Thursday, May 31, 2018

Need to Know podcast–Episode 182

In this episode Brenton does his first solo interview and speaks with Josh Pell who is currently head of Project and Solution Delivery at Bendigo Telco. As well as being a highly passionate, solution driven IT PMO professional, he has over 18 years providing fantastic experiences to his customers both internal and external across a multitude of industry. You can follow Josh on  Linkedin (https://www.linkedin.com/in/joshpell/) or Twitter (https://twitter.com/pell_josh). Brenton and I also cover off all the latest Microsoft Cloud news for you as well.

Take a listen and let us know what you think -feedback@needtoknow.cloud

You can listen directly to this episode at:

https://ciaops.podbean.com/e/episode-182-josh-pell/

Subscribe via iTunes at:

https://itunes.apple.com/au/podcast/ciaops-need-to-know-podcasts/id406891445?mt=2

The podcast is also available on Stitcher at:

http://www.stitcher.com/podcast/ciaops/need-to-know-podcast?refid=stpr

Don’t forget to give the show a rating as well as send us any feedback or suggestions you may have for the show.

Resources

@pell_josh

@askbrenton

@directorcia

SharePoint Virtual Summit

Introducing Microsoft training services

What's new for your intranet in Office 365

Explore Build 2018 content with playlists

New updates for Microsoft Azure Storage Explorer

Preview of Azure AD Authentication for storage

Changes coming to PowerShell in Azure Cloud Shell

Wednesday, May 30, 2018

Selecting sites to include/exclude in Office 365 DLP

image

When you create a DLP policy you have the option to exclude or include certain SharePoint sites as shown above.

SNAGHTML6159fb77

If the sites you wish to include or exclude are anything but the default team site (i.e. https://tenant.sharepoint.com) then you need to manually search for the URL.

Thus, if you are looking to include or exclude a SharePoint site that was created by Microsoft Teams then you need to explicitly search for it by URL to add it to your list as shown above.

Friday, May 25, 2018

Wednesday, May 23, 2018

Office 365 DLP Document Finger Printing

Data Loss Prevention (DLP) is a way of preventing sensitive information inside you organisation from being sent places you don’t want. Office 365 E3 and above have always included DLP but now Microsoft 365 Business also includes DLP.

There a number of different options you can configure when it comes to DLP inside Office 365. One of these ways is to use DLP is via Document Fingerprinting that allows Office 365 to check information against a template you provide.

Here’s how it works.

image

The first thing I do is create a template of the information I want to be fingerprinted against. Here I have created an invoice template as shown above. Thus, information being sent from my tenant will be checked (‘fingerprinted’) against this to prevent documents that ‘look like’ this template from being sent externally.

image

To configure DLP Document Fingerprinting you’ll need to navigate to the Exchange Admin Center and then the compliance management option on the left. You’ll then need to select the data loss prevention option at the top of the page on the right.

On this page you’ll need to select the Manage document fingerprints hyperlink in the top half of the page as shown above. 

image

Here you will see any document fingerprints already configured. Press the plus (+) key to add a new fingerprint document.

image

Simply give the fingerprint a name (in this case Invoice – DLP).

image

In the lower window you’ll need to select the plus (+) symbol and upload the template document that you have created. In my case, I’m going to upload the invoice template shown earlier.

Save you selections.

image

In the lower part of the data loss prevention page you’ll see a list of DLP policies in your tenant. Some of these policies may have been created elsewhere (like the Office 365 Security and Compliance Center). Locate the document fingerprint policies you just created (here called Check for Invoices), select it and then select the edit icon from the menu at the top as shown.

image

You can then further configure the DLP policy. Here I have elected to enable and enforce the policy but there are other options you can select.

Select the rules option from the menu on the left.

image

To create a new rule, select the plus (+) icon from the menu across the top.

image

Here is where you will create the outbound transport rule to check information sent via email. In this case, the rule will apply of the recipient is outside my Office 365 tenant.

image

When I select the type of sensitive information I can now select from the document fingerprint I just created.

When there is a policy match, I then elect to block the document, notify the user via a policy tip and send a report to a nominated user.

image

With my new document fingerprinting DLP policy in place I now create a new invoice based on the original template as shown above that you can see is different from the original template but still similar in format.

image

As you can see above, when I attempt to attach this new document via Outlook on the desktop that looks like the previously configured fingerprint document, it activates my DLP policy and prevents the item being sent outside the organisation as desired.

image

I get a similar result if I try and do this using the Outlook Web Client (OWA).

image

I get a policy tip at the top of email as shown above.

image

and when I attempt to send the email I can’t. DLP in action!

This is one example of the DLP capabilities of suitably licensed Office 365 and Microsoft 365 tenants. DLP is great way to prevent standard information, like invoices, being accidentally or maliciously sent outside your organisation.

