Information about SharePoint, Microsoft 365, Azure, Mobility and Productivity from the Computer Information Agency
Here’s a script I wrote that you can run to check the operation of Office macro’s on a device:
https://github.com/directorcia/Office365/blob/master/office-macro-get.ps1
For the script to execute you’ll need to run it as an administrator and have the Microsoft Graph module installed so the tenant wide addins can be checked.
Join me for the free monthly CIAOPS Need to Know webinar. Along with all the Microsoft Cloud news we’ll be taking a look at Purview (aka Compliance) in Microsoft 365.
Shortly after registering you should receive an automated email from Microsoft Teams confirming your registration, including all the event details as well as a calendar invite.
You can register for the regular monthly webinar here:
(If you are having issues with the above link copy and paste – https://bit.ly/n2k2503)
The details are:
CIAOPS Need to Know Webinar – March 2025
Friday 28th of March 2025
11.00am – 12.00am Sydney Time
All sessions are recorded and posted to the CIAOPS Academy.
The CIAOPS Need to Know Webinars are free to attend but if you want to receive the recording of the session you need to sign up as a CIAOPS patron which you can do here:
or purchase them individually at:
Also feel free at any stage to email me directly via director@ciaops.com with your webinar topic suggestions.
I’d also appreciate you sharing information about this webinar with anyone you feel may benefit from the session and I look forward to seeing you there.
You don’t need a full license of Microsoft 365 Copilot for each user to create custom Bizchat agents, you can tie your Copilot billing to an Azure subscription, create and publish custom Bizchats agents to your users with Microsoft Copilot Studio quick and easily as shown in this video.
Video link = https://www.youtube.com/watch?v=kow8UJmZLaU
Disrupting a global cybercrime network abusing generative AI –
https://blogs.microsoft.com/on-the-issues/2025/02/27/disrupting-cybercrime-abusing-gen-ai/
Microsoft completes landmark EU Data Boundary, offering enhanced data residency and transparency –
Announcing Free, Unlimited Access to Think Deeper and Voice –
Maximizing AI’s potential: Insights from Microsoft leaders on how to get the most from generative AI –
Move files to OneDrive –
https://www.youtube.com/watch?v=a2hq63Yfj3Y
Safeguarding AI against ‘jailbreaks’ and other prompt attacks –
Focus on what matters most with Microsoft 365 Copilot –
https://www.youtube.com/watch?v=0-_xncOsEds
After hours
Gibberlink – https://www.youtube.com/watch?v=Z3yQHYNXPws
Editorial
If you found this valuable, the I’d appreciate a ‘like’ or perhaps a donation at https://ko-fi.com/ciaops. This helps me know that people enjoy what I have created and provides resources to allow me to create more content. If you have any feedback or suggestions around this, I’m all ears. You can also find me via email director@ciaops.com and on X (Twitter) at https://www.twitter.com/directorcia.
If you want to be part of a dedicated Microsoft Cloud community with information and interactions daily, then consider becoming a CIAOPS Patron – www.ciaopspatron.com.
Watch out for the next CIA Brief next week
To test a file for a sensitivity type navigate to the Microsoft Purview portal. From the solutions icon on the left hand side select Data Lifecycle Management. Expand the Classifiers option from the menu and select Sensitive info types as shown above. You can search for the an item via a search in the top right.
Here, I’ll located Credit Card Number as shown above.
On the right hand side you will find a Test icon as indicated above.
From the right will appear a window with an option to Upload file as shown above.
Once you have uploaded the file you wish to test, select the Test button at the bottom of the page as shown.
After a moment or two, you’ll see the results of the test as shown above.
This manual sensitive information testing process will allow you to verify whether your file content will be identified by services such as DLP in MIcrosoft Purview. This should make creating policies to ptotect your information easier.
I take a look at something many overlook when it comes to security in their Microsoft 365 environment – Exposure score. In essence it is like a targeted Secure Score for a particular threat like Business Email Compromise. There is also news and updates from the Microsoft Cloud so listen along and review the show notes for more information.
Brought to you by www.ciaopspatron.com
you can listen directly to this episode at:
https://ciaops.podbean.com/e/episode-340-exposure-management/
Subscribe via iTunes at:
https://itunes.apple.com/au/podcast/ciaops-need-to-know-podcasts/id406891445?mt=2
or Spotify:
https://open.spotify.com/show/7ejj00cOuw8977GnnE2lPb
Don’t forget to give the show a rating as well as send me any feedback or suggestions you may have for the show.
