-wipe?view=exchserver-2019.