As I mentioned, DLP is now part of Microsoft 365 Business which means that it an even more enticing offering for SMB who are subject to compliance regulations.

Friday, May 18, 2018

Pssst…want some free GBs in your OneDrive for Business?

One of the common beliefs with Office 365 is that OneDrive for Business storage for most plans (typically Business plans) is limited to 1TB per user. Well, I’m here to tell you that the limit for most tenants is in fact 5TB per user. Don’t believe me? Well, read on and be AMAZED!

image

You can see from the above that the user has the standard 1TB storage for the OneDrive for Business.

image

The ‘normal’ way that you set the amount of storage each user gets for their OneDrive for Business is via the Storage option in the OneDrive Admin console as you can see above.

Now, if you visit the link just below that setting you will see the following:

image

Here’s the full link:

https://support.office.com/en-us/article/set-the-default-storage-space-for-onedrive-users-cec51d07-d7e0-42a3-b794-9c00ad0f0083?ui=en-US&rs=en-AU&ad=AU

Thus, if you have more than 5 users (and perhaps less) you can get 5TB per user OneDrive for Business.

image

These days, I prefer to do most of my administration using PowerShell. The above script will set the new limit for all users provisioned with OneDrive for Business from this point on to have 5TB of space in their OneDrive for Business.

image

To increase any existing users OneDrive for Business up to the 5TB limit you’ll need to run the above script for each user. You’ll need to replace the URL with each users individual OneDrive for Business URL.

image

After doing this, if you now look at the users OneDrive for Business storage quota, you’ll see it is now 5TB!

Magic eh? And you thought I couldn’t give you free GB’s out of thin air! Shame on you.

Thursday, May 17, 2018

An Introduction to Azure for partners

Here’s a recent presentation I gave providing an overview of Azure aimed at IT resellers and professionals. The slides are also available for download here:

https://www.slideshare.net/directorcia/introduction-to-azure-for-smb-partners

Wednesday, May 16, 2018

Enterprise State Roaming

Microsoft 365 allows you to implement Enterprise State Roaming which is the ability to sync select Windows desktop settings across various machines. This is really handy if you work with different Windows 10 machines and want you information across all of them.

You enable Enterprise State Roaming in Azure AD and then all you need to have is Windows 10 Pro machines joined directly to Azure AD. This video tutorial will show you how to set up Enterprise State Roaming and how it works.

Tuesday, May 15, 2018

Need to Know podcast–Episode 181

This week I talk to the Microsoft 365 Senior Product Marketing Manager in Australia Nico Charritton all about the latest updates to Microsoft 365 Business. We talk about the Microsoft 365 Business product and how it can benefits businesses, especially when it comes to increasing their security. Brenton and I also bring you the latest updates from the Microsoft Cloud and also information about the latest Windows updates we have seen roll our recently. Plenty to stay tuned for and we thank you for listening.

Take a listen and let us know what you think -feedback@needtoknow.cloud

You can listen directly to this episode at

https://ciaops.podbean.com/e/episode-181-nico-charritton/

Subscribe via iTunes at:

https://itunes.apple.com/au/podcast/ciaops-need-to-know-podcasts/id406891445?mt=2

The podcast is also available on Stitcher at:

http://www.stitcher.com/podcast/ciaops/need-to-know-podcast?refid=stpr

Don’t forget to give the show a rating as well as send us any feedback or suggestions you may have for the show.

Resources

@contactbrenton

@directorcia

Nico

What is Microsoft 365 Business?

Introducing Microsoft 365 Business

Microsoft 365 Business get serious

Microsoft 365 Business new features

Microsoft 365 Business documentation

Microsoft demos

What's new in 1803

Google Assistant demo

SharePoint Migration Tool V2 now available

Office 365 Advanced Threat Protection

Per disk metrics for managed and unmanaged disks

Monday, May 14, 2018

Introduction to Office 365 Advanced Threat Protection (ATP)

Office 365 Advanced Threat Protection (ATP) is one of the recent offerings rolled into Microsoft 365 Business. See:

Microsoft 365 Business new feature comparison

I feel that ATP should be a mandatory add on for all Office 365 SKUs that don’t already include it. It is very cheap but really helps protect users from bad stuff coming in via emails.

One thing that many people fail to realise about ATP (and many other O365 security features in fact) is that you need to enable it or set up policies to control what you want the service to do. These generally aren’t there by default, so simply adding a license isn’t good enough. You actually need to go in and configure the policies.

The above video gives you and overview of how to set these policies and what options they involve. You’ll also see ATP in action protecting a mailbox from malware. This should give you a goo introduction to Office 365 ATP.

Learn how ATP will make you and your business safer.

