Tag - security

The Azure AD Best Practices Checklist

Update: Downloadable/printable copies of the Microsoft 365 Best practices checklists and guides are now available. Thanks for your support! Disclaimer: This checklist is NOT a comprehensive overview of every consideration when implementing Azure AD. For instance, the...
Read more...

Conditional access is now supported in Microsoft 365 Business (and how to get started)

Okay, so the big day has finally arrived! We have been sitting on PINS AND NEEDLES waiting for this announcement, as it has been rumored for quite some time. I couldn't be happier now that it is here: Conditional access, which is a critical security feature that I think all...
Read more...

Assume Breach: Where Microsoft 365 Business misses on Security (and how to fix it)

Yeah yeah, we've all heard the sob story over Azure AD Premium before. I'm told things may be changing here in the near future, but assuming Conditional access falls into place soon, I believe Microsoft 365 Business would remain...
Read more...

Introducing the Microsoft Office 365 Email Security Checklist

Update March 2023: This project morphed into the Microsoft 365 Best Practices Checklists, which includes a checklist and guide for each of the major services in Microsoft 365. You can get the product here. Okay. I think I have had enough. Enough of what? Enough of reports like this...
Read more...

Three ways to disable basic authentication and legacy protocols in Exchange Online

One of the most common (and often successful) attacks we see in the wild is a simple brute force / password spray against weak accounts. Especially against shared mailboxes. From that foothold, the most common next step attackers will take is to send out spam/phishing emails from the compromised account,...
Read more...

My favorite Conditional Access Policies for the SMB

It's not even a question in my mind anymore--every org who moves their email and other data sets into Office 365 should be protected with Enterprise Mobility + Security (also available in Microsoft 365 Enterprise plans). If you are in the Business subscription of Microsoft 365, this means adding Azure...
Read more...

Super-charging security on non-Microsoft 365 E5 plans

This article was updated in April of 2020 Microsoft 365 E5 is the Cadillac of plans. Basically every product in the 365 universe is bundled into this level subscription, and that includes a ton related to security. Recently, Microsoft
Read more...

Helping IT Consultants Succeed in the Microsoft Cloud

Have a Question? Contact me today.