• Home
  • Topics
    • Office 365
    • Teams
    • SharePoint Online
    • Exchange 2019
    • Exchange 2016
    • Exchange 2013
    • Hybrid
    • Certificates
    • PowerShell
    • Migration
    • Security
    • Azure
  • Blog
  • Podcast
  • Webinars
  • Books
  • About
  • Videos
    • Interview Videos
    • How To Guide Videos
  • Subscribe
    • Facebook
    • Twitter
    • RSS
    • YouTube

Practical 365

About Vasil Michev

Vasil Michev is an Office Servers and Services MVP, specializing in Office 365. He's currently employed as a Technical Product Manager, and in his free time he can be found helping others in the Office 365 community.

Azure AD App Management Method Policies Harden Application Security Posture

September 22, 2021 by Vasil Michev 1 Comment

Azure AD

Still in public preview, new application authentication method policies will help Microsoft 365 customers adhere to best practices for managing application credentials, while asserting pressure on ISVs to do the same. Going forward we can expect this to turn into a standard configuration, enforced across many organizations. To address the problem, Microsoft is ready to release a set of features to help. In this article, we introduce you to Azure AD application authentication method policies, one of the features in the set.

Azure Active Directory, Blog App governance, Azure AD App Authentication Method Policies, Configuration Objects, Graph API

Office 365 10-Year Anniversary Series: Powering Through PowerShell

July 2, 2021 by Vasil Michev Leave a Comment

Office 365 PowerShell

The fifth and final article in a continuation of our weekly series celebrating the 10-year anniversary of Office 365, Microsoft MVP Vasil Michev shares how the Exchange Online Remote PowerShell experience proved to be limitless for his career.

Blog, Microsoft 365, PowerShell Graph, Microsoft Graph API, MSOnline

Inventorying Azure AD Apps and Their Permissions

April 26, 2021 by Vasil Michev 7 Comments

Generic Azure AD LOW

Many apps are created in the Azure AD for a tenant. Those apps have permissions to allow them to access data, and consent for those permissions are granted by administrators and users. How often do you check what apps are known in your Azure AD and what permissions those apps have? In this article, we review how to use the Graph API and PowerShell to create a report inventorying apps and permissions. What you do with that data is up to you!

Azure Active Directory, Blog App permissions, Azure AD, Azure AD integrated applications, Consent, Microsoft Graph API, OAuth Apps, PowerShell, Service principals

Why Microsoft 365 Audit Logs Lack Proper Fit and Finish

April 14, 2021 by Vasil Michev 2 Comments

GENERIC an admin monitoring services

The audit events generated for license assignments to user accounts available in the Azure AD audit log and Office 365 audit log are inconsistent and incomplete. This is certainly true for licenses assigned to accounts through auto-claim policies and group-based licensing, but known gaps exist in the audit records generated in other areas of Office 365 and Microsoft 365 functionality. We think Microsoft needs to pay attention to ensure that auditing works consistently and predictably across all workloads. Once they improve the fit and finish of audit record generation, they can move into other areas, like charging for access to high-value audit events.

Azure Active Directory, Blog Auto-claim policy, Azure AD audit log, Group-based licensing, Microsoft 365 admin center, Office 365 audit log

Application Access policies extend support for more scenarios

February 11, 2021 by Vasil Michev 3 Comments

Application Access policy

While application access policies were a great step forward, they did not cover all scenarios, and Vasil does a great job at giving us a practical explanation.

Blog, Exchange Online Account impersonation, EWS, Exchange Web Services, New-ApplicationAccessPolicy

  • 1
  • 2
  • 3
  • …
  • 6
  • Next Page »

Recent Articles

  • Turn On MFA: Real-World Example of Fraud, Domain Stealing, and the Nearly Lost House Deposit
  • Changes in Microsoft 365 Apps Channels and Why You Should Care
  • A New Tool to Manage Exchange-related Attributes Without Exchange Server
  • Microsoft Launches Group Ownership Governance Policy
  • Making the Case for Identity Governance in Azure Active Directory

Copyright © 2022 Quadrotech Solutions AG · Disclosure · Privacy Policy
Alpenstrasse 15, 6304 Zug, Switzerland