View SharePoint external sharing setting

Many people don’t seem to appreciate that most SharePoint sites in Office 365 are configured for sharing outside the organisation by default. This is designed to allow external parties to more easily access common content.

This means that generally, by default, users of those SharePoint sites (which includes Microsoft Teams) are going to be able to share links to that information. You can obviously disable this if you want, but generally, by default, sharing is enabled.

An easy way to see what the sharing status of your sites is current set to is to run the following PowerShell command after connecting to SharePoint Online:

get-sposite | Select-object url,sharingcapability

This will show you the one of following results:

Disabled – external user sharing (share by email) and guest link sharing both disabled

ExternalUserSharingOnly – external user sharing (share by email) enabled, but guest link sharing disabled

ExistingExternalUserSharingOnly – (DEFAULT) Allow sharing only with external users that already exist in organisation’s directory

ExternalUserAndGuestSharing – external user sharing (share by email) and guest link sharing both enabled

You can then go and make any adjustments you need to.

July Azure Resources

July 2018 Azure Need to Know Webinar from Robert Crane

Slides from this month’s webinar are at:

https://www.slideshare.net/directorcia/july-2018-azure-need-to-know-webinar

If you are not a CIAOPS patron you want to view or download a full copy of the video from the session you can do so here:

https://www.ciaopsacademy.com/p/need-to-know-azure-webinars

Watch out for next month’s webinar.

July Office 365 Webinar Resources

July 2018 Office 365 Need to Know Webinar from Robert Crane

Slides from this month’s webinar are at:

https://www.slideshare.net/directorcia/july-2018-office-365-need-to-know-webinar

If you are not a CIAOPS patron you want to view or download a full copy of the video from the session you can do so here:

http://www.ciaopsacademy.com.au/p/need-to-know-webinars

Watch out for next month’s webinar.

Need to Know podcast–Episode 186

We’ll keep it simple for this episode and just give you a run through of the latest from Office 365 and Azure with Brenton and myself. A shorter episode for a change. Let us know what you think.

Take a listen and let us know what you think –feedback@needtoknow.cloud

You can listen directly to this episode at:

https://ciaops.podbean.com/e/episode-186-news-from-the-cloud/

Subscribe via iTunes at:

https://itunes.apple.com/au/podcast/ciaops-need-to-know-podcasts/id406891445?mt=2

The podcast is also available on Stitcher at:

http://www.stitcher.com/podcast/ciaops/need-to-know-podcast?refid=stpr

Don’t forget to give the show a rating as well as send us any feedback or suggestions you may have for the show.

Resources

@contactbrenton

@directorcia

Four new ways Microsoft takes the work out of teamwork

How to use Cortana commitments

Roko’s Basilisk

Free Microsoft Teams

OneDrive updates – July

OneDrive updates – June

Microsoft Whiteboard App

Microsoft Inspire

Microsoft Financial results

CIAOPS Office 365 Security course

You need to re-enable Whiteboard

If you are like me and have been using the preview version of the Microsoft Whiteboard, then you’ll need to go back in and able the non-preview version as shown above.

You’ll find the option in the Office 365 Admin Center under the Services & add-ins as shown above.

If haven’t yet played with Microsoft Whiteboard, what are you waiting for?

Enable Microsoft Whiteboard for your organization

Configuring DKIM In Office 365

DKIM is a configuration that you can easily add to your Office 365 environment to improve the security of your custom domains.

To configure DKIM, you need to add two DNS records and then enable the setting in Office 365. Then, your outbound emails will have an encrypted portion added to their headers that a receiver can verify securely to ensure the email came from you.

You can read more about how all this works and how to configure it here:

Use DKIM to validate outbound email sent from your custom domain

What my video shows you is how to do this setup using PowerShell combined with Azure DNS. This means the DNS records for the custom domain are hosted in an Azure DNS zone and thanks to PowerShell I can do the whole DKIM configuration via a script. In fact, you can do your whole Office 365 records in Azure DNS using a single script. That’s how I do it, to save time and be more consistent.

Here are the PowerShell commands you’ll need:

$dkim = Get-DKIMSigningConfig $domain

$cname1 = $dkim.Selector1Cname

$cname2 = $dkim.Selector2Cname

$hostname1 = “selector1._domainkey”

$hostname2 = “selector2._domainkey”

New-AzureRmDnsRecordSet -Name $hostname1 -RecordType CNAME -ZoneName $domain -ResourceGroupName $res_grp -Ttl 3600 -DnsRecords (New-AzureRmDnsRecordConfig -Cname $cname1)

New-AzureRmDnsRecordSet -Name $hostname2 -RecordType CNAME -ZoneName $domain -ResourceGroupName $res_grp -Ttl 3600 -DnsRecords (New-AzureRmDnsRecordConfig -Cname $cname2)

set-dkimsigningconfig -identity $domain -enabled $true

Make sure you are connected to both Azure and Exchange PowerShell environments and that you put the custom domain in the variable $domain first. You’ll also need the Azure resource group ($res_grp) for the DNS zone as well.

