In the last blog post, we enabled FIDO2 security key logins with Windows 10 on our AADJ Windows machines, but users are still able to login with username/password. What if we want to enforce a FIDO2 Security Key or Windows Hello for Business login?
As companies like Yubico announce the next generation of YubiKeys with biometrics, let’s take a look at what is actually possible today with Azure AD Joined Windows 10 devices. Microsoft pushes us closer and closer to passwordless login options, but without a domain and GPOs available, some of our clients are left wanting. In this series of blog posts, I am going to walk through the setup of a FIDO2 device in Azure AD and Windows 10, and later apply Intune policies to alter login options.
For our customers under 300 employees, Azure Active Directory Plan 1 is coming to M365 Business Premium.
Licensing for MFA, Conditional Access, and Risk-Based Conditional Access has been coming up in many of our conversations.
Previously when creating queries for dynamic membership rules in Azure AD, you would have to create the group, then provide the syntax, and then wait anywhere from 5-10 minutes while Azure AD evaluates the group members. When first starting out, this can add up to hours of timing waiting for results.
Scenario: Customer needs to receive email alerts from various alerting systems outside of their email system and go to multiple people that are not members of their company email system. The emails also do not need to be retained in a central location. Solution: There are several ways to set up a similar scenario, but […]
At the end of 2014, Microsoft released a cool new feature in Office 365 called Clutter.Clutter learns from your actions to determine the messages you are likely to ignore. As less important messages arrive, they are automatically moved to the Clutter folder. Clutter does this by leveraging Office Graph’s sophisticated machine learning techniques to determine […]
Apparently, I was enjoying my birthday too much to notice that Microsoft released the New Office Visio Stencils. This stencil contains more than 300 icons to help you create visual representations of Microsoft Office or Microsoft Office 365 deployments including Microsoft Exchange Server 2013, Microsoft Lync Server 2013, and Microsoft SharePoint Server 2013. Continue Reading
In Office 365, the default password policy requires users to change their password every 90 days. To some users this is a ridiculously short period of time, but to some administrators this is too long. You can work it out between your users and your security team what the right time period is for password […]
There is a nice new feature in Exchange 2010 with Outlook 2007/2010/2013, called automapping. Autodiscover automatically maps all mailboxes in Outlook to which a user has Full Access Permission. This can also cause issues. Continue Reading