Browser Settings, OS-Settings, Preferred-Language, Regional Settings, …There are so many settings, values and components which are responsible for the user interfaces and notifications. Wrong settings can lead to a bad user experience, licensing issues, or incomprehensible system messages. In this globalized and fast world, it’s more important than ever that everybody is able to receive… Weiterlesen Microsoft 365 – Language Confusion
Another Microsoft Teams Governance Approach – Using Azure AD Identity Governance
Since Microsoft published the Request a Teams App Solution on github ( https://github.com/OfficeDev/microsoft-teams-apps-requestateam ), I stopped all my „ambitions“ to create my own deployment tool for Microsoft Teams, because it´s designed very well and especially the PowerApp-Part is better than I could ever build it. So I concentrated on other Governance topics than the creation… Weiterlesen Another Microsoft Teams Governance Approach – Using Azure AD Identity Governance
Showcasing some Endpoint Detection & Response Features of Microsoft Defender ATP
This week I have built a simple scenario for a customer PoC to demonstrate some EDR features of Microsoft Defender Advanced Threat Protection. The idea is to show in a simple to deploy and easy to understand scenario how threats can be detected with Advanced Hunting how custom detections can be turned into alerts how… Weiterlesen Showcasing some Endpoint Detection & Response Features of Microsoft Defender ATP
Planner Migration Tenant to Tenant
Recently I was involved in an Office 365 Tenant to Tenant migration. The project dates were very tight and a lot of decisions have been made already. My original task was to migrate teams data to a new tenant. Despite our better knowledge, we had to use BitTitan to migrate Teams. As feared the process… Weiterlesen Planner Migration Tenant to Tenant
Advanced Conditional Access Use Cases – Part 2: Controlling the actions in a session
After my introduction to Policy Design for Conditional Access and the integration of Risk Based Conditional Access I would like to deal with the first session controls today. While all other policies so far were concerned with the question of whether an access is allowed or not, session controls define conditions within the access or… Weiterlesen Advanced Conditional Access Use Cases – Part 2: Controlling the actions in a session
Advanced Conditional Access Use Cases – Part 1: Risk
In my last blogpost I told you about my approach and experiences at designing CA rule sets. While this blogpost was focussed on the basic features I now want to cover the more advanced features. This first blog is about Risk Based Conditional Access and I hope that Session Controls will follow soon. Risk based… Weiterlesen Advanced Conditional Access Use Cases – Part 1: Risk
Azure AD Identity Governance – Access review
I would like to write a short blog post about Access reviews in Azure Active Directory, since many customers are not aware of this feature. Customers using on-prem mechanisms to control\maintain security groups and user lifecycles at some point realize that this won’t work for cloud accounts and groups. Access reviews help to maintain control… Weiterlesen Azure AD Identity Governance – Access review
Teams @ EDU
Überlegungen und Vorschläge für die Teams Implementation bei Schulen in Zeiten von #Covid19 Anlegen von Tenants Beantragen des Tenants mit entsprechenden Trial Lizenzen über den Link: https://www.microsoft.com/de-de/microsoft-365/academic/compare-office-365-education-plans?market=de Eine Custom Domain darf nur hinzugefügt werden wenn diese wirklich der Bildungseinrichtung zugeordnet werden kann. Wenn dies nicht der Fall ist gehen die Trial Lizenzen verloren. Die A1… Weiterlesen Teams @ EDU
How to build Conditional Access rule sets
In the past months I have spent some time designing and implementing Conditional Access rule sets and would like to capture / share my experiences. In my experience, CA rule sets usually start relatively simply, then grow and become more complex and confusing. With the increasing use of cloud apps, different devices and different user… Weiterlesen How to build Conditional Access rule sets
Role based access control in Microsoft Endpoint manager
Role base access control (RBAC) is a concept most of you are already familiar with administering Microsoft Exchange or Configuration Manager. Intune, or Microsoft Endpoint Manager, also offers the possibility to restrict access based on a persons role in the organization, I would like to show you how this can be achieved. What is RBAC… Weiterlesen Role based access control in Microsoft Endpoint manager