Top learnings from Microsoft Ignite 2018–Day 1

Here’s what caught my attention on Day 1 of Ignite 2018:

1. Windows Virtual Desktop

Windows Virtual Desktop gives you a Windows 7 or 10 desktop on Azure – https://arstechnica.com/gadgets/2018/09/windows-virtual-desktop-gives-you-a-windows-7-or-10-desktop-on-azure/

https://azure.microsoft.com/en-us/services/virtual-desktop/#sign-up

“Access Windows Virtual Desktop for free if you’re a Microsoft 365 E3, E5, or F1 customer or a Windows E3 or E5 customer—you only need to setup or use an Azure free account to quickly deploy and manage your virtualization environment. Pay only for the virtual machines you use and take advantage of options such as Azure Reserved Virtual Machine Instances.”

2. File on demand for Mac

Try files on demand for Mac – https://support.office.com/en-us/article/try-files-on-demand-for-mac-529f6d53-e572-4922-a585-e7a318c135f0

3. Microsoft Learn

Microsoft Learn – https://docs.microsoft.com/en-us/learn/

4. OneDrive updates

Beginning later this year, automated transcription services will be natively available for video and audio files in OneDrive and SharePoint using the same AI technology available in Microsoft Stream. While viewing a video or listening to an audio file, a full transcript (improving both accessibility and search) will show directly.

and

Leverage intelligent search with the Microsoft Graph in OneDrive and SharePoint to find audio and video that contains specific words or phrases the same way you search across documents.

and

Use keywords found in transcribed audio and video can be used to kick off workflows in Microsoft Flow. For example, any content that contains a specific keyword can be copied to a marketing folder for that product.
<https://techcommunity.microsoft.com/t5/Microsoft-OneDrive-Blog/OneDrive-Announcements-at-Ignite-2018/ba-p/255201>

“We are pleased to announce that you’ll soon be able to sync folders from multiple Office 365 tenants on both PC and Mac.” – From <https://techcommunity.microsoft.com/t5/Microsoft-OneDrive-Blog/OneDrive-Announcements-at-Ignite-2018/ba-p/255201>

5. Staffhub to be retired

Microsoft Staffhub to be retired – https://support.office.com/en-us/article/microsoft-staffhub-to-be-retired-30ca17f3-5502-4bc9-bb0a-bed04bb362f0?ui=en-US&rs=en-AU&ad=AU

6. A mobile app for Microsoft Stream is coming

Beginning in October, employees can watch videos on the go with the Stream mobile app for iOS and Android, with support for offline viewing. From <https://www.microsoft.com/en-us/microsoft-365/blog/2018/09/24/10-new-ways-for-everyone-to-achieve-more-in-the-modern-workplace/>

7. Azure SMB files just gets better

A new era for Azure files – https://azure.microsoft.com/en-us/blog/a-new-era-for-azure-files-bigger-faster-better/

Today, we are pleased to announce the preview of Azure AD authentication for Azure Files SMB access. This feature allows the native preservation of Windows access control lists (ACLs) on Azure file shares. It also enables end users to access Azure file shares through an Azure AD Domain Services joined machine with Azure AD credentials.

Azure AD authentication for Azure SMB file access now in public preview – https://azure.microsoft.com/en-us/blog/azure-active-directory-integration-for-smb-access-now-in-public-preview/

8. New Azure exams

AZ-200 = Microsoft Azure Developer Core Solutions

AZ-201 = Microsoft Azure Developer Advanced Solutions

AZ-202 = Microsoft Azure Developer Certification Transition

9. New Office 365 (I suspect Microsoft 365) exam in March 2019

MS-100

MS-101

What will Day 2 bring?

Ignite 2017 sessions on YouTube

With Microsoft Ignite 2018 just around the corner I know there is always going to be a huge amount of content and no way that I can be across all of it immediately. Luckily, Microsoft has been recording these sessions and posting them up to YouTube for later review. This has allowed me to work through many sessions over the year to improve my knowledge.

image

Unfortunately, there is not a single directory of all the session recordings in YouTube, at least not that I know of, so I have created and maintained a list of these sessions as I worked through them. I’ve now made my list of the Ignite 2017 sessions available via my GitHub repository at:

https://github.com/directorcia/general/blob/master/ignite2017.txt

Simply find the session that you are interested in a hopefully I’ve managed to capture the link to the session on YouTube. If you know of any sessions that aren’t listed let me and I’ll add to my catalogue.

Personally, watching the pre-recorded sessions gives me some benefits I don’t get attending in person. Firstly, I generally watch the sessions at 1.5 speed which allows me to get through more sessions. I’m also able to have my own Office 365 or Azure tenant up in another window and be following along with what I see being presented. I also get the ability to pause the session and come back later as YouTube keeps track of my history. Also, as I watch session YouTube suggest more sessions like the one I’m watching, so discovery of new relevant sessions becomes much easier once you start getting into it.

I plan to do the same for the Ignite 2018 sessions when they become available but I’ll start doing that immediately and posting into a new file in the same repository. So keep an eye out for that one coming soon.

