Brian Reid – Microsoft 365 Subject Matter Expert

Brian Reid – Microsoft MVP and Microsoft Certified Master

  • Installing and Updating Microsoft AntiMalware in Azure

    The Microsoft AntiMalware agent is a virtual machine extension in Azure that adds support for build in antimalware management within your virtual machines hosted in Azure. The agent can be added easily when you are creating a new VM, which we will show first below using the resource manager model, but also can be added…

  • Capax Zantas EAS EWS 501 Errors

    Whilst load balancing Exchange 2013 with a Capax Zantas EAS deployment in place I was reminded of an issue I experienced a few years ago with a Kemp load balancer. The EAS app for OWA was failing with various errors such as: Communication with service failed. The service might be down or misconfigured. Error code:…

  • Photos, Exchange, And The File System

    On an Exchange 2013 and later server this is a folder called photos that gets created after installation and can contain a couple of user photos for some of your users. How does it get there and what does it contain? The photos folder appears (on 2016 anyway) when the user uploads a photo (via…

  • Azure MFA 503 Error When Authenticating

    If you have installed version 7 of Azure MFA Server on-premises (7.0.0.9 or 7.0.2.1 at the time of writing) and have enabled IIS authentication with Forms Based authentication and the Native App, but when you need to authenticate you are presented with a 503 DLL error. The reason for this is that version 7 removed…

  • OU Filtering in AADConnect–What They Grey Boxes Mean

    So I had the chance to check this today. If you do OU filtering in the DirSync tools you will get an OU structure with various grey boxes in it. Here is an example: It appears that both and are options in the sync tool. You get the first (grey with a tick ) if…

  • Skype for Business Meetings Don’t Come With a Telephone Number

    Yes, that is correct if you are using Skype for Business Online. When you create a meeting request in Outlook you just get the “Join Skype Meeting” message. This is because dial-in meetings are an add on to Skype for Business Online and the PSTN Conferencing feature is needed. As long as you are an…

  • Creating a Phone System In Office 365 in Ten Minutes

    I have been invited into the Skype for Business Cloud PSTN preview in the UK and so I though I would jot down a few comments on how easy it was to configure and get a working telephone line and full PBX without doing more than a few clicks of the mouse in Office 365…

  • Remote Desktop And Login With AzureAD Account

    If you join a Windows 10 PC to Azure AD and then try and login to that PC over remote desktop you are in for a barrel of laughs! Or not! The way to get it to work is as follows: Ensure that Windows 10 PC is running Version 1511 or later (type WinVer from…

  • Get-SpoofMailReport in EOP

    Using Office 365 or EOP to protect your email and worried about spoofed emails? Then try this cmdlet in Remote PowerShell for EOP: PS C:\Users\brian.reid> Get-SpoofMailReport Date                Event Type Direction Domain Action       Spoofed Sender              True Sender     Sender IP—-                ———- ——— —— ——       ————–              ———–     ———14/04/2016 00:00:00 SpoofMail  Inbound          GoodMail     no-reply@domain.com         mandrillapp.com 198.2.186.0/2418/04/2016 00:00:00 SpoofMail  Inbound         …

  • Renewing Apple APN for Office 365 Mobile Device Management

    Office 365 MDM (Mobile Device Management) allows you to manage iOS based Apple devices. Once you have had Office 365 Mobile Device Management is use for a year, the Apple APN certificate that you would have created a year ago for this purpose will expire. If you did not add this renewal date to your…

  • Upgrading Azure Multi-Factor Authentication Server

    A new version of Azure MFA Server was released at the end of March 2016, version 7.0.0.9. This provides an in place upgrade to the previous version 6.3.1.1. This version is based on .NET 4.5 and not .NET 2.0, which is the big change in the product, along with new end user functionality in the…

  • Installing Azure Multi-Factor Authentication and ADFS

    I have a requirement to ensure that Office 365 users external to the network of one of my clients need a second factor of authentication when accessing Office 365 resources from outside the corporate network. The free Multi-Factor Authentication (MFA) feature of Office 365 will not distinguish between network location so we need to enable…

  • ADFS Adapter Issues With Upgrading MFA 6.3.1 to Version 7

    Upgrading the ADFS Adapter is not straight forward, though the readme notes for the upgrade make no mention of issues! To upgrade MFA Server 6.3.1 to 7 (so you can remove .NET 2 as a requirement, as that goes out of support soon) then you need to download the MFA installer to each MFA server…

  • Configuring ExpressRoute With NRP Errors

    I had a scenario where when I ran Get-AzureRmExpressRouteServiceProvider in a new Azure tenant I would get the following error in PowerShell. Get-AzureRmExpressRouteServiceProvider : Subscription a4ca03ea-42e4-4a18-a50f-79bcc53907e4 is not registered with NRP.At line:1 char:1+ Get-AzureRmExpressRouteServiceProvider+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~    + CategoryInfo          : CloseError: (:) [Get-AzureRmExpressRouteServiceProvider], CloudException    + FullyQualifiedErrorId : Microsoft.Azure.Commands.Network.GetAzureExpressRouteServiceProviderCommand This is one of the required cmdlets in configuring…

  • Exchange Online Archive–Counting Archives

    If you are using Exchange Online Archive and what to get a count of the number of users with an archive, or a list of the users with an archive, then the following PowerShell scripts will give you this info: List all users with an Exchange Online Archive: Get-MailUser -ResultSize Unlimited | where {$_.ArchiveName -ilike…

  • ADFS Service Login Failures and a Simple Fix

    If you find on restarting your ADFS server that you get the following event IDs in System event log, 7038, 7034 and 7000 that read as the following: The adfssrv service was unable to log on as DOMAIN\adfssvc$ with the currently configured password due to the following error: The user name or password is incorrect.…

  • Bulk Enabling PSTN Conferencing

    Once you have trialled and configured PSTN Conferencing with a few users you may roll it out much wider. This blog post contains the steps to do that using PowerShell so you can licence and enable your users for Skype for Business Online PSTN Conferencing very quickly. Generate a User List Create in Excel a…

  • Skype for Business Online PSTN Conferencing and Office 365 Business Subscriptions

    At the time of writing, it is not possible to add a PSTN Conferencing licence to Office 365 Business subscriptions – or at least that is what the portal shows: Here you can see that PSTN Conferencing is not an available add-on. But it is possible to add these licences if you know the URL…

  • Checking for Login Issues with AD FS and Office 365

    This post will look at how you can view login errors in AD FS, trace them back to the Event Viewer on your AD FS server(s) and then help the user login correctly. Unlike earlier versions of ADFS it is not required to enabled config files and registry keys to turn on additional logging. All…

  • Unable To Remove Office 365 Domain Error

    If you need to remove a domain from Office 365 it needs to not be in use. This includes the services that use that domain, for example an Accepted Domain in Exchange Online. If though you have an expired, maybe test, Office 365 tenant and you want to remove a domain from it you may…

  • Installing Office 365 ProPlus Click To Run Via Group Policy

    Note: Article updated October 2018 to remove references to “Office 2016” and replace it with “Office 365 ProPlus” as the rollover to the 2019 release is seamless and does not change this products name. Note: Article updated April 2018 Mid 2020 to support the new Channel names and XML updates and the new name for…