Azure – You can now move a recovery vault to another resource group or another subscription

You can now move an Azure Recovery Service (ASR) Vault to either a new resource group within the current subscription or to a new subscription. While doing that, you need to know: During vault move across resource groups, both the source and target resource groups are locked preventing the write and delete operations Only admin subscription has the permissions to move a vault The target subscription must reside in the…

Read More

Azure – The Azure Information Protection Unified Labeling feature has reached the general availability

As announced last year (https://techcommunity.microsoft.com/t5/Enterprise-Mobility-Security/Announcing-availability-of-information-protection-capabilities/ba-p/261967), the Azure Information Protection (AIP) Unified Labeling client is now generally available. This client uses the Office 365 Security and Compliance labels and policies, providing you with new protection features like custom sensitive information type or complex condition. In the future, all new features will be developed and integrated only on the AIP Unified Client. If you are only starting using AIP, this is your…

Read More

SharePoint Online – The new experience administration portal is becoming the default admin portal for SharePoint Online

As you may be aware a new SharePoint Online (SPO) administration portal has been on preview for quite some time now. This new administration portal experience for SPO is now going to become the default administration portal for SharePoint Online. You will still have the ability (for some time??) to switch back to the previous (and well known) administration portal by using the Classic SharePoint admin experience link available in…

Read More

Office 365 / Azure AD – New administration roles available

As Office 365 and Azure AD are evolving, the need for more granular administration role is more and more important. 2 new administration roles have been introduced to reduce the need for more elevated privileges: Information Protection Administrator: to grant all Azure Information Protection (AIP) administration aspects without granting global administrator permission. This covers Azure Information Protection configuration settings, read and configure Azure Service Health (as AIP can now provides…

Read More

Exchange – New capabilities in for HCW Hybrid Agent

As you may be aware, the Exchange Hybrid Configuration Wizard (HCW) is evolving and is currently proposing an ‘Hybrid Agent’ mode in preview (see https://t.co/lRmjI6r6Dv). Well, the Hybrid Agent preview has been updated and is now providing more capability: Multi agent support: you can now deploy more than one Hybrid Agent in your environment Manual download: you can now manually download the Hybrid Agent without running the HCW Agent status:…

Read More

Exchange – The April Security Update (KB4487563) for Exchange 2019 fails to install

It is this time again, the monthly patch release from Microsoft. This month a security update for Exchange 2019, 2016 and 2013. Problem is the patch (may) failed to install on Exchange 2019 (don’t know for 2016 and 2013 as I don’t have these version anymore), leaving Exchange in a bad shape as the services won’t start anymore. As you should (not to say must) install these updates using an…

Read More

Azure – Group targeting for Azure Update Management is in GA

Group targeting for Azure Update management is now in general availability. This feature allows you to define how updates are being deployed on your virtual machine based on dynamic settings. This will simplify the patch management process by automatically deploying update when the criteria is meet. To start using this capability, you first need to define a dynamic group of computer (to automatically add as member any VM matching your…

Read More

Office 365 – A new service is coming in Office 365: Kaizala

You may already have heard about Kaizala (https://products.office.com/en/business/microsoft-kaizala), a simple chat solution for work – allowing communication between people inside and outside of your organization directory using mobile phone and phone number-based identity. This has been first released to selected marker (mainly India). Now, it is becoming an integrated member of the Office 365 family (not yet there) and will be integrated with Microsoft Teams within the next 12 to…

Read More

Azure – Azure DevOps Server 2019 is now GA

After being announced earlier last September, Azure DevOps Server 2019 (formerly Team Foundation Server – TFS) is now available in general availability. Azure DevOps can be deployed on any Azure environment and includes Azure Repos, Azure Pipelines, Azure Test Plan and even integration with GitHub Enterprise. Azure DevOps Server is available in Express edition for an team of developers from 1 to 5 at no cost. You can download Azure…

Read More

Security – Microsoft Graph Security PowerShell module is now available

If you work with Azure and/or Office 365, you may already have heard about Microsoft Graph and Microsoft Graph Security. Well, good new a PowerShell module for Microsoft Graph Security is now available https://www.powershellgallery.com/packages/MicrosoftGraphSecurity/1.0.0 As always with PowerShell modules available from the PowerShell gallery, you can install it using the command from a elevated PowerShell prompt Install-Module -Name MicrosoftGraphSecurity You can also access the GitHub https://github.com/microsoftgraph/security-api-solutions

Read More

Azure – Azure Front Door is now GA and WAF for AFD in preview

Azure Front Door Service (AFD), the new Azure capability providing fast and secure entry points to your web applications hosted on Azure, which was in preview for about a year, is now generally available. AFD includes SSL offloading, URL redirect and rewrite, HTTP/2, IPv6 or session affinity. You can start using/evaluating it thanks to this sample guide https://docs.microsoft.com/en-us/azure/frontdoor/   In addition of AFD going GA, you can also start evaluating…

Read More

Teams – You can now manage Teams Apps

It has been announced some time ago already but it is taking more time to get it. In the Teams administration portal (https://admin.teams.microsoft.com) you now have the ability to manage the Teams app and control how applications are displayed (and available) to your users. Logon to your Teams administration portal and reach out to the Teams apps\Setup policies blade You will then see 2 default policies: FirstLineWorker (which applies to…

Read More

Azure AD – Azure AD Password Protection is now GA

You may already know that for quite some time there has been a new Azure security feature in preview called Azure AD Password Protection to help protect you against password based attacks and restrict the usage of bad/too well known password (see https://t.co/PnWZiWbWic) Well, the feature is now generally available. If you have been using it during the preview to also protect your on-premises AD you have to ensure you…

Read More

Azure – Classic alerts and APIs for Azure Monitor being retired

On June 30th, 2019, the classic alerts and related APIs for Azure Monitor will be retired. If you are using this Azure classic capability, you will need to migrate it. Luckily, a migration tool has been provided by Microsoft to let you do the migration – or if you are confident and don’t want to it by yourself, let Microsoft do the migration job in July (meaning this will occurs…

Read More

Intune – Issue with the “Rename Device” preview setting

As announced earlier this month (https://t.co/l7JVfqcLQs), a new setting has been introduced in preview to allow renaming Windows 10 device enrolled in Intune. As this is a preview feature, there is always chance to have unexpected behaviour; one has been found. It appears that if your Windows 10 device is also AD domain joined (including Hybrid Azure AD), then the rename device flow might not complete successfully. After the rename…

Read More