Office 365 Secure Score

One of the real differentiators that Office 365 provides I believe is security. A new initiative that Microsoft have announced is:

New security analytics service

You can try this out for yourself. Firstly, login to your Office 365 tenant as a global administrator. Then, in a new browser tab, navigate to:

https://securescore.office.com/

You’ll be asked to provide Secure Score permissions to your tenant as you see above. Simply select Accept to continue.

Your tenant will then be assesses and rated as you can see above (in this case on a demo tenant).

This site not only gives you a security rating for your own tenant but it also provides you with an Action list which you can undertake to make your tenant more secure.

As you slide the bar in the middle of the page you see your security score increase. However, when you do this, you also see the Actions in the queue increase. Basically, to make your tenant more secure you have to take more actions. Obvious!

You can drill into an Action item to get more details and you see above.

If you select the Learn More button you get an informational card appear on the right with a Launch Now link to take you straight to the location to make the change.

The most interesting item on this page is over on the right, under the Compare your score as shown above.

What I find interesting is that this demo E5 tenant, more or less out of the box, is over 4 times more secure than the average! Not sure how this average is arrived at, and maybe it currently doesn’t include every tenant, but WOW do a lot of people have a lot of work to do to secure their tenant!

You’ll find plenty of other great information on this page as well as ability to view your score over time, so it is worth spending time to explore.

In short, this is great tool from Microsoft. It is simple to use and understand as well as making improving your Office 365 security dead easy! If you have Office 365 then I’d suggest you go and check out your security score. After visiting, I reckon you’d be pretty much at least double your score following the recommendations the site makes.

Expand your Office 365 offerings

A surprising statistics is that most SMB resellers merely provide email migrations services to Office 365. Few provide anything when it comes to SharePoint, Yammer, Skype for Business, Power Bi and so on. This does create an real opportunity for those partners who build offerings around all the additional products and features of Office 365.

To help partners get up to speed with the full range of Office 365 Services I developed and run two very unique training sessions. These session are part hands on lab, part lecture and part team building, goal setting and business development. The focus is give you experience in real world environments with Office 365 environments while competing in groups to be crowned ‘top dog’ for the day! This is truly the most unique Office 365 training you’ll find out and a guaranteed way to get partners started down the additional revenue opportunities with Office 365.

Best of all, Microsoft is offering this all day training FREE to partners who register now. Places are strictly limited as classes are kept intentionally small.

There are two courses available, a ‘basic (START)’ and an ‘advanced (GROW)’. The next ‘basic (START)’ course you can register for is here:

AUWW143 – NEXT UP Consumption For SMB – START
19th September 2016 | 09:00AM – 05:00PM
Microsoft Brisbane,
Level 28, 400 George Street, Brisbane

https://www.microsoftevents.com/profile/form/index.cfm?PKformID=0x553965a294

The follow on ‘advanced’ course is also available for registrations here:

AUWW142 – NEXT UP Consumption for SMB – GROW
26th September 2016 | 09:00am – 05:00pm
Microsoft Brisbane,
Level 28, 400 George Street, Brisbane

https://www.microsoftevents.com/profile/form/index.cfm?PKformID=0x5521037ff2

and

AUWW142 – NEXT UP Consumption for SMB – GROW
27th September 2016 | 09:00am – 05:00pm
Microsoft North Ryde,
1 Epping Road, Sydney

https://www.microsoftevents.com/profile/form/index.cfm?PKformID=0x552616b792

If these aren’t convenient for you, make sure you contact your local Microsoft rep and ask when they will be available in a location near you.

I hope to see you there.

Need to Know podcast–Episode 113

A special episode with a true technology superstar. Jeffrey Snover, Microsoft Technical Fellow/Lead Architect for Enterprise Group, Azure Stack and PowerShell Architect joins us to talk about Microsoft Operations Management Suite (OMS) and of course, all about his baby, PowerShell. Jeff shares some really great insights into the birth of PowerShell and why scripting is so valuable is today’s modern IT environment. Of course you’ll also get a cloud news update from Marc and I as well as a special report about upcoming changes to the Microsoft reseller initiatives around Office 365. It’s a bumper episode packed with content. So listen along, give us some feedback and listen to wisdom the father of PowerShell.

