Tag: Azure AD

Latest Articles

Can Azure AD Custom Security Attributes Replace Exchange Custom Attributes? 9 Comments

Can Azure AD Custom Security Attributes Replace Exchange Custom Attributes?

Microsoft launched the preview of Azure AD custom security attributes on December 1. Custom attributes are well known to Exchange administrators. In this article, we look at how to create and add Azure AD custom security attributes, how to transfer data from Exchange to Azure AD, and how to retrieve information from the attributes. Azure AD custom security attributes have some advantages, but they also have some downsides.

January 4, 2022
Improve MFA Effectiveness in Your Microsoft 365 Tenant in 30 Minutes 15 Comments

Improve MFA Effectiveness in Your Microsoft 365 Tenant in 30 Minutes

Microsoft has released two new features to help Multi-factor authentication for Azure AD accounts work smarter and better. It's possible to implement number matching and additional context for MFA challenges in 30 minutes, and the two increase the security of MFA. It's something that every Microsoft 365 tenant administrator should consider, as we explain here.

November 22, 2021
Using Adaptive Scopes with Microsoft 365 Retention Policies for Users and Groups 21 Comments

Using Adaptive Scopes with Microsoft 365 Retention Policies for Users and Groups

Adaptive scopes are a new way to dynamically target sets of locations (sites, users, and groups) for Microsoft 365 retention policies. In this article, we discuss the basics of adaptive scopes and how to build the filters used in the scopes, and then how to use adaptive scopes in retention policies. Adaptive scopes are well suited to the kind of processing needed by large enterprises, which is good because they required Office 365 E5 licenses.

November 11, 2021
Using the Microsoft SDK for PowerShell to Report Azure AD Account Sign-ins 9 Comments

Using the Microsoft SDK for PowerShell to Report Azure AD Account Sign-ins

The Microsoft Graph SDK for PowerShell can be used for many purposes, among which is access to Azure AD account sign-in data. In this article, we explain how to use the SDK cmdlets to retrieve sign-in data for both tenant and guest accounts and report what we find. You can use the report to identify potentially unused accounts which might not need some expensive licenses, or guest accounts that are no longer used.

October 26, 2021
Microsoft Forces Move from Azure AD Cmdlets for License Management 9 Comments

Microsoft Forces Move from Azure AD Cmdlets for License Management

On June 30, 2022, Azure AD and Microsoft Online Services cmdlets will stop working for license management. The result is that you need to upgrade PowerShell scripts which use these cmdlets. The choice is to use Graph API calls or cmdlets from the Microsoft Graph PowerShell SDK. In this article, we explore the steps necessary to upgrade a script to remove service plans from an Office 365 license (SKU).

September 9, 2021
Windows Laptops, Remote Work and Today’s Threat Landscape

Windows Laptops, Remote Work and Today’s Threat Landscape

The reality is, remote employees and working situations are here to stay. Unfortunately, many organizations have regressed in terms of endpoint security, partly due to the pandemic as well as the subsequent rush to implement remote work solutions. To help make sense of the many technologies out there and determine the best approach for your organization, this article explores different options from the traditional Active Directory domain membership with group policy management, to co-management with Configuration Manager and Microsoft Intune.

August 9, 2021
Taking Control of Your Unmanaged PCs with Intune One comment
Azure AD Intune Windows 10

Taking Control of Your Unmanaged PCs with Intune

In a frantic rush to enable remote workers at the onset of the pandemic, many organizations were forced to ship devices directly to the user from the supplier without any prior configuration by IT. Administrators must take back control to properly secure and manage these devices. This article will show you how to regain control and prepare for scalable deployments consistent with corporate policy; reviews best practices for long-term management; and gets you thinking about how to protect your organization from this type of unmanaged situation in the future.

June 14, 2021
“Right to Disconnect” – Implementing a Timed Disclaimer in Exchange Online with Azure Automation 3 Comments
Working from home

“Right to Disconnect” – Implementing a Timed Disclaimer in Exchange Online with Azure Automation

Over the past year, the pandemic has disrupted traditional work patterns. With many working from home, many organizations now focus on how to help employees manage their work/life balance. Platforms like Microsoft Viva Insights can help, but there are many steps admins can take using existing technology to support a wellbeing mindset in their organization. An easy and effective change is to implement a transport rule that reminds people they have the “Right to Disconnect” when an email is received outside work hours. This article walks you through how to implement a timed disclaimer in Exchange Online with Azure Automation.

May 13, 2021