Office 365 - Azure AD

“Right to Disconnect” – Implementing a Timed Disclaimer in Exchange Online with Azure Automation

May 13, 2021 by Sean McAvinue Leave a Comment

Over the past year, the pandemic has disrupted traditional work patterns. With many working from home, many organizations now focus on how to help employees manage their work/life balance. Platforms like Microsoft Viva Insights can help, but there are many steps admins can take using existing technology to support a wellbeing mindset in their organization. An easy and effective change is to implement a transport rule that reminds people they have the “Right to Disconnect” when an email is received outside work hours. This article walks you through how to implement a timed disclaimer in Exchange Online with Azure Automation.

Achieving Passwordless Authentication in Azure AD

May 11, 2021 by Dominik Hoefling Leave a Comment

In the second iteration of a two-part series about FIDO2 and passwordless authentication, we walk you through how to facilitate your passwordless deployment for Azure AD identities. Once passwordless authentication is achieved, users can authenticate up to 3x faster and helpdesks should receive fewer requests for password resets, saving your organization time and money.

Inventorying Azure AD Apps and Their Permissions

April 26, 2021 by Vasil Michev Leave a Comment

Many apps are created in the Azure AD for a tenant. Those apps have permissions to allow them to access data, and consent for those permissions are granted by administrators and users. How often do you check what apps are known in your Azure AD and what permissions those apps have? In this article, we review how to use the Graph API and PowerShell to create a report inventorying apps and permissions. What you do with that data is up to you!

Why Microsoft 365 Audit Logs Lack Proper Fit and Finish

April 14, 2021 by Vasil Michev 1 Comment

The audit events generated for license assignments to user accounts available in the Azure AD audit log and Office 365 audit log are inconsistent and incomplete. This is certainly true for licenses assigned to accounts through auto-claim policies and group-based licensing, but known gaps exist in the audit records generated in other areas of Office 365 and Microsoft 365 functionality. We think Microsoft needs to pay attention to ensure that auditing works consistently and predictably across all workloads. Once they improve the fit and finish of audit record generation, they can move into other areas, like charging for access to high-value audit events.

Using PowerShell to Manage Conditional Access (CA) Policies

March 25, 2021 by Damian Scoles Leave a Comment

Microsoft provides many methods to manage a tenant’s data and users. PowerShell is a powerful tool to manage resources, including Conditional Access Policies using a set of cmdlets in the AzureAD module. In this article, Microsoft MVP Damian Scoles reviews the eight PowerShell cmdlets and how to use them.