Entra ID classifications don't seem very exciting because they're text-only visual markers for Microsoft 365 groups and teams that don't come with any of the intelligence built into sensitivity labels. However, classifications can do a useful job for Microsoft 365 tenants that don't have the necessary licenses for sensitivity labels or who don't want to implement sensitivity labels.
Over time, it's likely that some of the groups in a Microsoft 365 tenant will fall into either the category of memberless groups or ownerless groups. Microsoft has a solution to manage ownerless Microsoft 365 groups, but not the other group types supports by the Graph. This article explains how to find and report memberless groups using the Get-MgGroup cmdlet.
PowerShell Parallel Processing is a mechanism to speed the processing of large quantities of data. In this example, we discuss how to use parallel batches to fetch Entra ID account information using mailbox data to drive information retrieval. Although this is only a demonstration of a technique, it might help those who must process thousands of mailboxes or accounts and would like to do so more quickly.
In this article, Paul Robichaux walks through the process of setting up the new Entra ID Enterprise SSO Plug-in on macOS.
This Episode of Practical Protection is all about Passkeys, how they are different from other credential types, and how they could put an end to phishing.
Entra ID supports passkeys as an authentication method. In fact, support is a variation of the existing FIDO2 authentication method using device-bound passkeys managed by the Microsoft Authenticator app. Passkeys are a strong phishing-proof authentication method. The question is whether the current implementation will be considered too complicated by regular users.
In this blog, Thijs Lecomte reviews Exclusion for Microsoft Security Solutions, why they are important, and how to manage them.
The fallout from the Midnight Blizzard attack against Microsoft continues as Microsoft takes action to harden the security of its own and customer tenants. One step is to retire the EWS Application Impersonation role. This will happen in February 2025 ahead of the retirement of Exchange Web Services in October 2026.
In this episode of the Practical 365 Podcast, Steve and Rich are joined by Becky Cross to discuss Hybrid Identity Migration, new Exchange On-Premises cumulative updates, Azure OpenAI features, and more!
In this blog, Jon Jarvis reviews the importance of integrating devices with Intune, and the risks that can arise from poorly managed devices.
In a February 12, 2024 tweet, Microsoft revealed that the percentage of Entra ID multifactor authentication by user accounts has reached 38%. In this article, we show how to use sign-in records to figure out if people use MFA and calculate the percentage of user accounts protected by MFA in a tenant.
User consent is a great example of the tension between improved security and user convenience. Users want to be able to consent to applications without requiring the help of IT, which also allows the potential for a breach. In this blog, Paul reviews your options to solving the user consent problem.