Resources
The way to control EWS usage in Exchange Online is changing
New Microsoft-managed policies to raise your identity security posture
Storm-2372 conducts device code phishing campaign
Block malicious command lines with Microsoft Defender for Endpoint
Clipchamp: Elevating work communication with seamless video creation in Copilot
Sharing with Microsoft Whiteboard
AI agents at work: The new frontier in business automation
New Certification for Microsoft information security administrators
Quick Setup – Microsoft Entra Verified ID –
https://www.youtube.com/watch?v=YnukKchoN28
Talk and translate on-the-go with Copilot –
https://www.youtube.com/watch?v=P4lKB5Yz9Sg
Amtrak improve efficiency and safety with Microsoft Power Platform –
https://www.youtube.com/watch?v=292tyXQLie0
The way to control EWS usage in Exchange Online is changing –
Enhanced data control while submitting Microsoft 365 Copilot feedback –
New Microsoft-managed policies to raise your identity security posture –
Clipchamp: Elevating work communication with seamless video creation in Copilot –
With Copilot agents, Pets at Home unleashes an AI revolution –
Majorana 1 Explained: The Path to a Million Qubits –
https://www.youtube.com/watch?v=wSHmygPQukQ
Sharing with Microsoft Whiteboard –
https://www.youtube.com/watch?v=RXAo9JGZS44
Facilitating sessions with Microsoft Whiteboard –
https://www.youtube.com/watch?v=UNqtsIqNK7s
Get help or support as an admin –
https://www.youtube.com/watch?v=0s1Cof06VfA
Seamless Security: Smartcard Logon from Entra-Only Machines to domain-joined Servers or AVDs –
Minimize email drafts in Outlook for Android and iOS to easily task switch –
How to protect against Device Code Flow abuse (Storm-2372 attacks) and block the authentication flow –
After hours
Introducing Helix – https://www.youtube.com/watch?v=Z3yQHYNXPws
Editorial
If you found this valuable, the I’d appreciate a ‘like’ or perhaps a donation at https://ko-fi.com/ciaops. This helps me know that people enjoy what I have created and provides resources to allow me to create more content. If you have any feedback or suggestions around this, I’m all ears. You can also find me via email director@ciaops.com and on X (Twitter) at https://www.twitter.com/directorcia.
If you want to be part of a dedicated Microsoft Cloud community with information and interactions daily, then consider becoming a CIAOPS Patron – www.ciaopspatron.com.
Watch out for the next CIA Brief next week
Microsoft has updated the Windows Security Baseline for Endpoint Security in Intune to 24H2 as shown above. Baselines are an easy way to set a vast array of best practice settings across your Windows devices in a single policy, already pre-configured by Microsoft.
I have extracted the policy to a JSON file and made it available at:
https://github.com/directorcia/bp/blob/main/Intune/Policies/Endpoint/Baselines/win.json
and the previous one is here:
https://github.com/directorcia/bp/blob/main/Intune/Policies/Endpoint/Baselines/Archive/win.json
You can now simply import that directly into your environment programmatically using something like PowerShell.
I will note that when I initially exported the templated and tried to import it back I got the error:
Invalid Reference id found in Policy
after a lot of troubleshooting (and I mean a LOT) I tracked down the issue to be related to id 241:
{
“id”: “241”,
“settingInstance”: {
“choiceSettingValue”: {
“value”: “device_vendor_msft_policy_config_deviceguard_machineidentityisolation_0”,
“children”: [],
“settingValueTemplateReference”: {
“useTemplateDefault”: false,
“settingValueTemplateId”: “6a208e4b-0e34-4d12-a821-3173e99f3ce0”
}
},
“@odata.type”: “#microsoft.graph.deviceManagementConfigurationChoiceSettingInstance”,
“settingDefinitionId”: “device_vendor_msft_policy_config_deviceguard_machineidentityisolation”,
“settingInstanceTemplateReference”: {
“settingInstanceTemplateId”: “1fa97457-2a1f-4e33-b3c2-9a4c8930510d”
}
}
}
removing that from teh template allowed the rest of the template to import. I’ll have to spend some more time working out the exact settings and hopefully by then Microsoft fixes the issue and I’ll update the JSON in my Best Practices repository. However, for now the JSON at the URL can be imported.
CIAOPS 