So I’ve been kind of Intune focused lately, mostly because I’m just really enjoying the technology. I also see that a lot of MSPs are still struggling with deploying a default autopilot configuration and are kind of avoiding it with the worries that you make a total mess of things. 🙂 To help, this time…
This script is based on some earlier work I’ve done for uploading general applications to Intune tenants, but I’ve transformed this into a module to allow a easy synchronization between your RMM system and M365. There’s some prework that’ll need to be performed for each supported RMM system. Check out the Github page for the…
So this is a bit of a weird one, and more of an experimental idea than something I actually use in production. A friend of mine is using my PSexec monitoring script. He just has a couple of issue with that; he’s running an application that actively uses psexec to create some elevation. That’s quite…
Application consent for M365 is a pretty cool feature – users can’t add their own applications but they are able to request an administrator to approve applications they need. That means the risk of OAuth applications gaining access to mailboxes is a lot lower. We’re going to cover two things; number one is to setup…
Microsoft has introduced web sign-in some months ago as an alternative way to log into Windows. Web Sign-in allows you to sign in using your M365 credentials and multifactor authentication token, or using a Azure AD Temporary Access Pass. Web-Sign in is pretty cool as users get presented with a modern authentication pop-up dialog when…
Microsoft has decided to move the old service communication API to Graph endpoints, which is pretty handy for us as Microsoft partners because it makes it a little bit easier to retrieve these issues programmatically, and be aware of them before the client gives us a call at times. The new API has 3 different…
I haven’t really been blogging the last week, that’s mostly because I’ve been focused on the CyberDrainCTF, which is going amazing. I am so happy with another successful event. Today, to catch up I figured I’d cover a request I saw in MSPGeek. One of the users there wanted to centrally change the branding of…
We’ve had the ExchangeOnlineManagement PowerShell module for some time now. This module is the faster and better method of managing Exchange Online via PowerShell – It just has some downsides right now for most Microsoft Partners. The PowerShell module does not support the Secure Application Model, a security model that all Microsoft partners have had…
Sometime back I made a youtube video about how to use Azure App Proxy. This was received really good in a lot of the communities I frequent but a worry popped up by someone recently; how am I sure that the Azure Application Proxy is always completely functional at my clients? You can monitor the…
Lots of cool announcements this week. Of course CyberDrain CTF is open for registration, but Microsoft also officially announced Windows 11. They’ve immediately released a tool which fell flat with a lot of engineers because intune managed devices cannot be checked for compatibility. So I’ve decided to create a quick script with all the content…
One of the biggest challenges we’ve faced when moving over our client base towards a cloud-only infrastructure has been the development of Teams. Teams is amazing tool on it’s own but there is a risk regarding governance and training, but also explosive growth of teams and the way these are implemented. Especially because Teams makes…
I’ve always liked predictive monitoring as it allows you to be as proactive as you can be – making small analysis on stuff like disk space can make a huge difference in how you respond to incidents but I rarely see this integrated into RMM systems – Often there are some reports on which you…
This is a bit of a sidetrack from my usual stuff – I normally focus on the larger and more procedural issues because I always believe that everyone does offboarding/onboarding in a different way, some people create shared mailboxes, others leave the license intact, or something else entirely. But one of my readers asked “Is…
I’ve been trying to explore how Microsoft generates MFA pushes for some time now. I wanted to offer the same functionality for tools I am building. One of them being a AAD RADIUS replacement tool that’s almost done for public use, the other is a method of verifying the identity of a specific user. Unfortunately…
Attackers these days are using more and more sneaky techniques to stay inside of your M365 tenant after a breach, oAuth phishing is picking up on popularity real fast and we’re seeing that with these attackers they’re no longer just targeting users, but also focus on administrators. Of course, for the user portion you can…