Even after 12 months, I haven’t been able to get through everything but I do have to say thanks to Microsoft for making all this content freely available for those that couldn’t attend.

Need to Know Podcast–Episode 189

This is our follow up episode with Marcus Dervine from Webvine speaking about Digital Transformation. We continue with the transformation pillars that Marcus has outlined in his as the road to successful adoption of technologies like Office 365. Of course Brenton joins me again to catch you up on all the cloud news. We’ve tried to keep the update as short as we can as we noticed that the episodes are getting longer. We’ll do a deeper dive into updates in the next episode as we wanted to make sure there was plenty of time for our guest.

Take a listen and let us know what you think –feedback@needtoknow.cloud

You can listen directly to this episode at:

https://ciaops.podbean.com/e/episode-189-marcus-dervin/

Subscribe via iTunes at:

https://itunes.apple.com/au/podcast/ciaops-need-to-know-podcasts/id406891445?mt=2

The podcast is also available on Stitcher at:

http://www.stitcher.com/podcast/ciaops/need-to-know-podcast?refid=stpr

Don’t forget to give the show a rating as well as send us any feedback or suggestions you may have for the show.

Resources

@marcusdervin

@contactbrenton

@directorcia

Marcus’s book – Digital Transformation, from the inside out (use coupon code CIAOPS for 20% off)

Webvine

Azure outage

New file template management

Mass delete notification

Passwordless Login

Windows 10 sandboxing

Windows 10 Quality updates

Using Azure Automation to schedule Office 365 mailbox forward checks

One of the many things I say is that you should not think of Office 365 or Microsoft 365 alone, you should think of incorporating services like Azure as well since they provide a huge amount of additional functionality as I have detailed here before:

Add Azure to Office 365 for more flexibility

As I have also pointed out, I believe you should deploy Azure immediately with Office 365

Deploy Office 365 and Azure together

because until you start using Azure it isn’t going to cost you anything since Azure billing is typically consumption based. That is, you are only billed for what you use.

Now, one of the ways that you can use Azure to take advantage of the automation abilities it has. This is really handy when you want to run repeated process. One such process that you should run regularly I believe is checking for mailbox forwards in Office 365 tenants. I have detailed how to do manually this using a PowerShell script here:

PowerShell script to check email forwards

So, thanks to Azure automation we can take the heart of this script and automate it to run regularly against our tenant and provide an email report on which mailboxes have forwards enabled. Thus, Azure Automation allows us to automate the execution of PowerShell scripts to make life easier.

To enable all this you are going to need to use an Azure account with a paid subscription. It doesn’t have to be the same tenant as the Office 365 one, it just has to be a tenant with a paid subscription because there are costs (very slight) to running Azure Automation.

image

Once you have logged into you Azure tenant locate the Azure Automation Accounts and select the Add button in the top left to create a new account to use.

image

Give the new Azure Automation Account a name, paid subscription, resource group and location. Then select Create.

image

Once created, you’ll see an overview of the new account as shown above.

image

From the menu on the left locate Modules and select it.

image

Because this is a new automation account it will only have the standard PowerShell modules included. We need to go and add the one for Office 365.

We can find the Office 365 PowerShell module by selecting the option to Browse gallery from the buttons across the top on the right.

image

Do a search for “online” and the first result should be MSOnline as you see above.

Select this module to add it.

image

You should now see more detail about the module displayed. Select the Import button at the to of the page to include that module in this new Automation Account.

image

In a few moments you should get a message letting you know the module has been imported successfully. Remember, you only need to do this once for any new Automation Account that you wish to run commands against Office 365.

image

Return to the list of items for the Automation Account and locate the option for Credentials and select it. It is a few below the Modules one you just selected.

image

Select Add a credential at the top of the page.

image

Now enter the user details for the user who is going to login to the Office 365 tenant when executing the script. This will typically be a global administrator that doesn’t have MFA enabled on the account. The credentials are stored securely in Azure and will be accessed with the name of the credential account you used (here m365B555418).

Generally, you will only need one set of credentials in your Automation Account but it is possible to have as many as you want for performing different tasks.

Select Create to complete this process.

image

From the Automation Account menu locate Runbooks and select it.

image

From the menu across the top select Add a runbook.

image

Select the option to Create a new runbook. Give the runbook a Name and select the type as PowerShell. Then select Create to establish the area for your code.

image

This should then take you to an editor where you can enter your code as shown above.

Rather then re-inventing the wheel you can use my code here:

https://github.com/directorcia/Azure/blob/master/runbook/scripts/O365.ps1

which you can just copy and paste in place.

image

With that done, your screen should look like the above.

A few things to note here. Ensure that you change the name in the first line of the code to match the name of the credential you created earlier because it is from here that the login details for the Office 365 tenant will be sourced. You will also need to change email addresses on the last line of the script to match your environment. Remember, if you don’t I’ll know who it is!

The code is pretty short and sweet. All it does is look for any account that has any sort of forward enabled and sends those details through. If no forwards are found you’ll also get a message indicating that.

