As luck would have it, I had to get the newest version of the Microsoft Teams PowerShell module. It’s still a test module and not available in the main PSGallery. So, I had to poke around and figure out how to add it and get the version that supports Get-TeamChannelUser.… [ Continue reading ]
Category: Information
Finding mis-licensed shared users in Office 365
Just a quickie post this holiday week.
Many customers have had Exchange on-premises forever. Back in the olden days, we just had user mailboxes. Need a shared team mailbox? You get a user mailbox. Need a conference room mailbox? You get a user mailbox.… [ Continue reading ]
Decrypting Credentials Stored in Remote Desktop Connection Manager (RDCMan) .rdg
Today, while logging into a Windows Server via my favorite RDP tool (RDCMan), I was faced with the “Your password has expired” prompt. No worries, just enter my password and change it.
Except for the part where the password has been saved and I neglected to add it to my password manager.… [ Continue reading ]
Guest Post: Flow SharePoint button workaround for GCC customers
So, for a while, there has been a gap in the Office 365 Government Community Cloud (GCC) SharePoint environment when it comes to the integration of Flow in GCC vs how it looks in our commercial environments. … [ Continue reading ]
Apply Security & Compliance Center Retention Labels to Outlook Folders
I couldn’t really come up with a cool-sounding title for this post, so I just went with the basics of what it does.
Last week, I worked with a customer that wanted to deploy custom retention labels to custom folders inside a user’s mailbox–the idea being that they would create a custom folder structure such as this under a user’s Inbox:
\Inbox
\Inbox\Retention Schedule
\Inbox\Retention Schedule\2 Year (apply a 2-year retention label to everything in this folder)
\Inbox\Retention Schedule\4 Year (apply a 4-year retention label to everything in this folder)
\Inbox\Retention Schedule\7 Year (apply a 7-year retention label to everything in this folder)
\Inbox\Retention Schedule\Forever (apply a ‘Never delete’ retention label to everything in this folder)
Seems easy enough, right? … [ Continue reading ]
Exchange Online Protection (EOP) Best Practices and Recommendations
Yes. I said it.
Someone needed to put a line in the sand and today, that person is me. I’m going to say these are some best practices.
But of course, your mileage may vary, depending on your type of organization (users at a local bank or city government will have different threats presented to them than an engineering firm with international customers, for example). … [ Continue reading ]
Update to Get-UserHoldPolicies
This certainly seems to be a day for updates! Based on some additional feedback from my peers, I’ve updated the Get-UserHoldPolicies script to exclude legacy Exchange MRM policies by default. MRM policies, while they have RetentionPolicyTags, are technically either moving or deleting content, not preserving it.… [ Continue reading ]
Some of the many ways to Export Outlook Contacts
Just had this come up, so I thought I’d post it for whoever else needs to hear this. I can quickly think of three ways to do this: One using Outlook, one using PowerShell, and one using both.… [ Continue reading ]
Check commmon records for a domain
One of my peers this week was looking for a script to help check global DNS resolution for particular records for both replication and geo-loadbalancing testing.
The record types and data he was looking for:
- A
- CNAME
- MX
- TXT (for SPF)
- TXT (for DMARC)
This is what I came up with, so maybe it can help someone else.… [ Continue reading ]
Adopting OneDrive for Business
OneDrive for Business is, from my perspective, one of the most under-utilized but benefit-rich parts of the Office 365 platform, allowing organizations (especially organizations that subscribe to the E3 or higher SKU) virtually unlimited storage, versioning, and recovery capability for their file-based storage.… [ Continue reading ]
Guest Post: Azure AD Connect: Dollar sign character in device’s display name in Azure AD after renaming
As you may have figured out from the title, I’ve got a guest post today. Jorge Lopez is a Premier Field Engineer, and has spent a lot of time in the trenches with Windows, AD, and Azure AD, and currently works helping customers resolve hybrid identity issues. … [ Continue reading ]
Update to Get-UserHoldPolicies — Now includes DelayHoldApplied
This is just a quick update–if you’ve been using my Get-UserHoldPolicies script to check out the holds applied to your mailboxes, I’ve updated it to include the DelayHoldApplied property.
A Delay Hold is applied whenever a hold is removed from a mailbox (as in, the mailbox is excluded from an inherited policy or manually removed from an explicitly included policy), and stays in effect for 30 days. … [ Continue reading ]
Switch SharePoint Online Lists between Classic and Modern Experience
It’s been coming for a while.
Change is inevitable.
SharePoint Modern UI is here.
And, we’ve begun updating libraries and lists.
Per this link, https://techcommunity.microsoft.com/t5/SharePoint/Update-on-modern-list-tenant-opt-out-removal/td-p/469297, we changed the opt-out methods (from tenant-level to site-level). … [ Continue reading ]
Update to AAD Network Communications Test Tool
Right before sending a customer the link for the tool, I decided to test it and noticed that I encountered an unexpected credential prompt. I updated the parameter name, and then added a new feature as well–a test to see if your tenant has the correct licensing to enable Password writeback. … [ Continue reading ]
Update to the OneDrive for Business Admin Tool
Today, I pressed in a little bit on exploring CSOM–at least as it relates to the OneDrive for Business Admin tool.
One of my peers asked if there was a command that we could use to check to see if a site had been put on a retention hold. … [ Continue reading ]
Update to PwnCheck script
This afternoon, while working with a colleague, I was alerted to a customer that appears to have the same 6-character password set for every user, which honestly, I feel like violates the very notion of a password. … [ Continue reading ]
DLP for Bitcoin Addresses
One of the up-and-coming combination phish-ransom attacks is to trick the mark into thinking that you’ve got access to their data, and then get them to send money to a Bitcoin address to protect them from data leakage. … [ Continue reading ]
Update to the AAD Network Testing Tool
Hey, all! One AAD tool update deserves another!
Every so often, I check in to make sure I’m keeping the AAD Connect Network Test Tool as fresh as I can. I’ve made a few changes to the way it works (hopefully which you all think is for the better). … [ Continue reading ]
Update to Get-SCCDataExport
I’ve been tinkering around a little with this, hoping to bring some better updates (so maybe you can see who is generating your data exports and go smack them around).
I’ve got a few updated fields added to the tool, so be sure to go check it out!… [ Continue reading ]
WhoAmI for Office 365
If you’ve ever struggled to find out who your current session is logged in as when you connected to Office 365, here’s a tidbit to shed some light on it:
(Get-PSSession |?{$_.ComputerName -like “*outlook.com”})[0].RunSpace.ConnectionInfo.Credential.UserName
You can also use RunSpace.… [ Continue reading ]