You can listen to this episode directly at:

http://ciaops.podbean.com/e/episode-113-jeffrey-snover/

or subscribe via iTunes at:

https://itunes.apple.com/au/podcast/ciaops-need-to-know-podcasts/id406891445?mt=2

The podcast is also available on Stitcher at:

http://www.stitcher.com/podcast/ciaops/need-to-know-podcast?refid=stpr

Don’t forget to give the show a rating as well as send me any feedback or suggestions you may have for the show.

Resources

@marckean

@directorcia

Modern SharePoint Lists

SharePoint Online Site Collection limit increased to 25TB

Change to partner remuneration coming 1st October 2016

Marc’s blog with all the Azure news

@jsnover – Jeffrey Snover: Microsoft Technical Fellow/ Lead Architect for Enterprise Cloud Group/ Azure Stack Architect/ PowerShell Architect

Here is the must watch video on Jeff’s history at Microsoft https://www.youtube.com/watch?v=3Uvq38XOark

Use the PowerShell 5 Convert-String Cmdlet

Learning PowerShell

Getting Started with PowerShell 3.0 – Microsoft Virtual Academy Course

Microsoft Operations Management Suite Overview

Show feedback – feedback@needtoknow.cloud

Office 365 Collaboration, Skype and Backup

Office 365 Collaboration—Robert Crane Docs.com

https://docs.com/d/embed/D25192961-2267-4946-0970-001023757425%7eMd4186d87-61d5-259a-4d26-00a8bd86cfff

The opportunities with Skype for Business—Robert Crane Docs.com

https://docs.com/d/embed/D25192961-2098-0759-5380-001420694364%7eMd4186d87-61d5-259a-4d26-00a8bd86cfff

Office 365 Backup options—Robert Crane Docs.com

https://docs.com/d/embed/D25192961-1989-0156-9410-001012602264%7eMd4186d87-61d5-259a-4d26-00a8bd86cfff

Here are some recent presentations I gave around Office 365:

Collaboration

Skype for Business

and

Backup

In essence they all point to the opportunity Office 365 provides IT resellers to go out and build services on stuff other than email migrations.

In short, if you are not adding value then your days are numbers. And simply moving data from one location to another and doing nothing else is not adding value!

Sharing Documents with Internal users using OneDrive for Business

A very common thing people want to is share document from their own OneDrive for Business with others. You can break this down into sharing with two different audiences, internal and external.

Internal users are users inside the same Office 365 tenant. While external users are those outside the users Office 365 tenant. The above video shows you how to share documents from a user’s OneDrive for Business with internal users. Look out for another video coming soon that details the process of sharing with external users.

This tutorial shows you how to share files with other users in your Office 365 tenant. You’ll see how to share a file, respond to an invite and co-author a document. You’ll also see how to quickly locate files that others have given you access to from their own OneDrive.

Enabling DLP for SharePoint and OneDrive for Business

DLP or Data Loss Prevention is a way inside Office 365 (E3 suites or above) that you can protect data from leaving the organisation. You can use DLP to protect not only email attachments but also files in SharePoint Online Team Sites and user’s OneDrive for Business.

Office 365 provides a number of standard templates for protecting standard information, such as credit card information as detailed here, but you can also customise the DLP policies to protect any custom data you wish.

The first step in using DLP is to set up and enforce the policies you wish to use. To do this you’ll need to login to the Office 365 portal as an administrator with the appropriate rights. You’ll then need to navigate to the tenant Admin area. From the menu on the left hand side of the screen expand the Admin centers option. From the options that appear select the Security & Compliance item.

From the Security and Compliance console select Security policies on the left. From the options that then appear below this select Data loss prevention. If this menu item doesn’t appear then you current don’t have an Office 365 plan that supports DLP.

On the right hand side you will probably see that the list is empty. Select the Plus icon to create a new policy.

You can select from a number of templated policies if you wish but in this case select Custom and then the Next button.

You now need to select the areas in which this policy will apply. You can specify unique locations but for this example we’ll simply select all locations and then continue.

At the next screen select the Plus icon to set the rules for which you wish to test.

In the new window that appears select the Add condition button.

From the pull down menu that appears select Content containing sensitive information.

Select the Plus icon that appears to enter the actual rules.

Scroll down the list that appears and select Credit Card Number. You can select other items here but in this case all we want this example DLP rule to test for is credit card numbers.

Select OK to continue.

