Many PowerShell scripts use the Send-MailMessage cmdlet to send mail. That’s fine, but if you want to remove basic authentication to improve tenant security, you need to stop using Send-MailMessage. One solution is to move to use the Graph API SendMail call. This works fine, but it creates some new security issues that need to be thought through. In this article, we explain how to use the Graph to send email and some of those security considerations to ponder.
It’s important to know if a tenant has any very large distribution lists as these might be the source of reply-all mail storms. An old article explains how to report the membership counts for distribution lists on an on-premises Exchange server. Life is different in the cloud, and we need to take a different approach. This article explains how to use different calls in a PowerShell script to create a nice report about distribution list memberships.
There are several areas where Microsoft could improve the way Teams handles out-of-office and away-from-work scenarios. Are the default “quiet hours” reasonable? Should there be a global setting for quiet hours or do-not-disturb? While there may be good reasons to leave some of these as a tenant-level settings, you don’t want to forget about the extra steps you must take to truly escape from Teams for a bit.
Microsoft Teams uses an array of policies to control the features available to end users. Group policy assignments make it easier to assign packages of policies to groups of users. Microsoft provides a set of policy packages out of the box, and organizations can create custom packages. That is, if they have the Teams Advanced Communications license. Demanding a special license for functionality which helps tenants manage Teams better seems excessive, especially as you could relatively easily recreate policy assignments with PowerShell.
Azure AD business-to-business guest user accounts are a terrific way to securely grant access to apps and services for external users and partner organizations. In this article, a script is introduced that can be used to automate the guest user invitation process, integrating it more seamlessly with any custom applications.