Microsoft 365

Latest Articles

Why Separate Microsoft 365 Administrator Accounts are Critical to Security Posture

There’s a lot of debate around the need to separate Microsoft 365 administrator accounts, especially when controls such as Privileged Identity Management exist within an organization. However, even with PIM there are remaining security concerns which necessitate the operation of separate accounts. This article explains the importance of using separate accounts; details how to target different Conditional Access policies for admin and user accounts and highlights how this approach increases your security posture and limits potential attack vectors against administrator accounts.

January 18, 2022

Identifying Potential Unwanted Access by Your MSP/CSP Reseller

Over the past few years, there's been an escalation in supply chain attacks where an attack on a partner company (like Kaseya or Solarwinds) has a direct effect on customers. A strong security posture is more important than ever as these attacks increase in frequency and sophistication, and this applies to Microsoft partners as well. Lately The Microsoft Threat Intelligence Center has reported seeing a significant rise in the number of attacks targeting Microsoft partners with Delegated Admin Permissions (DAP). This article unpacks the major issues around DAP and provides alternative solutions that grant your partner the level of access they need, while still maintaining a strong security posture for your tenant.

January 14, 2022

How to Use Office 365 Audit Data with Microsoft Sentinel

Microsoft Sentinel is Microsoft's log aggregator. Along with other data, Sentinel can ingest events from the Office 365 audit log. Once ingested, we can visualize the data through workbooks. If you have an Azure subscription, it's surprisingly easy to take advantage of the 31-day trial to see if Sentinel can do a job for your organization. Follow our steps and you'll be visualizing quickly.

January 13, 2022

How to Manage Teams Apps Permissions and Policies

As Microsoft Teams continues to be rapidly adopted across the globe, the number of applications that integrate with Teams grows as well. So much that it's often difficult for decision-makers and administrators to determine what apps are beneficial to their organization and necessitate inclusion. Fortunately, the Microsoft Teams admin center provides the data around each app you need to decide. This article helps you navigate the Teams admin center; explores the various app types available; and provides detail around permission policies, setup policies, and things like Resource-specific consent you’ll want to familiarize yourself with so you can effectively manage Teams apps for your organization.

January 12, 2022

Deploying .exe Applications with Microsoft Endpoint Manager

With an increasing number of companies moving to Intune for endpoint management, more applications must be deployed via Intune to ensure users can access the applications they need to perform job functions. This article walks you through the steps to deploy a legacy application and guides you through converting an .exe installer into an import-ready format for Intune.

January 11, 2022

Doing Crimes in Microsoft 365

Many organizations have regulatory compliance requirements, so naturally they want to meet them, so they spend money. Does spending that money on compliance tools stop your employees from doing crimes and getting you in trouble? Maybe not so much if this prominent case is any evidence.

January 7, 2022

Separating users in Office 365 using Address Book Policies

Microsoft 365 has many built-in controls to manage how users communicate externally, however, these controls do not generally extend to internal communication. While this is fine in most environments, situations exist where a degree of separation is required to segregate communication across different groups of users. This article details the configuration of Address Book Policies, and how they can be extended to include Teams.

January 5, 2022
Set up Microsoft Sentinel as a single pane of glass for Microsoft 365 alerts
Microsoft Sentinel

Set up Microsoft Sentinel as a single pane of glass for Microsoft 365 alerts

Microsoft Sentinel helps organizations protect their Microsoft 365 tenants by providing insight into activity that might require investigation. This article shows how to set up Microsoft Sentinel with a basic configuration that delivers a great deal of value by enhancing your security posture. In just four simple steps, you can connect Microsoft Sentinel to other Microsoft Cloud Security products to get a single pane of glass for incidents and automate security response through playbooks.

January 3, 2022