Explaining Azure AD External Identities
Guest access for your company should be planned and understood by all stakeholders, documented in the company’s Security Policy, and then implemented and reviewed to maintain a clean Azure AD environment.
Guest access for your company should be planned and understood by all stakeholders, documented in the company’s Security Policy, and then implemented and reviewed to maintain a clean Azure AD environment.
Security researchers report that Teams stores the access token it uses in clear text on user workstations. Is this an issue? Well, it's not good, but it's probably not going to lead to many compromised workstations.
The Teams external access configuration includes an allow list that defines which Microsoft 365 tenants are allowed to collaborate with your users through chats and meetings. To make sure that your allow list is complete, we can check the guest accounts present in the tenant and update the configuration with the domains used by guests. All in a matter of some straightforward PowerShell code.
This article explains the importance of deploying Autodiscover correctly to ensure that all of Microsoft 365 works, including Exchange Online.
When you deploy Microsoft Sentinel, one of the most important design decisions is determining the appropriate data retention period.
Microsoft 365 tenants usually include many Entra iD apps. These apps hold permissions, including permissions that hackers like to exploit. This article explains how to use PowerShell to detect apps with high-priority permissions and report them to administrators for review.
The GIFShell attack describes how attackers can penetrate Teams to run commands using special GIFs, including the ability to exfiltrate data. One practical and quick way to stop similar attacks is to limit the set of Teams organizations your tenant will communicate with by establishing an allow list for external access.
This week on the Practical 365 podcast, Paul and I are talking about Microsoft Teams and the Hybrid Workplace. Microsoft have released "Hybrid Work Guides for your Business". And, whilst producing brochures for your executives to read about how to improve Hybrid work - Teams Rooms gets some licensing changes - which you'll either love or.. not love so much. Plus, ever wanted a universal translator? Teams delivers...
In the Exchange Server 2019 “H1” updates, Microsoft finally supported removing the last Exchange Server. But what if you've already said goodbye to yours, and want to get into a supported state? Find out what you need to do..
Preparation, Preparation, and More Preparation Migrations in Microsoft 365 are a complex beast. It seems every time you feel like you have captured everything, more apps or functionalities appear. Every shiny new tool Microsoft releases is another consideration for migration teams and IT departments. Planning for migrations – tenant-to-tenant or otherwise – is a mammoth […]
Microsoft recently released Exchange Server Support for Windows Extended Protection. Learn how it works and how to enable it!
The great remove basic authentication from Exchange Online project is rapidly approaching the October 1 date when Microsoft will start removing support for basic authentication for seven email connectivity protocols. We've known about this date for well over a year, but some organizations need a little extra time to be ready. Microsoft is offering a one-time three-month extension to January 1, 2023. After that, they're going to proceed with the final termination.