Now DKIM is not the be all and end all when it comes to domain spoofing protection but having it configured helps and using a scrip to deploy it makes it much easier to implement across all your custom domains in Office 365.

You should also note the following from the above article:

If you do not enable DKIM, Office 365 automatically creates a 1024-bit DKIM public key for your custom domain and the associated private key which we store internally in our datacenter. By default, Office 365 uses a default signing configuration for domains that do not have a policy in place. This means that if you do not set up DKIM yourself, Office 365 will use its default policy and keys it creates in order to enable DKIM for your domain.

Also, if you disable DKIM signing after enabling it, after a period of time, Office 365 will automatically apply the Office 365 default policy for your domain.

Although DKIM is not mandatory for emails sent via the Internet having it enabled does help others with DKIM detection enabled to better ensure legitimate emails are received from your email. It doesn’t take long to configure and once done doesn’t require any maintenance, so best practice is to set it up and help the Internet better detect and protect against spoofing.

Final discount to my new Microsoft 365 Security course

security-protection-anti-virus-software-60504 (1)

If you missed the first discount round and you want deep dive training into Office 365 security, with video demonstrations, included PowerShell configuration scripts, reference material and more then don’t hesitate. I’m offering one last round of discounts before I completely finish my course.

Use the coupon code LASTCALL at check for:

Microsoft 365 Security

or this direct URL that includes the discount:

https://www.ciaopsacademy.com/p/o365-security/?product_id=715774&coupon_code=LASTCALL

That will give you access to the complete course immediately, plus any coming additions for only US$249. There are already over 40 lessons in the course that you can take advantage of and I have lots more to add but that won’t take me long.

Remember, this is the last round of discounts I’ll do. After this the price reverts to the standard price of US$399.

So, if you want to learn more about the security options for Microsoft and Office 365 then sign up today to advantage of the discount while it lasts.

Don’t show folders in SharePoint

Best practice with the structure in SharePoint is to keep things as flat as possible. This typically means avoiding multi level folders within Document Libraries because doing so reduces the visibility of information and make it hard for people to find information if they don’t understand the folder structure it lives in.

However, best practices is not what always happens I appreciate. So is there any easy way to see all in the file in a structure with a SharePoint Document Library? There certainly is and it requires working with Views.

The recommended starting point is to navigate to the Document Library in question and then in the top right select the All Documents button. This should display a menu like shown above.

Select the Save view as option to create a duplicate of the way the Document Library is currently being displayed.

For this example, I’m looking for Visio files in my folder structure so I’ll call this new view Visio as shown above.

You should now see that the menu option on the right now show an item called Visio as shown, with a check to the left. This indicates that we are viewing the Document Library with a View called ‘Visio’.

Because the ‘Visio’ view is simply a copy of the default All Documents view, we now want to go in and customise what is displayed with this View. To do this, select the Edit current view option from the menu as shown above.

You are now taken into an area where you can customise all sorts of aspects of the current View.

If you now scroll down to the bottom of all these options, you will find one called Folders, which you should expand as shown above. There you will find an option, Show all items without folders, which you need to select.

Scroll down to the bottom of the page and select Save to update your preferences.

You should no be returned to the list and you should no longer see any folders but every file in the structure shown together as shown above.

With this new list of just documents, you can select the Type column (first from the left) and from the menu that appears the Filter by option as shown above.

On the right hand side a filter menu will appear as shown above. Here, select Visio and then the Apply button.

You should now only see Visio files as shown above.

This has achieved our aim but, all the filtering options are temporary. If we return to this Document Library later we’ll again see a full list of files. If we want our new View to continue to show just Visio files we’ll need to go in a edit the View again and make some changes.

Once we are again editing the Visio view we can locate the Filter section and set conditions for what we want to see. Here, I’m adding filtering on the Type column in that I only want to see VDW or VSD file types.

Again, make sure you Save you changes before exciting the editing options.

Now, every time I go to that Document Library and select the Visio vie win the top right I will see my filtered list of all Visio files in that structure. If you want to make this new filter View the default, just go back to editing the View and select that option. Easy.

SharePoint views therefore allow to easily view your Document Libraries the traditional way with folders or roll up to single ‘non-folder’ View.