Earlier this month I wrote an article about using filtering in assignments for apps, compliance policies and configuration profiles in Microsoft Endpoint Manager. And now Microsoft has made available a preview of “Filters for devices” for use in your Azure AD Conditional Access policies. Because this functionality is provided as a preview there is no…
Category: Security
A first look at expediting Windows 10 Quality Updates when using Windows Update for Business and Microsoft Endpoint Manager
During Microsoft Ignite, Microsoft announced the option to bypass pre-configured Windows Update for Business policies to immediately deploy a security update across your organization when emergencies arise as part of their Windows Update for Business deployment service. Today, Microsoft has made available a preview of possibility to expedite the installation security patches as part of…
Speaking about Modern Authentication at the May 2021 meetup of the Microsoft Cloud and Client Management Community #MC2MC
On Thursday May 27, Erik Loef and I will speak at the May virtual event of the Microsoft Cloud and Client Management Community. The Microsoft Cloud and Client Management Community is a Belgian community with the following members: Tim de Keukelaere, Wim Matthyssen, Tim Hermie, Ken Goossens, Jasper Bernaers, Peter de Tender, Peter Linders and…
Designing and configuring compliance policies for your Windows Modern Workplace using Microsoft Endpoint Manager
Measuring your managed systems against a baseline has been around for a while, in Microsoft Endpoint Configuration Manager(MECM)/ConfigMgr we can already use one or more Configuration Items combined in a Configuration Baseline to measure and remediate clients against an imported or self created baseline. You can measure for example if the Windows Firewall is enabled…
Configuring Windows Update for Business settings for your Microsoft Endpoint Manager managed Modern Workplace
Keeping Microsoft windows devices up-to-date has been a challenge I have been dealing with for a long time now. Within Microsoft Endpoint Configuration Manager/ConfigMgr getting grips on your updates was and is not an easy experience which you configure once and never have to touch again. If you in todays world are using Microsoft Endpoint…
Announcing #WPNinjasNL Tuesdays Webinar #22, Tuesday March 30, featuring Dirk-jan Mollema, security researcher at Fox-IT
For next week, Tuesday, March 30 we are proud to announce that Dirk-jan Mollema, one of the core researchers of Active Directory and Azure AD at Fox-IT will be hosting a session about: Azure, Conditional Access, Attackers and you – the present and future of attacks against the Microsoft Cloud. Session abstract: In a working-remote…
Have you already started your journey towards Passwordless authentication on your Modern Workplace?
One of the main Identity related topics during Microsoft Ignite March 2021 edition was passwordless. Microsoft announced at the event that passwordless authentication is now generally available, and Microsoft is now urging their customers to start their journey towards passwordless. As the name implies, going passwordless means that we will get rid of passwords for…
Enable external sender identification in Exchange Online
Microsoft has rolled out a new feature in Exchange Online called External Sender Identification. It allows for tags to be added to email messages coming from outside of your organization. So what will happen is that Outlook will display a new tag on emails called “External” in the message list. In some Outlook clients, the…
A first look at the Microsoft 365 Apps admin center
The Microsoft 365 Apps admin center, available via https://config.office.com provides a portal where admins can manage Microsoft 365 Apps for Enterprise. Microsoft 365 Apps for enterprise is a subscription that comes with premium apps like Word, Excel, PowerPoint, Outlook, Teams, Publisher, and Access (Publisher and Access are only available on PC). The apps can be…
Speaking at the Workplace Ninja User Group Switzerland 2103 virtual meetup on March 19, about Modern Authentication and Designing & Building MEM for Operations
On Friday, the 19th of March, I will speak at the 2103 virtual meetup of the Workplace Ninja User Group Switzerland. During this event which lasts a whole day I’m going to present two sessions. One, together with Erik Loef will be about: “What is this Modern Authentication everyone is talking about?” and the other…
My presentation about Conditional Access at the Workplace Ninja User Group Netherlands
Yesterday, on Thursday February 16, I presented at the 19th Workplace Ninja User Group Netherlands Tuesdays Webinar. My session, titled “Azure AD Conditional Access demystified” started at 16:00, and lasted around 75 minutes. This session, which I prepared based on the various articles I wrote about the subject is continuously updated to reflect my current…
February 2021 update of the Azure AD Conditional Access demystified whitepaper and workflow cheat sheet.
I’m proud to announce the February 2021 update of my Conditional Access demystified whitepaper. With this release, we have reached the third iteration of the whitepaper starting with the first one released in August 2019 after writing several blogposts on the subject. In May last year I released the second version containing a lot of…
First look at Access Reviews for guests in all Teams and Microsoft 365 Groups
In January, Microsoft announced that they released a public preview allowing entitled customers to create Azure AD access reviews for guest users across all Microsoft Teams and Microsoft 365 Groups in the organization. By implementing Access Reviews, an identity governance feature you can review members of groups, enterprise applications and roles within your Azure Active…
Updating your Security baselines in Microsoft Endpoint Manager to a newer version
With the 2101 Service Release of Microsoft Intune, released this week (February 1, 2021) Microsoft released a lot of new features (more on that in other blogposts). One of the important changes in this service release is the fact that the security baselines for Windows 10 and Microsoft Defender for Endpoint (formerly Microsoft Defender ATP)…
Speaking at the Nordic Virtual Summit 2021 about Conditional Access
On Wednesday 10 and Thursday 11 February, several communities (A joint venture by #SGUCSE #SCUGDK #SCUGFI #MMUGNO and #MSEndpointMgr) in the Nordics are organizing the Nordic Virtual Summit. The organizing team consists of well-known community leads: Jan Ketil Skanke, Nicolay Andersen, Jörgen Nilsson, Stefan Schörling, Ronni Pedersen, Panu Saukko, Sandy Zeng and Maurice Daly. You…