Feel free to modify and improve the script as you see fit, this version is simply designed to demonstrate what is possible.

When you have finished editing your script, select Publish in the top left as shown. Remember to always do this anytime your code changes or is updated.

image

You’ll now be taken back to to the Runbook overview. Here, select the Start button in the menu to run the script immediately.

image

You will now be taken to the Job summary page as shown above. You can check on the progress of the job from the Job Status field as shown.

The job will first be queued and then run.

image

In a matter of moments the job should complete as you see above. If there are any errors or exceptions with your code then they will be visible in this summary page.

image

If everything went to plan, you should see an email like that shown above indicating the process has completed successfully.

image

Each job run is recorded in a log on the summary page as shown above. Clicking on that job will give you more details.

image

Now, we started this whole process with the aim of automating something so now we need to do this once we have confirmed our script is running as expected.

From the Runbook menu across the top select Schedule.

image

Complete your desired schedule for this process. Typically, it will be daily as shown above. When you have configured the desired options select Create and your job will now run on that schedule.

You can return to Azure Automation at any time to view and adjust your job but always remember to Publish your code if you make any changes.

Hopefully, I’ve shown you how straight forward it is to use Azure Automation with PowerShell scripting to target regular processes for you Office 365 tenants. There are many, many things you can automate thanks to PowerShell and Azure, so go forth and automate!

Need to Know Podcast–Episode 188

I’m joined in this episode by a regular guest on the podcast, Jeff Alexander from Microsoft, to speak about modern identity in the cloud. We focus on the role that Azure Active directory can play in your organisation and how it can be used to protect users identity. If you are looking to understand how to better manage user security using the cloud, then look no further. Before this however Brenton and I cover all the latest Microsoft Cloud news for you to ensure you are up to date with the latest.

Take a listen and let us know what you think –feedback@needtoknow.cloud

You can listen directly to this episode at:

https://ciaops.podbean.com/e/episode-188-jeff-alexander/

Subscribe via iTunes at:

https://itunes.apple.com/au/podcast/ciaops-need-to-know-podcasts/id406891445?mt=2

The podcast is also available on Stitcher at:

http://www.stitcher.com/podcast/ciaops/need-to-know-podcast?refid=stpr

Don’t forget to give the show a rating as well as send us any feedback or suggestions you may have for the show.

Resources

@jeffa36

@contactbrenton

@directorcia

How Azure AD is run

Guides for consuming Azure AD workloads

Gartner magic quadrant

Piviledged Accounts

Enable subscription management in your tenant

Password spray attacks

Password Guidance

Security best practices

Azure AD Conditional access

Azure AD identity protection

Microsoft has new plan for managing Windows 10 devices

Office 365 anti spoofing

Not Petya cyberattack

OneDrive camera upload for OneDrive for Business on iOS

Microsoft Teams Australian data residency announced

Microsoft underwater data centers

Azure DNS 100% availability

Microsoft Ignite sessions

CIAOPS Need to Know Azure Webinar–August 2018

pexels-photo-325229

This month I’m going to take a closer look at one of the automation options in Azure, JSON templates. I’ll show you what they are, how they are created, what the parameter and how to use them in your deployments.

August Azure Webinar Registrations

The details are:

CIAOPS Need to Know Azure Webinar – August 2018
Wednesday 29th of August 2018
2pm – 3pm Sydney Time

All sessions are recorded and posted to the CIAOPS Academy.

There of course will also be open Q and A so make sure you bring your questions for me and I’ll do my best to answer them.

The CIAOPS Need to Know Webinars are free to attend but if you want to receive the recording of the session you need to sign up as a CIAOPS patron which you can do here:

http://www.ciaopspatron.com

or purchase them individually at:

http://www.ciaopsacademy.com/

Also feel free at any stage to email me directly via director@ciaops.com with your webinar topic suggestions.

I’d also appreciate you sharing information about this webinar with anyone you feel may benefit from the session.

Need to Know podcast–Episode 186

We’ll keep it simple for this episode and just give you a run through of the latest from Office 365 and Azure with Brenton and myself. A shorter episode for a change. Let us know what you think.

Take a listen and let us know what you think –feedback@needtoknow.cloud

You can listen directly to this episode at:

https://ciaops.podbean.com/e/episode-186-news-from-the-cloud/

Subscribe via iTunes at:

https://itunes.apple.com/au/podcast/ciaops-need-to-know-podcasts/id406891445?mt=2

The podcast is also available on Stitcher at:

http://www.stitcher.com/podcast/ciaops/need-to-know-podcast?refid=stpr

Don’t forget to give the show a rating as well as send us any feedback or suggestions you may have for the show.

Resources

@contactbrenton

@directorcia

Four new ways Microsoft takes the work out of teamwork

How to use Cortana commitments

Roko’s Basilisk

Free Microsoft Teams

OneDrive updates – July

OneDrive updates – June

Microsoft Whiteboard App

Microsoft Inspire

Microsoft Financial results

CIAOPS Office 365 Security course