You should now see the entry appear in the list as shown above. You can edit this entry if you wish by selecting it and then pressing the Pencil icon (edit).

Select the Actions item from the menu on the left.

Select the Add actions button on the right.

In this example, select Block the content. This will prevent anything that matches this rule from being shared.

You should now see the blocking Action listed as shown above.

Select the Incident report option from the menu on the left. Enter the details if you wish to receive a report of any actions on this policy.

Select General from the menu on the left. Give this set of rules a name and save them.

You should now see the rules listing appear as shown above in the DLP policy you just created. You can create as many of these rules inside a single policy as you wish. However, best practice is always to keep it simple.

Give the DLP policy and name and select the option to Turn on the policy.

Select the Create to complete the policy creation process.

You should now see the policy listed in the DLP area as shown above. You should also see that the Status is set to On.

The DLP policy will not come into effect immediately. It will take a little while (15 – 30 minutes typically in my experience) to roll out through your tenant.

To test the policy, create a document in your OneDrive for Business that contains credit card numbers as shown above. The numbers used here are verified public ‘test’ card numbers.

Now create a public View link that requires no sign-in as shown above. This should allow anyone who clicks on that link direct access to the file without the need of a login or password.

When the DLP policy is active anyone trying to access that link will have the content blocked as shown above. This confirms that teh DLP policy is working as expected.

If you also elected to get alerts you should fine one in your inbox as shown above.

Thus, DLP is a way to protect your Office 365 information by examining the contents against a set of rules that you create. It can examine both email and file data then take actions which you determine.

DLP is part of the E3 or better suite in Office 365.

SharePoint Online Storage increased to 25TB!

This item was in a recent blog post from Microsoft:

New site collection limit

As more and more teams embrace the breadth of capabilities offered in SharePoint Online grows across team sites, Office 365 Video and portal sites, their content storage requirements are growing. To address this, we will increase the SharePoint Online site collection storage limit in the coming weeks from 1 TB to 25 TB. This increased limit will be immediately reflected in the official SharePoint Online boundaries and limits article.

which you’ll find here:

https://blogs.office.com/2016/08/31/new-capabilities-in-sharepoint-online-team-sites-including-integration-with-office-365-groups/

which also details the continued integration between Office 365 Groups and Team Sites.

This storage increase is BIG news for SharePoint Team Sites and is really great pro-active move by Microsoft as it places more and more focus on SharePoint and Groups in Office 365. It is clear (as well as in my experience) that more and more businesses are moving the the traditional on-premises data to SharePoint. To ease adoption and encourage people to use SharePoint more then the space for Team Sites must increase.

For a long time we were locked into a SharePoint Team Site storage capacity of 10GB. That jumped to 1TB about 6 months about and now we are going to soon see 25TB! All of that increase in space is provided free if you are an Office 365 customer. Again, the benefits of a cloud subscription model.

**** Correction Start ****

If you actually look at the SharePoint Online limits page (as I should have) you see this:

From – https://support.office.com/en-us/article/SharePoint-Online-software-boundaries-and-limits-8f34ff47-b749-408b-abc0-b605e1f6d498

So it appears that you don’t automatically get 25TB of storage you do however get the ability to scale a single Site Collection to 25TB which you couldn’t before.

That said, I can see the day in the not to distant future where certain plans will get 25TB storage starting storage. Clearly, you can’t offer that until the limits are raised as they have done now.

**** Correction End ****

I’m expecting even more ground breaking announcements around Office 365 and Azure very soon as the Microsoft Ignite conference approaches. But for now, if 1TB of Team Site storage felt a little limiting, now you have 25TG. Thanks Microsoft.

The complete CIAOPS Academy catalogue

I get a lot of people asking me for a simple way to access all the courses I create. So, in response to that request I have created an annual subscription plan to all my online courses that you can sign up for here:

Complete Course Catalogue

The cost is an annual recurring investment of USD $599 and includes access to EVERYTHING, now and into the future. Thus, as I add more courses to the CIAOPS Academy subscribers to the Complete Course Catalogue will automatically get access as part of their subscription.

If you are looking for online, on demand Office 365, Azure, etc training for a single annual cost then sign up to the new CIAOPS Academy Complete Course Catalogue. Of course, you can still buy courses singly or in bundles, just take a look at what’s there.

Keep you eyes peeled for more courses from me in the CIAOPS Academy.