I just discovered a new feature – which could be quite helpful – to ‘clean"’ (or mark as read) all new updates.
This feature is called ‘Clear new’ and is available on the top right of the updates list; to make all updates as read, and so clean them , just hit it
and after using it
Microsoft has released a new features for Azure AD Privileged Identity Management (Azure AD PIM).
This feature is currently in preview.
You can now define an approval workflow before any role privileges are granted.
To do so you need to edit the role you want to enable the approval workflow; to do so
Once the approval workflow has been enabled for a role, approver will automatically receive a notification email to manage the request
You can view all your requests and their status from the Azure AD PIM portal
End-users which have been set as eligible for a role can then request to activate the role from the Azure Portal and fill the justification to get the role activated
The approver(s) automatically receive a notification and can then approve/deny the request
A new version of Azure AD Connect has been released (version 1.1.524.0) and apart of many bug fixes, there is a lot of improvements.
One of them is the ability to synch Exchange Mail Enabled Public Folder.
You can download the new version here http://go.microsoft.com/fwlink/?LinkId=615771
Please note that there will be a full synchronization after the upgrade because of schema updates.
This does not create public folder in Exchange Online; it just makes your On Premises Mail Enabled Public Folders available in the directory based edge blocking (see https://go.microsoft.com/fwlink/p/?linkid=844910). You also need to ensure the Microsoft Exchange System Objects is selected for synchronization.
You may don’t know what means ‘files on demand’ with the OneDrive/OneDrive for Business client.
This is the functionality which used to be available with the OneDrive client back in the Windows 8.x years. This feature allows you to not synchronize a folder/file in your client but was still displayed in the Windows Explorer. This feature (for some reasons) has since being retired which generates lot of requests/complaints.
So good news, Files on Demand is back by popular demand
It has been announced at the Build 2017 conference earlier last week and it will be delivered with the Windows 10 Fall Creators update.
As you may already know Safe Links is a security feature on Office 365 which rewrites URL’s embedded into emails to check if these URL’s are safe which comes with Office 365 E5 (or if you have bought the add-on Advanced Threats Protection).
Now, Safe Links is coming to Office documents, performing the same ‘on the fly’ rewrite when the user click on an URL embedded into a Word, PowerPoint or Excel document.
To take advantage of this security feature, you need to have the latest Office 365 Pro Plus (ie Click to Run) version and you need to turn on Safe Links for Office from the Compliance portal (https://protection.office.com/) in the Threats Management\Safe links section.
A new feature has been introduced on Microsoft Azure: Azure Cloud Shell.
Cloud Shell is a browser-based shell to manage Microsoft Azure.
To know more about it go https://docs.microsoft.com/en-us/azure/cloud-shell/overview and https://docs.microsoft.com/en-us/azure/cloud-shell/features#tools
A new functionality for eDiscovery is now available and enabled by default to automatically decrypt RMS encrypted messages when you are exporting the search result.
The decryption capability is automatically added to the eDiscovery Manager group.
RMS encrypted messages are decrypted ONLY when exported as individual message; if you export your search result to a PST file, they will remain encrypted.
This decryption capability does not apply to encrypted mails with OME (Office 365 Message Encryption) or to any files attached to the RMS mail – attachments will remain encrypted.
You can manage the decryption capability assignment by using the new role RMS Decrypt
After adding the capability of opening Visio files on the web, Microsoft is now going one step further by adding the capability to create Visio file on Office 365.
Currently, it's is only available in English-US.
To join the preview, register at http://aka.ms/visio-new
UPDATE: script update to enable Azure MFA and correct a bug in the Office 365 role update function
Office 365 Role membership management is one of the few workload you can not manage using groups.
To automate the membership of these roles I have created a script.
The script is comparing Active Directory group membership with the corresponding Office 365 Role, excluding online account added to the Office 365 role. If there is any difference, the script will automatically grant or revoke role membership based on the AD group.
To take advantage of this script you need the following requirements:
NOTE the script will only work with existing AD group matching the Office 365 role
The script can be executed manually or used with a scheduled task; if you use it with a schedule task, you have to manually run it once to generate all the required credentials to connect to Office 365.
There are few variables you have to update to match your environment
After updating the above variables, just run the script.
You will be prompted if you want to save the credentials to connect to Office 365 and the SMTP server.
Whatever your decision you will be prompted for your credentials but if you choose to save them, 3 or 6 encrypted files will be generated to save the account, the password and the encryption/decryption key. 3 files are used for each credentials.
If you plan to use the script with a schedule task you need to manually run the script once and choose to the save the credentials.
NOTE if at any time you hit the cancel button during the authentication requests, the script will stop
If you choose to save the credentials, 3 files are generated for this credential.
Where <credential> is the service you are going to authenticate against; like office365 for Office 365 or smtp for the SMTP server.
You will not be prompted if the 3 required files for the credential already exist; if you want to ‘overwrite’, just delete one of the file
The following screenshots show the different UI you have
All actions executed by the script are logged.
If any error occurs during the execution, the error’s details are captured and saved in the log file. The notification email will show there has been an error during the execution of one step
Below a sample of the notification email and an extract of a sample log file (attached to the notification email)
You can download the script from the TechNet Script Gallery here https://gallery.technet.microsoft.com/Automatic-Office-365-Role-433d5120
Please provide any feedback or question there, thanks.
It has been a long awaited and requested feature. Now it is finally possible to edit a post on Yammer.
This will be first available when using a web browser, and then will also come to the iOS or Android app.
With this feature, each time you edit a post, a new version is being created. If you need (as an administrator) to export the content, all version will be exported.
It is important to note that editing attachments or external group post is not yet available.
The Edit button will appear just beneath your post; it will be also available for your previous post
Once your post has been edited once, a Edited tag will be displayed and will allow to view the version history
Benoit is specialized on Microsoft infrastructure (Active Directory, Azure, ForeFront products, Hyper-V, Identity Management, System Center, Windows) and collaboration (BPOS, Exchange, Office 365, SharePoint, Lync/Skype for Business) technologies.
He has been awarded as Microsoft Most Valuable Professional (MVP) since 2002 - on Windows, then SharePoint and finally Office 365. He has been recoginzed as Microsoft Community Contributor for his work on the Office 365 community in 2013 and 2014.
He has been involved in early stage of testing phase for many Microsoft products - from Windows to Office 365, including Exchange, SharePoint or Office client and WindowsUpdate.
He has participated as speaker or Ask The Expert (ATE) at many Microsoft or Quest events. He also participed in writing several books on SharePoint (2003 to 2010).
With more than 10 years of professional experience, he has a deep knowledge of the Microsoft market and his competitors.
This blog is using tracking code for analytics purpose.
No personal data are stored and maintained.