Saturday, May 12, 2018

Saving custom columns widths with SharePoint Online

image

One of the great things about SharePoint Online is that you can create custom columns for just about every element in a site. The information that SharePoint Online displays to you can be customised using “Views”. You can configure multiple “Views” inside a List or Library to show exactly the information you want, as you can see above.

image

You can also adjust the width of any column by simply dragging it out like you do in something such as Excel. Just go to the boundary of the column heading and drag the column width out as shown above.

The issue was that when you return to this layout after the current session (i.e. closed the browser and logged in again later), the column width would revert back to the default width. Frustrating.

image

Also, if another user looked at the same location they would again, only see the default widths, even though you changed it in your session.

So, any column changes made were not persistent between sessions or globally available. Frustrating.

image

However, if you take a close look at the “View” pull down in the top right of the page you will notice something.

image

You should see that once you change a column width on the page a * appears after the “View” name.

image

Again, make a change to the column width and a little * will appear. This is telling you that the “View” has changed is different from the default. This is kinda the same when you edit documents. It indicates that the contents have changed and you SHOULD save these changes for them to be retained!

image

If you therefore select the “View” pull down there will be an option to Save view as.

image

If you then Save the “View”, using the same name as before, you are overviewing the old display with the new layout i.e. with different column widths.

image

If another user now navigates to the page they will see the columns widths that you set! i.e. saving the “View” after adjusting the columns sets these columns width for all users! Yes Martha, we have achieved the global configuration for column widths in SharePoint Online! Yeah!

In summary then, adjust the column widths to the size you want and then save the “View” to make those widths available to all users globally.

Wednesday, May 9, 2018

Microsoft 365 Business new feature comparison

Capture
(Click image to expand)

Microsoft has recently made a number of additions to the Microsoft 365 Business suite which I detailed here:

Microsoft 365 Business gets serious

The above chart is something that Microsoft has made available recently to provide you with a side by side comparison of features plus the new additions to the Microsoft 365 Business Suite.

All prices are in AU$.

Monday, May 7, 2018

CIAOPS Need to Know Azure Webinar–May 2018

pexels-photo-325229

This month I’ll take a look at Azure Storage and all the options that are available around that service. There’ll also be news, updates and Q and A. I hope to see you there.

May Azure Webinar Registrations

The details are:

CIAOPS Need to Know Azure Webinar – May 2018
Friday 25th of May 2017
2pm – 3pm Sydney Time

All sessions are recorded and posted to the CIAOPS Academy.

There of course will also be open Q and A so make sure you bring your questions for me and I’ll do my best to answer them.

The CIAOPS Need to Know Webinars are free to attend but if you want to receive the recording of the session you need to sign up as a CIAOPS patron which you can do here:

http://www.ciaopspatron.com

or purchase them individually at:

http://www.ciaopsacademy.com/

Also feel free at any stage to email me directly via director@ciaops.com with your webinar topic suggestions.

I’d also appreciate you sharing information about this webinar with anyone you feel may benefit from the session.

CIAOPS Need to Know Office 365 Webinar–May

laptop-eyes-technology-computer

For this month’s webinar we are going to take a look at what Office 365 Data Loss Prevention (DLP) is and how it can be used to safeguard the information inside your organisation. You’ll learn what DLP is all about and how to implement it with Office 365. Of course, I’ll also bring you up to speed with all the latest news and updates in the world of Office 365 and Microsoft 365.

You can register for free at:

May Webinar Registrations

The details are:

CIAOPS Need to Know Webinar – May 2018
Friday 25th of May 2018
11am – 12am Sydney Time

All sessions are recorded and posted to the CIAOPS Academy.

There of course will also be open Q and A so make sure you bring your questions for me and I’ll do my best to answer them.

The CIAOPS Need to Know Webinars are free to attend but if you want to receive the recording of the session you need to sign up as a CIAOPS patron which you can do here:

http://www.ciaopspatron.com

or purchase them individually at:

http://www.ciaopsacademy.com/

Also feel free at any stage to email me directly via director@ciaops.com with your webinar topic suggestions.

I’d also appreciate you sharing information about this webinar with anyone you feel may benefit from the session.


Thursday, May 3, 2018

Need to Know podcast–Episode 180

We have been lucky enough to speak with Microsoft Senior Marketing Manager for OneDrive for Business Stephen Rose all about how OneDrive helps customers collaborate in this episode. I chat with Stephen about how to resist the urge to map drive letters to OneDrive and how it is superior to the competition amongst plenty of other things. Lots of really great information about OneDrive for Business and we thank Stephen for his time and information that he shared with us. Of course Brenton and I also wrap up the latest news and events in the Microsoft Cloud world and share with you our take on the current happenings. Don't for get to send us your feedback.

