Browsed by
Category: Powershell

Thank you for Application Guard for Office apps.

Thank you for Application Guard for Office apps.

In this blog, I will show you, how to start testing with Application Guard for Office apps. To make sure Malware can’t get their foot in the door, you have to protect your endpoint. Hardening your Office apps is the first step. Some time ago Microsoft created the possibility to isolate your Office app documents you open from an untrusted location… First you have to meet the minimum software and license requirements Windows 10 Enterprise edition, Client Build version 2004…

Read More Read More

The Fellowship Of Group Labeling

The Fellowship Of Group Labeling

Labelling your data with sensitivity labels is the way to go. Confidential data within your organization needs to be labelled with a proper sensitivity label. You can do this manually or automatically. But there is more, labelling your teams/Microsoft 365 groups itself is the next best thing. There are 3 options you can define, when setting up your Sensivity group labels. Setting your team privacy Allowing external users Non-compliant settings: You shall not pass(block access), full access and limited access)…

Read More Read More

Basic Authentication and the Last Crusade

Basic Authentication and the Last Crusade

In this blog I’ll show you a new option to disable basic authentication protocols. Like most of you probably know, Microsoft is going to disable basic authentication for ActiveSync, PowerShell, Exchange Web Service, POP3 and IMAP4. You should especially disable POP3 and IMAP basic authentication as soon as possible. Of course, implementing conditional access rules is the way to go. Read my other blog to learn how to automate your conditional access deployment. When not having the proper licensing for…

Read More Read More

Sherlock Holmes: A Game of Powershell

Sherlock Holmes: A Game of Powershell

My second blog in just one day, but sometimes you get scared as hell! Today at 13:00 AppLocker suddenly began blocking the famous psscriptpolicytest files on all our 2019 Remote desktop servers. That’s very weird behaviour. Why on earth is this happening at the same time on all our 2019 servers?  You almost feel like you need to prevent the collapse of the western civilization… no pressure. We are using Solarwinds as part of our SIEM (more on this subject…

Read More Read More

Along came MCAS Automation

Along came MCAS Automation

MCAS, I’m not going to explain why you need it. There’s plenty of other folks who do a perfectly good job of explaining exactly why it’s such a great tool. This blogpost will contain all the information you need to automate the MCAS deployment. Tips and tricks are included at the end of this blog. How to best explain how MCAS works?  Microsoft Cloud App Security is a Cloud Access Security Broker that supports various deployment modes including log collection,…

Read More Read More

The magnificent ASR Rules

The magnificent ASR Rules

Windows Defender is one of the key pillars within Microsoft’s security products. Windows defender is enabled out of the box when deploying Windows 10. But only relying on the basic configuration is not the best practice. As mentioned in my last blog, it’s very important to harden your Office apps. A good addition is “attack surface reduction” (ASR). ASR can be configured by setting the ASR rules in the device endpoint manager. By default, they’re not configured, so you’re not…

Read More Read More

How I Learned to Stop Worrying and Love Onedrive

How I Learned to Stop Worrying and Love Onedrive

In the past, there have been quite a few sync problems with OneDrive. Fortunately, this is a thing of the past now. In this article we’ll go deeper into why you should choose OneDrive as your Cloud storage solution and what to look out for when migrating to OneDrive. Why Onedrive? Onedrive is the ideal storage space for files.  Collaborating with files and it isOneDrive is the ideal platform for file storage, collaboration and accessing your files anywhere in the…

Read More Read More

Once upon a time in the automount of OneDrive team sites

Once upon a time in the automount of OneDrive team sites

In this blog, we’ll be talking about how to make sure your team site sync automatically to all your devices within a few minutes. Microsoft offers this option as well, only their solution might take up to 8 hours! Today I’ll show you how to speed up this process.  For anyone who wants to sync the team site libraries automatically, you can configure it in Intune.   Okay, not my cup of tea. I feel users should be able to decide which team sites are important for them. Also, It’s…

Read More Read More

Lock, Stock and Office 365 ATP Automation

Lock, Stock and Office 365 ATP Automation

Securing your email with Office 365 ATP is like putting a cage around your email. You might ask yourself: Why have we got that cage?  Security!  So, what’s included in Office 365 ATP Cage?  *Safe Attachments   Protects against unknown malware and viruses, and provides zero-day protection to safeguard your messaging system. All messages and attachments that don’t have a known virus/malware signature are routed to a special environment where ATP uses a variety of machine learning and analysis techniques to detect malicious intent. If no…

Read More Read More

Conditional Access “To Go”

Conditional Access “To Go”

Last week I published an overview of the best Conditional Access policies for the SMB. It can come in handy when deploying conditional access to your customers. Hopefully, you don’t make any mistakes when configuring the policies.  Like “oops” I just locked myself out of the Tenant. So why not creating a baseline, you can simply import in your tenant?  I have seen a lot of scripts that can do the same. You have to create an App in your…

Read More Read More