Posts

Get All AIP encrypted files - SharePoint Online

Ravikaran Patel -
One of the recent project merger and acquisition.  Technology - M365 tenant to Tenant migration Areas of consolidation 1. Mailboxes  2. SharePoint online data 3. OneDrive for Business data 4. Teams data migration 5. Security and Compliance Migration  Area of concern from security and compliance side was the encrypted files within EXO, SPO, Teams, ODB. Issue with encrypted data migration - end users will not be able to access the documents once the Source tenant is decommissioned.   Solution available -  Ask end users to unencrypt the data before migration  Alternet Solution - 1. Decrypt the files, mails using eDiscovery - This will give us output in PST format will is available for offline access, but the data in source will still be encrypted.  Decryption in eDiscovery - Microsoft Purview (compliance) | Microsoft Docs   2. Use Get-AIPfileLabel and Get-AIPFileLabel but in order to use this you must be aware of all the files paths.  Challenges -  1. We do not want end user intervention
5 comments
Read more

Restrict native app email configuration for office 365

Ravikaran Patel -
I came across a question from client while doing poc for Ems that how can we restrict users form configuring their office 365 account on native email app on mobile device.. As Intune MAM policies are applicable only on outlook app.. After searching a lot I found a relevant solution... This article will help us to restrict mailbox configuration on email client on mobile device.. However will allow only on outlook application... https://technet.microsoft.com/en-us/library/mt465747(v=exchg.150).aspx
1 comment
Read more

Enforce MFA using CSV

Ravikaran Patel -
Step 1. Connect-MsolService Step 2. Run the following commands. $auth = New-Object -TypeName Microsoft.Online.Administration.StrongAuthenticationRequirement $auth.RelyingParty = "*" Step 3. Choose the MFA State. You can choose between "Enabled" and "Enforced" $auth.State = "Enabled" Step 4: Choose the date . Any devices issued for a user before this date would require MFA setup. Normally, we would select the date of running the command. $auth.RememberDevicesNotIssuedBefore = (Get-Date) Step 5. Activate MFA. For one user Set-MsolUser -UserPrincipalName <UserPrincipalName> -StrongAuthenticationRequirements $auth Using CSV- Create a CSV with column UserPrincipalName and place users under this column. Import-Csv C:\RAhul\userMFA.csv | Get-MsolUser | Foreach{ Set-MsolUser -UserPrincipalName $_.UserPrincipalName -StrongAuthenticationRequirements $auth}
2 comments
Read more

Add members to office 365 Security Group Using PowerShell and CSV

Ravikaran Patel -
Step 1. Create a CSV file with a column “UserPrincipalName” and add all users under it who are to be added as a member of the group. Note – Sign In address need to be added under the userPrincipleName. Step 2.  Run The below command. $sub = Import-Csv C:\RAhul\sspruser.com.csv   csv   {enter the Path of same/Step1 CSV that was created by you with users details} $sub | Foreach {Get-Msoluser -UserPrincipalName $_.Userprincipalname | select Objectid } | Export-csv C:\RAhul\sspruser.com.csv This will convert the user’s identity to their unique guid details, and export it to the same CSV file. Step 3. Collect the guid ID of the security group. The below command will help with the object ID of the Group. Get-MsolGroup -all | where-object { $_.DisplayName -eq "SSPRSecurityGroupUsers"} | FL I have my object ID as below. ObjectId                  : XXXXXX-XXXX-XXXX-XXXX-XXXXXXXXXX Step 4. Run the below command to Add members in the CS
1 comment
Read more

Configure office 365 Mailbox on Outlook

Ravikaran Patel -
Image
How to configure your office 365 Mailbox to Mail client. There are few per-requisites.  You should have your autodiscover records set up properly for your domain. i.e Autodiscover.domain.com should point to Autodiscover.outlook.com Your OS should be updated Your mail client should be updated with latest SP and other updates  Automated Process. Go to control Panel > Mail setup new profile  under the New Popup enter your details Name Email Address Your Credentials Hit Next, this is automatically search for the necessary settings and then configure the profile. Manual Process Go to control Panel > Mail setup new profile  utnder the New Popup Select Manual setup. And Next    Select Microsoft Exchange server and then Next   Enter the server Name - "outlook.office365.com" Enter your email address And click on more settings   Under New Pop up go to "security" tab Under Logon network security  : select - &qu
Post a Comment
Read more