XOORG, Edge and Exchange 2010 Hybrid

So you have found yourself in the position of moving to Exchange Online from a legacy version of Exchange Server, namely Exchange 2010. You are planning to move everyone, or mostly everyone to Exchange Online and directory synchronization plays a major part (can it play a minor part?) in your plans. So you have made… Continue reading XOORG, Edge and Exchange 2010 Hybrid

Cloud Admins, AADConnect and Privilege Increase Issues

Microsoft recommends that you stay on top of version updates to AADConnect. In version 1.1.553.0, which became available in June 2017, there is a reference to a gain in admin privileges that could be possible with password writeback (part of Azure AD Premium and EMS licences) that hints at a security issue. The following is… Continue reading Cloud Admins, AADConnect and Privilege Increase Issues

Malware Filter Policy Updates in Office 365

In March I wrote a blog post that showed how to take the attachment filter list from Edge Server and add those attachment block types to EOP, as EOP had a very small list of attachments. Today on one of my client tenants I noticed this precanned list of attachment extension types is now at… Continue reading Malware Filter Policy Updates in Office 365

Administrators, AADConnect and AdminSDHolder Issues (or why are some accounts having permission-issue)

[Scripts updated 5th October 2017 to support updates for Exchange Hybrid Writeback. If you ran earlier versions of these scripts you will need to run them again] AdminSDHolder is something I come across a lot, but find a lot of admins are unaware of it. In brief it is any user that is a member… Continue reading Administrators, AADConnect and AdminSDHolder Issues (or why are some accounts having permission-issue)

Bypassing Focused Inbox and Clutter Folders

For the last few years Exchange Online mailboxes have been processed by a service call Clutter, which moved the less important emails, or indeed the clutter, to a dedicated folder. This is now in the processes of being replaced by the Focused Inbox, which is client version dependant and is all based on views on… Continue reading Bypassing Focused Inbox and Clutter Folders

Exchange Edge Server and Common Attachment Blocking In Exchange Online Protection

Both Exchange Server Edge role and Exchange Online Protection have an attachment filtering policy. The default in Edge Server is quite long, and the default in EOP is quite short. There is also a few values that are common to both. So, how do you merge the lists so that your Edge Server attachment filtering… Continue reading Exchange Edge Server and Common Attachment Blocking In Exchange Online Protection

Azure Information Protection General Troubleshooting

Azure Information Protection (AIP) is the new name, and new features for Azure Rights Management. Azure Information Protection allows a company to create a series of labels to apply to documents and to have those documents tags and labelled. For example a watermark or header is easy to set in the Azure Information Protection management… Continue reading Azure Information Protection General Troubleshooting

Azure MFA 503 Error When Authenticating

If you have installed version 7 of Azure MFA Server on-premises (7.0.0.9 or 7.0.2.1 at the time of writing) and have enabled IIS authentication with Forms Based authentication and the Native App, but when you need to authenticate you are presented with a 503 DLL error. The reason for this is that version 7 removed… Continue reading Azure MFA 503 Error When Authenticating

Skype for Business Meetings Don’t Come With a Telephone Number

Yes, that is correct if you are using Skype for Business Online. When you create a meeting request in Outlook you just get the “Join Skype Meeting” message. This is because dial-in meetings are an add on to Skype for Business Online and the PSTN Conferencing feature is needed. As long as you are an… Continue reading Skype for Business Meetings Don’t Come With a Telephone Number

Creating a Phone System In Office 365 in Ten Minutes

I have been invited into the Skype for Business Cloud PSTN preview in the UK and so I though I would jot down a few comments on how easy it was to configure and get a working telephone line and full PBX without doing more than a few clicks of the mouse in Office 365… Continue reading Creating a Phone System In Office 365 in Ten Minutes

Get-SpoofMailReport in EOP

Using Office 365 or EOP to protect your email and worried about spoofed emails? Then try this cmdlet in Remote PowerShell for EOP: PS C:\Users\brian.reid> Get-SpoofMailReport Date                Event Type Direction Domain Action       Spoofed Sender              True Sender     Sender IP—-                ———- ——— —— ——       ————–              ———–     ———14/04/2016 00:00:00 SpoofMail  Inbound          GoodMail     no-reply@domain.com         mandrillapp.com 198.2.186.0/2418/04/2016 00:00:00 SpoofMail  Inbound         … Continue reading Get-SpoofMailReport in EOP

Renewing Apple APN for Office 365 Mobile Device Management

Office 365 MDM (Mobile Device Management) allows you to manage iOS based Apple devices. Once you have had Office 365 Mobile Device Management is use for a year, the Apple APN certificate that you would have created a year ago for this purpose will expire. If you did not add this renewal date to your… Continue reading Renewing Apple APN for Office 365 Mobile Device Management

Upgrading Azure Multi-Factor Authentication Server

A new version of Azure MFA Server was released at the end of March 2016, version 7.0.0.9. This provides an in place upgrade to the previous version 6.3.1.1. This version is based on .NET 4.5 and not .NET 2.0, which is the big change in the product, along with new end user functionality in the… Continue reading Upgrading Azure Multi-Factor Authentication Server