Configuration
Featured

Exchange Online Protection (EOP) Best Practices and Recommendations

Yes. I said it.

Someone needed to put a line in the sand and today, that person is me.  I’m going to say these are some best practices.

But of course, your mileage may vary, depending on your type of organization (users at a local bank or city government will have different threats presented to them than an engineering firm with international customers, for example). … [ Continue reading ]

Configuration
Featured

ATP: Safe Attachments, Safe Links, and Anti-Phishing Policies or “All the policies you can shake a stick at”


With the advent of scammers, spammers, phishers, and other types of baddies, and the complementary rise in anti-malware, anti-spam, domain and sender verification techniques, we’re in a perpetual cat-and-mouse game.  I’ve had several customers over the past few weeks ask me about best practices for configuring some of the Advanced Threat Protection (ATP) features.… [ Continue reading ]

Troubleshooting

Exchange Online Protection 550 5.4.1 Recipient address rejected: Access Denied. AS(201806281)

Today, I found myself working with a customer that was experiencing delivery failures to some Office 365 recipients from all external senders.

As problems go, this one definitely finds itself in the “interesting” category.  No, it’s never good to have “interesting” problems (just ask a doctor).… [ Continue reading ]

Information

AAD Connect Phone/Fax Mappings

Yesterday, while working with my colleague Michael Anderson, I needed to investigate where a particular on-premises value was being synced in AAD.  The result is this table:

AD Property Get-MsolUser Get-AzureADUser Get-User Get-CSOnlineUser
Friendly name ldapDisplayName
Telephone number telephoneNumber PhoneNumber TelephoneNumber Phone Phone
Pager pager Pager
Mobile mobile MobilePhone Fax MobilePhone
Fax facsimileTelephoneNumber Fax FacsimileTelephoneNumber Fax Fax
IP Phone ipPhone IPPhone
Home homePhone HomePhone HomePhone
{otherMobile} {AlternateMobilePhones}
{otherIpPhone}
{otherHomePhone} {OtherHomePhone}
{otherFacsimileTelphoneNumber} {OtherFax}
{otherPager}
{otherTelephone} {OtherTelephone} {OtherTelephone}

It’s important to note that values displayed in braces { } are multivalued attributes, so if there’s something stored in one on-premises that you need or want to map to a a different attribute in Azure AD, you’ll need to either map it to another multivalued attribute or extract the value so you can write it to a single-valued string attribute. … [ Continue reading ]

Configuration

Update to AAD Network Communications Test

This week, I’ve got a few updates for the AAD Network Communications Test!

  • I’ve moved it to the PowerShell Gallery.  You can now install it with PowerShellGet by using the command:
    Install-Script -Name AADConnect-CommunicationsTest
  • I’ve updated the GCC High and DOD endpoints to the best of my ability (I’m always looking for feedback on this, so if you have new endpoints, be sure to connect with me!)
[ Continue reading ]
Configuration

Configure Teams to Co-exist with Google G Suite

With the rise of stay-at-home orders due to COVID-19 over the past several weeks, I’ve engaged with many customers who want to use Microsoft Teams to as part of their work-from-home tool set.  Many of my customers have investments in both Microsoft Office 365 as well as Google G Suite or Google Apps (frequently with other third-party IdP, metadirectory, and federation services thrown in the mix), so it’s not always just as easy as “flipping a switch.”… [ Continue reading ]