Update quarantine-policies.md

Chirouette · web-flow · commit ce42c0515c99 · 2025-05-29T12:55:00.000+03:00
There was a customers' confusion we're seeing is specifically around the built-in AdminOnlyAccessPolicy, which is not editable and has the notification setting hardcoded to “Off”. This means:
Admins cannot enable or disable notifications for this policy.
End users should never receive notifications if this default policy is applied.
The problem arises because the documentation presents notification settings as configurable, which leads some customers to believe this includes the built-in AdminOnlyAccessPolicy. As a result, they open cases wondering why end users receive notifications or asking how to turn them off—when in fact, the default policy doesn’t even allow that. (knowing that by analysis, we can share why users are receiving notifications, based on what is set for this kind of threat SCL level, maybe because it is identified SPAM and he doesn't have the AdminOnly action set for SPAM mails in his custom quarantine policy )
 
To reduce this confusion, I suggest we consider explicitly stating in documentation that:
The default AdminOnlyAccessPolicy is immutable
It always has notifications disabled
If notifications are needed alongside restricted access, admins should use a custom policy with "No access" and configure notifications accordingly.

Discussed with our Beta engineer, Mithun and confirmed to update the documentation with the pulled information
diff --git a/defender-office-365/quarantine-policies.md b/defender-office-365/quarantine-policies.md
@@ -745,6 +745,14 @@ The effect of **No access** permissions (admin only access) on user capabilities
 - **Quarantine notifications turned on**:
   - **On the Quarantine page**: Quarantined messages are visible to users, but the only available action is :::image type="icon" source="media/m365-cc-sc-view-message-headers-icon.png" border="false"::: [View message headers](quarantine-end-user.md#view-email-message-headers).
   - **In quarantine notifications**: Users receive quarantine notifications, but the only available action is **Review message**.
+> **Note:**  
+> 💡 The **default `AdminOnlyAccessPolicy`** is **immutable** and **always has notifications disabled**.  
+> To enable notifications while maintaining restricted access:  
+> - **Create a custom quarantine policy**  
+> - Set **Access: No access**  
+> - Configure **notifications** as needed  
+
+<!-- You may need to use a plugin or CSS styling in your Markdown tool to display this in pink -->
 
 ##### Limited access
 
