Flow – You can use Flow to automate actions based on Cloud App Security event

If you are using the Cloud App Security (CAS) service, you can connect Microsoft Flow to it in order to automate actions like generating ticket in SIEM system, send notification to user and/or manager, disable account… To do so you must, off course, have an active Cloud App Security and Flow subscription. Then you need to generate a token to allow Flow to connect to CAS Connect to your Cloud…

Read More

Intune – Group Policy is coming in Intune (preview)

The latest update on Intune is providing (in preview) the ability to configure group policy (GPO) for Windows 10 devices. This is not (yet?) the exact group policy we have in Active Directory but the idea is the same and based on the well known Administrative Templates (ADM/ADMX). NOTE this is currently not supported for co-managed device (aka Azure AD joined devices managed with System Center Configuration Manager (SCCM)) but…

Read More

Intune – New Intune tenant details blade available

Intune has been updated to include a new blade resuming all Intune tenant details and health information. This new blade, called Tenant Status, is available below the Help and Support section of your Intune tenant, accessible either from the Azure portal – https://portal.azure.com It gives you your Intune tenant details (name, location, service release (version), number of licenses available and applied, number of enrolled devices) as well as health details…

Read More

Outlook – Notification when a known issue is detected (preview)

The Outlook client, coming with the Office 365 Click To Run (C2R), is now providing notification when a known issue has been detected. I got this notification with the Office 365 Click To Run 1901 build 11220.20008 (or version 16.0.11220.20000) The ‘title’ of the issue is a clickable element which then open the related Microsoft KB article or the Office updates details page. This is something which is going to…

Read More

Office 365 – New cloud-based management options for Office 365 Pro Plus

A new configuration tool (in preview) is available for Office 365 Pro Plus (Office Click to Run) to help administrator to define and apply configuration policy. This new capability helps to manage Office C2R installation on Windows without the ‘classic’ management infrastructure or MDM service. The defined Office configuration will apply to both managed and unmanaged devices as it uses Azure Active DIrectory. It does not replace group policy objects…

Read More

Exchange – Exchange 2010 is reaching his end of life, please act

A quick reminder (as even if mail migration seems easy, it always take some time to complete), Exchange 2010 is reaching his end of life in January 14th, 2020 This means there will be no longer technical support, bug or security fixes. If you still have Exchange 2010 in production and do not have yet started for migration (to either Exchange 2016/2019 or Exchange Online), please start immediately Microsoft is…

Read More

Azure – Azure Data Box is now GA and is going to support blob storage

You may already know that you can use Azure Data Box to migrate on-premises workloads to Azure (from backups to remote/branch office data). If you need to know more about Azure Data Box you can go there https://docs.microsoft.com/en-us/azure/databox/data-box-overview This offer has been in preview for the past few month and is now in GA (General Availability). In addition, Azure Data Box is going to support Azure Blob Storage (preview), allowing…

Read More

Exchange Online – Item read and access is going to be audited

You may be already aware that you can have audit on any Office 365 activities, including Exchange Online mailboxes. In February 2019, Exchange Online mailbox audit is going to be improved by adding audit for item read and access by mailbox owners, administrators and delegates. This new implementation is replacing the previous MessageBind action, which will be deprecated when the update will be available on your tenant. You have nothing…

Read More

Office 365 – The default installation option for Office Click to Run is switching to 64 bits

Starting mid January 2019, the default installation setting for Office Click To Run is switching from 32 bits to 64 bits. If you (and your end-users) are using the Office 365 portal (https://portal.office.com/OLS/MySoftware.aspx) to install Office Click to Run check the version before starting to install if you are planning to use the 32 bits install (as it used to be the default install option).

Read More

OneDrive for Business – Files On-Demand is getting available on Mac

The Files On-Demand capability is now coming on Mac devices with the incoming OneDrive for Business client update for Mac. The Files On-Demand allows you to synchronize your OneDrive for Business and SharePoint Online content without having to download the complete content. To take advantage of this new capability for Mac users, you need to run macOS 10.14.2 or later and have the update OneDrive client (version 18.240.1202.0001 or higher).…

Read More

Azure – Ensure your server running your Azure Application Proxy has TLS 1.2 enabled

If you use Azure Application Proxy to publish internal web applications, you need to ensure the server(s) running the Azure App Proxy connector has/have TLS 1.2 enabled. By January 31st, 2019, if this/these server(s) do not have TLS 1.2 enabled you may experience service disruption as the older TLS version (1.0 and 1.1) will be disabled on Azure App Proxy. To ensure you have TLS 1.2 enabled, just check the…

Read More

OneDrive for Business – An update is on his way to improve UPN change impact

As you may be already aware, OneDrive for Business is using the user principal name (UPN) to provision the personal space, and as such the UPN is also used in the URL for accessing it (like https://mytenant-my.sharepoint.com/personal/user_upndomain) As such, any change of the UPN’s user has an impact on OneDrive for Business and can broke synchronization. An updated OneDrive for Business client (starting with build 18.212.1021.0008) is being pushed to…

Read More

SCCM – Offline servicing for Windows Server 2019 is not working

If you use System Center Configuration Manager (SCCM) to manage updates deployment, OS deployment and additionally keeping up to date your OS image (WIM), you need to know that SCCM offline servicing is incorrectly detecting Windows Server 2019 WIM image as Windows Server 2016. This has been confirmed as a bug in SCCM and should be fixed with the next SCCM update. In the interim you can either continue to…

Read More

Office 365 – 3DES cipher support is being retired by Feb 28, 2019

As Microsoft has announced it was moving to TLS 1.2, the 3DES cipher support is going to be removed by February 28, 2019. If you are not sure if this cipher is still being used by your organization to connect and access Office 365 services you can go to the Secure Score website (http://securescore.microsoft.com) and use the “Remove TLS 1.0/1.1 and 3DES Dependencies” option By clicking the Learn More button…

Read More

Identity – A new form of identity is being developed by Microsoft

This clearly follows the path of what has been already announced by Microsoft for using blockchain to manage, protect and validate identities. A new form of identity, called Decentralized Identity, is under way to help developer to validate identities. You can start using these API’s (based on the W3C CCG draft specifications – https://w3c-ccg.github.io/did-spec/) by using the samples and documentation available here http://aka.ms/DIDforDevs This will help authenticating and validating various…

Read More