Tracker Approval Process
Task Publishing in Microsoft Teams allows you to configure a hierarchy for distributing Planner tasks throughout your organization. In this article, learn how to plan and deploy Task Publishing and what the experience is for colleagues using the app.
Over time, Microsoft 365 tenants tend to accumulate large numbers of guest accounts in Entra ID. And over time, some of those accounts become obsolete and inactive. In this article, we explore how to use PowerShell to analyze the activity of guest accounts to figure out what accounts are inactive and which are candidates for removal. It's something you should do annually.
In June of 2021, Microsoft announced the requirements for Windows 11, which has a notable security hardware requirement: PC configurations must include version 2.0 of the Trusted Platform Module (TPM) to install Windows 1. This article reviews what TPMs are, outlines the benefits and use cases, and examines the extent to which the requirement will protect devices from the most common threats.
Trainable classifiers are generated from a set of sample documents through a learning process and can then be used in many Microsoft 365 compliance scenarios like auto-labeling, communications compliance, and DLP. In this article, we review how to create a custom trainable classifier and how to give feedback for the matches generated by the classifier.
There are many ways to provide secure access for remote users working on a home network or personal device (such as VPNs or VDI environments) and they each bring their own levels of complexity. This article explores using Microsoft Defender for Cloud Apps as a solution that is easily deployed, and capable of expanding beyond Office 365 to bring a higher level of control and governance over third-party cloud apps that lack similar native controls.
In this week's episode, Paul and myself get together to discuss - a bit more Exchange again - but don't worry, it's only more patches. Plus, Microsoft adds a new product into the E3 plans that we think you'll like - and as usual, the best from the Roadmap and Message Center
Teams is mostly an internal communications platform while email connects billions of people around the world. Inside Microsoft 365 tenants, you might need to connect Teams and email together. In this article, we discuss the out-of-the-box features available to link the two and describe some of the positive and negative points of each. You can certainly bridge the gap between Teams and email, but maybe Microsoft could grease the connection just a little more...
This article walks you through how to deploy the Teams for Windows desktop client with an MSI Installer, then pushed out to clients using Microsoft Endpoint Manager, Group Policy, or other similar tools.
Exchange Online has mailbox retention policies. Microsoft 365 has retention policies and retention labels. In this article, we explore how to move away from Exchange Online retention to use Microsoft 365 retention. The transition makes it possible to use the advanced retention capabilities Microsoft is developing that will never show up in Exchange Online, so it's a good long-term goal to have even if it's not on your immediate work list.
There’s a lot of debate around the need to separate Microsoft 365 administrator accounts, especially when controls such as Privileged Identity Management exist within an organization. However, even with PIM there are remaining security concerns which necessitate the operation of separate accounts. This article explains the importance of using separate accounts; details how to target different Conditional Access policies for admin and user accounts and highlights how this approach increases your security posture and limits potential attack vectors against administrator accounts.
In a December 24 announcement, Microsoft says that the roll-out of DNSSEC and DANE support in Exchange Online will start in mid-January 2022. Because this is a big change for the Exchange Online infrastructure, Microsoft is using a phased deployment which won't complete until mid-May. Support for DNSSEC and DANE has been coming for a long time, but it's good that the extra security which these standards bring will be available to Exchange Online tenants.
Over the past few years, there's been an escalation in supply chain attacks where an attack on a partner company (like Kaseya or Solarwinds) has a direct effect on customers. A strong security posture is more important than ever as these attacks increase in frequency and sophistication, and this applies to Microsoft partners as well. Lately The Microsoft Threat Intelligence Center has reported seeing a significant rise in the number of attacks targeting Microsoft partners with Delegated Admin Permissions (DAP). This article unpacks the major issues around DAP and provides alternative solutions that grant your partner the level of access they need, while still maintaining a strong security posture for your tenant.
