14Nov2019
11Nov2019
From Ignite 2019: Office 365 ATP Best Practices Analyzer, and other actions MS is taking to democratize security
I haven't had time to write an overall review of Ignite and all the various announcements that were made. And honestly, I might just skip that because there are so many others out there doing the same. They probably did an even do a better job than I would. So...
02Nov2019
You give Encrypt button back NOW, Microsoft!!!!
Recently Sensitivity labels were brought to Outlook, across all the various apps now, including mobile, desktop and web access. This drama has certainly been worth watching. I think Sensitivity labels should gain a lot of traction in general over the next year or two. It's so much more powerful than most...
29Oct2019
New updates to the BP guides PLUS the Office 365 Security Checklist
I have heard from so many people about the Microsoft 365 Best Practices checklists--you guys & gals seem to really like them! I'm pleased to hear it. Although all of this content is available for FREE on my website, I still hear from folks every day who want a...
21Oct2019
No more excuses: 5 Tips & tricks to make Office 365 MFA easier on people
As I'm sure you are aware by now, Multi-factor Authentication reduces your risk of identity compromise by 99.9%. Requiring so called "strong passwords," by contrast, doesn't make that much difference at the end of the day. And yet, we're still beneath 10% of even just admin accounts in Azure AD...
14Oct2019
Why you shouldn’t disable external sharing (really)
Okay, so anyone who has ever done consulting with Microsoft / Office 365 before has probably heard this question: "Can we disable external sharing?"--Any customer at every Office 365 consulting engagement, ever. Bless their souls, these questions are usually coming from a good place, but to see why this is actually not...
11Oct2019
Removing local admin: a game of compromise (and some tips and tricks)
Look, I am a realist. Yes: from a security perspective it would be ideal if we could take away local admin privileges on every corporate owned Windows 10 workstation. But that still isn't very easy to do for many organizations. Some orgs do need to maintain a bit more flexibility, with...
05Oct2019
iPadOS (iOS 13+) still not compatible with MAM enforced by Conditional access
Update 11/18/2019: This issue has now been fixed. I wrote about this before the update dropped, and in my testing since then I am afraid the situation has not improved. The setup Create a Conditional access policy for iOS that requires an approved client app. In other words, users cannot...
04Oct2019
Introducing the Windows 10 Business Secure Configuration Framework
Update March 2023: This publication has been updated significantly and renamed as well. It is now called The SMB Guide to Threat Defense and Microsoft Defender in Microsoft 365 Business Premium Plans. This guide describes implementation of Microsoft Defender for Office 365 as well as Microsoft Defender for Business, and...
03Oct2019