Security 16 - Benoit's Corner

Azure – New Azure Information Protection Client available

Leave a Comment / Microsoft Azure, Office, Security / Benoit HAMET / November 28, 2018 / AIP, Azure Information Protection, Information Protection

The new Azure Information Protection (AIP) client (version 1.41.51.0) is now available for download here https://www.microsoft.com/en-us/download/details.aspx?id=53018 As part of the usual fixes, the new version includes support for central reporting, support for S/MIME or better handling for disconnected client (aka client which will not be able to connect to internet for a certain period of […]

Azure – New Azure Information Protection Client available Read More »

Windows 10 – You can now setup Windows Hello to use FIDO2 Key to authenticate to your Microsoft Account

Leave a Comment / Security, Windows / Benoit HAMET / November 21, 2018 / FIDO2, Microsoft Account, WebAuth, Windows 10, Windows 10 1809, Windows Hello

NOTE the following applies for Microsoft Account (aka MSA, aka not corporate account like Office 365/Azure account) If you are already using Windows 10 1809 (aka Windows 10 October 2018 update), you can now setup Windows Hello to use FIDO2 key. FIDO2 key are physical security key to avoid you enter your password. To enable

Windows 10 – You can now setup Windows Hello to use FIDO2 Key to authenticate to your Microsoft Account Read More »

Office 365 – Privileged Access Management is available to Office 365

Leave a Comment / Office 365, Security / Benoit HAMET / October 25, 2018 / O365, Office 365, PAM, Privileged Access Management

As announced at the Ignite 2018 conference, a new access management capability is now available to Office 365. This new feature, called Privileged Access Management (PAM), will help you granting on a ‘just in time’ basis high level privileges to Office 365 services. PAM is currently limited to Exchange Online scope. To set it up,

Office 365 – Privileged Access Management is available to Office 365 Read More »

Azure – You can enable analytics for Azure Information Protection

1 Comment / Beta / Preview, Microsoft Azure, Security / Benoit HAMET / October 15, 2018 / AIP, Analytics, Azure, Azure Information Protection

This is a new capability being added to Azure Information Protection (AIP), currently in preview. You can now enable analytics for AIP. To do logon to your Azure portal (https://portal.azure.com) and reach out the Azure Information Protection configuration blade From there you should see Configure analytics (preview) under the Manage section From this configuration blade

Azure – You can enable analytics for Azure Information Protection Read More »

Windows / Azure – Reset password from all Windows

Leave a Comment / Microsoft Azure, Security, Windows / Benoit HAMET / October 8, 2018 / AAD SSPR, Azure, Azure Active Directory Self Service Password Reset, Azure AD SSRP, Self Service Password Reset, SSPR, Windows

You may be already aware that you can provide the ability to your end-user to reset their password (Self Service Password Reset – SSRP) directly from the logon screen for Windows 10 Azure AD Joined device (see https://t.co/LW060QqgGV if you want to know more). Well, Microsoft has announced a major improvement for this feature as

Windows / Azure – Reset password from all Windows Read More »

Exchange Online – Implement ‘Limited Access’ Conditional Access

Leave a Comment / Azure Active Directory, Exchange, Office 365, Security / Benoit HAMET / October 5, 2018 / AAD, AAD Conditional Access, Azure, Azure Active Directory, Azure Active Directory Conditional Access, Azure AD Conditional Access, Conditional Access, Exchange Online, ExO

You may already know that you can implement a ‘limited access’ conditional access for SharePoint Online and OneDrive for Business, allowing end-users to access content on SharePoint Online but not authorizing to download anything while accessing using non compliant devices. Now, you can do the same for Exchange Online to allow your end-users accessing their

Exchange Online – Implement ‘Limited Access’ Conditional Access Read More »

Azure – Secure Score is now available for Azure

Leave a Comment / Microsoft Azure, Security / Benoit HAMET / September 21, 2018 / Azure, Azure Active Directory Secure Score, Azure AD Secure Score, Azure Secure Score, Azure Security, Secure Score

You may already know Secure Score for Office 365, helping you to understand your security settings on Office 365 and providing guidance to increase it. Now, you can have Secure Score for Azure Active Directory (AAD) too The functionality is currently in preview and can be accessed either through the dedicated preview portal (https://portal.azure.com/#blade/Microsoft_AAD_IAM/ActiveDirectoryMenuBlade/IdentitySecureScore) or

Azure – Secure Score is now available for Azure Read More »

Azure – New Azure information Protection Client available

Leave a Comment / Microsoft Azure, Office 365, Security / Benoit HAMET / September 18, 2018 / AIP, Azure, Azure Information Protection, Azure Right Management Services, Azure RMS, Office 365 Right Management Services, Office 365 RMS, Right Management Services, RMS

A new version (1.37.19.0) of the Azure Information Protection Client has been released. You can download it from https://www.microsoft.com/en-us/download/details.aspx?id=53018 This version includes few updates and changes: Support for the ISO standard for PDF encryption. You need to configure the below advanced configuration to enable it and then keep the PDF format for encrypted PDF files

Azure – New Azure information Protection Client available Read More »

Security – The latest Threat Modeling tool is now in GA

Leave a Comment / Microsoft Azure, Security / Benoit HAMET / September 14, 2018 / Azure, Microsoft Azure, Microsoft Threat Modeling Tool, Security, Threat Modeling Tool, TMT

The latest version of Microsoft Threat Modeling Tool (TMT) is now available in general availability (GA). If you were using the preview, you will be prompted to upgrade – NOTE it will mandatory to upgrade after Oct 15th. The 2016 version is still supported until Oct 1st, 2019. If you want to start using the

Security – The latest Threat Modeling tool is now in GA Read More »

Intune – You can now target specific users/devices when applying Windows Hello policy

Leave a Comment / Microsoft Intune, Security, Windows / Benoit HAMET / September 4, 2018 / Intune, Windows 10, Windows Hello

With the latest updates on Intune, you can now define specific users/devices when you apply a Windows Hello policy. Until then, the Windows Hello policy was a tenant level settings and as such applied to all users/devices. To define the Windows Hello policy, go to your Intune configuration blade and reach out the Device configuration\Profiles

Intune – You can now target specific users/devices when applying Windows Hello policy Read More »