UPDATE March 10, 2018 – I have been informed the invitation code to join the preview portal is no longer valid Even if we all know Office 365 is quite secure by design, you may want to evaluate by yourself the security level of your tenant. While you already have the Secure Score (https://securescore.office.com/) functionality […]
Office 365 – You can simulate an attack on your Office 365 (preview) Read More »
A new Directory Role is now available (in preview) to delegate Azure Information Protection management. This new role – Information Protection Administrator – allow you the delegation of the AIP management, granting permissions to configure policies labels and settings, configure and manage AIP templates or activate/deactivate AIP functionality. As usual you can grant this role
Azure – New role available in Azure AD for Azure Information Protection management Read More »
Following my post to install and configure Azure Information Protection Scanner (AIP Scanner) (see https://t.co/RIvT261b7O) here are few thoughts when you come to manage AIP Scanner: All management operation for AIP Scanner are done with PowerShell. That said you need to logon as the service account you used to configure AIP Scanner, otherwise you will
Azure – Azure Information Protection Scanner management Read More »
You may already Azure Information Protection (AIP) is used to protect and classify your data. You may aware you can also automated classification and protection for your data hosted online. Now, you can use Azure Information Protection Scanner to automatically classify and protect your files hosted on-premises, either on file servers or SharePoint (2013 or
When you use Azure AD Pass-Through authentication, your users are getting authenticated against your on-premises Active Directory when accessing cloud services (same way if you were using Federation, except this requires less infrastructure). So, knowing that (you are authenticating against your on-premises AD), what happen if an attacker is trying to gain access to your
Azure AD – Pass-Through authentication account lockout Read More »
In order to improve the security, Office 365 services are going to stop supporting Transport Layer Security (TLS) 1.0 and 1.1 If you are in hybrid scenarios (either with Exchange or Skype for Business) and/or if you use AD FS for your authentication services, you need to ensure your on-premises services supports TLS 1.2 Starting
Office 365 – It is time to move from TLS 1.0 and 1.1 Read More »
Office 365 ATP (Advanced Threats Protection) is an advanced protection solution provided by Office 365, already available for Exchange Online and for few months on Office Click To Run (see to learn more about ATP https://support.office.com/en-us/article/Office-365-Advanced-Threat-Protection-e100fe7c-f2a1-4b7d-9e08-622330b83653?ui=en-US&rs=en-US&ad=US) The solution is used to deeply analyzed URL’s and attachments before letting end-users accessing it. Now, Office 365 ATP
Office 365 – ATP is available for SharePoint and Teams too Read More »
If you use PowerShell to connect to Office 365 services, and also have MFA enabled, you already know there is always some issue to connect with PowerShell to some of the Office 365 services. While Microsoft is improving the situation, you can now have MFA enabled and connect to the Security and Compliance Center with
Microsoft has introduced a new feature to help you ensuring your Azure SQL services are secured. This feature is called SQL Vulnerability Assessment and is available on preview; the good news is you can also use it with your on-premises SQL servers. It has been designed in a way that even non security/SQL expert can
Azure – SQL Vulnerability Assessment Read More »
As announced at the Ignite Conference, a new Distributed Denial of Service protection has been added to Azure virtual network. This comes into 2 different offers: Basic and free Standard, providing custom and tuned protection based on your Azure Resource To start using it you can register for the standard preview at http://aka.ms/ddosprotection (no
Azure – Azure VNet DDoS protection Read More »