Take a listen and let us know what you think -feedback@needtoknow.cloud

You can listen directly to this episode at

https://ciaops.podbean.com/e/episode-180-stephen-rose/

Subscribe via iTunes at:

https://itunes.apple.com/au/podcast/ciaops-need-to-know-podcasts/id406891445?mt=2

The podcast is also available on Stitcher at:

http://www.stitcher.com/podcast/ciaops/need-to-know-podcast?refid=stpr

Don’t forget to give the show a rating as well as send us any feedback or suggestions you may have for the show.

Resources

@stephenlrose

@contactbrenton

@directorcia

OneDrive

OneDrive Uservoice

Microsoft Fasttrack

Microsoft 365 gets a swag of updates

Making IT simpler with a modern workplace

Make the most of your time with the new Windows 10 update

Office 2019 Preview is ready for commercial users

New survey explores the changing landscape of teamwork

Increase in SharePoint Online storage allocation

Microsoft Forms is enterprise ready

Microsoft results

Microsoft Kaizala

Wednesday, May 2, 2018

The new Microsoft 365 license

image

As a follow on from my recent post about all the additions to Microsoft 365 Business:

Microsoft 365 Business get serious

I went in and had a look at one of my tenants with Microsoft 365 Business and, as you can see from the above, the additional items (like Stream) are already available in the tenant!

The benefits of the cloud.

Tuesday, May 1, 2018

Microsoft 365 Business gets serious

night-portrait-canon-flash-74472

Recently Microsoft announced that Microsoft 365 Business had added a number of new features. You can read the announcement here:

https://www.microsoft.com/en-us/microsoft-365/blog/2018/04/30/safeguard-your-business-with-new-security-features-for-microsoft-365-business/

Now, I was super impressed with what they added. Things like Advanced Threat Protection (ATP) and Data Loss Prevention (DLP) are amazing add ons. However, when I went and looked at the actual Services Descriptions for what has been added I was blown away with what has in fact been added. Here’s the complete list:

1. Microsoft 365 Business includes Exchange Online Archiving subscription. This effectively turns an Exchange Online Plan 1 mailbox into a Plan 2 mailbox. This means that it effectively makes the mailbox unlimited in capacity. This was previously only available on E3 plans or better!

2. Azure Information Protection (AIP) Plan 1 is included in Microsoft 365 Business. This includes even more features that are part of Office 365 E3! For example, AIP Plan 1 includes the following items above and beyond what you get with Office 365 E3:

-  Manual, default, and mandatory document classification and consumption of classified documents

- Azure Information Protection connector with on-premises Windows Server file shares by using the File Classification Infrastructure (FCI) connector

- Document tracking and revocation

3. Data Loss Prevention features will be available in Microsoft 365 Business in Summer 2018. Normally this required a minimum of Office 365 E3.

4. Enterprise State Roaming for Windows 10 with Azure AD join. This is a feature of Azure AD Premium 1 but is now in Microsoft 365 Business.

5. Full Intune capabilities for iOS, Android, MacOS, and other cross-platform device management built into Azure console, also licensed for use with Microsoft 365 Business. Now this is the REALLY interesting one. It says FULL Intune!

6. In-Place Hold and Litigation Hold. This used to require a minimum of Office 365 E3.

7. Microsoft Stream. This used to require a minimum of Office 365 E1.

Interestingly, there now seems to more flexibility when it comes to integration with local Active directory per:

8. Azure AD Connect tool for enabling directory synchronization is supported in Office 365 Business Premium, which is a component of Microsoft 365 Business. However, when Windows Management components are enabled for Microsoft 365 Business, an Azure AD-join is required. If you have an on-premises Active Directory environment and you want to join your domain-joined devices to Azure AD, you can accomplish this by configuring hybrid Azure AD joined devices.

9. Advanced Threat Protection (ATP). This used to only be included in Office 365 E5 or as an addon SKU.

Some things Microsoft 365 Business still doesn’t include:

A. Conditional access (based on group, location, device state, sign-in, or user risk).

B. Device objects two-way synchronization between on-premises directories and Azure AD (device write-back).

C. Dynamic Groups.

D. Group Naming Policy. I am going to assume this one as I can’t find information that say it is included. However, fingers crossed.

E. Advanced eDiscovery.

If you want to check out all the details see:

https://technet.microsoft.com/en-us/library/mt846681.aspx

This really changes the whole Microsoft 365 Business conversation. These additional features I believe make Microsoft 365 Business the hero SKU for SMB, especially considering that that the price has not been increased (as far as I am aware). That is a huge amount of added value for no additional price.

The two big ones for me are the inclusion of Advanced Threat Protection (ATP) and Intune. If you then go and add everything else, wow, simply wow, is all I can say. This puts Microsoft 365 Business into the must have for most small businesses.

If you haven’t looked at Microsoft 365 Business, you really, really should!