Recently, an unexpected problem popped up with some ConditionalAccess policies: it is not possible to enforce controls. Applications show up as ‘excluded’ from the targeted resources when ConditionalAccess policies are evaluated. This behaviour allows users to access resources without MFA or compliant devices. This is possible for Applications which use Entra ID as Idp or […]

This article is a continuation – i.e. Part 2 – of the article Recommendation – Microsoft 365 authorization concepts – Part 1. In this article, the following topics are now dealt with to complete the start for understanding an authorization concept: Configuration of Exchange online RBAC at Administrative Units level Configuration of automatic users, guests […]

In today’s digital landscape, businesses are increasingly grappling with the repercussions of cybercrime. Cyberattacks are escalating in frequency, and the resulting damage is growing at an unprecedented rate. Among the most significant vulnerabilities for organizations are their passwords, which serve as the entry point into an account and, consequently, represent the weakest link in their […]

Creating a standardized and consistent naming convention for IT infrastructures based on Microsoft 365 and Microsoft Azure is essential for efficient management. The following guidelines should be adhered to: General Principles: Consistency: Maintain consistency across all resources, ensuring a uniform and predictable structure. Readability: Names should be easy to read and understand, avoiding unnecessary abbreviations. […]

From time to time I get requests from customers for the following scenario: The customer basically has a hybrid infrastructure, must (or wants to) continue to operate Exchange on-premise. However, the customer wants to protect the Outlook Web App (OWA) of the on-premise messaging infrastructure with Multi Factor. On the one hand, this can be […]

Microsoft is becoming more and more a telephony provider. With the possibility of building a call centre with native tools (i.e. without 3rd party tools), Microsoft has taken another big step towards playing in the top 3 league of telephony solutions. Microsoft Teams has been offering the possibility to build call center solutions for some […]

This script helps to create dynamic Azure AD groups based on the PowerShell module Graph SDK. The idea is that organizations have different autopilot profiles. These can differ by region, language or other elements. In order to roll these out in the best possible way with little effort, it is recommended to work with dynamic […]

This script is for the following use case: An administrator needs to add multiple users from an organisation to an Azure AD group. This can be done in different ways. On the one hand in the Azure Admin Portal or via Powershell.   In my variant, I have created a script that can massively simplify […]

It’s almost time for the 5th edition of the Cloud8 Summit. As things stand, it seems that the COVID pandemic is largely over. At least until the autumn. However, we all hope that no major restrictions and case numbers are to be expected. One of the many advantages of the current situation is that there […]