A Graph API is available to extract details of the sensitivity labels assigned to SharePoint Online documents. This article explores how to extract the information from files in a document library and use it to create a report. The nice thing is that once you have the data, you can slice and dice it any way you wish in Excel, Power BI, or whatever tool you prefer.

The post How to Use the Extract Sensitivity Labels Graph API appeared first on Practical 365.

Implementing zero trust in the world is a big hassle, often uncomfortable, and frequently dorky—plus, it can be expensive. At the same time, moving closer to a zero trust model helps harden your network significantly, and you may already have many of the tools and techniques you need available without much extra cost. In this article, we discuss how to take baby steps toward Zero Trust.

The post Practical Protection: Baby Steps Towards Zero Trust  appeared first on Practical 365.

At the end of March 2023, CISA released a new tool called ‘Untitled Goose.’ It is a post-incident hunting tool to help security practitioners sift through security logs in the Microsoft Cloud. In this blog, we discuss the tool, its uses, and our opinion on it.

The post Using ‘Untitled Goose’ to Investigate Account Compromise in the Microsoft Cloud appeared first on Practical 365.

Unfortunately, Exchange mailbox databases don’t shrink, and the last thing you want is your server running out of disk space. In this blog, we explore how to monitor your Exchange mailbox database size and available new mailbox space through PowerShell.

The post Using PowerShell to Get Exchange Mailbox Database Size and Available New Mailbox Space appeared first on Practical 365.

In the show this week, Paul and Steve discuss a cyber attack reported against Azure AD Connect that inflicted a vast amount of damage to a business, Snapchat filters in Teams, two new changes to the Graph API and Microsoft Teams Rooms on Android, and more!

The post Azure AD Connect Cyber attacks, New AI features for industry, Fun Teams Features & more: Practical 365 Podcast S3 E25 appeared first on Practical 365.

Microsoft actively develops Azure AD external identities and doesn't do much with mail contacts. Maybe it's a good idea to migrate mail contacts to Azure AD guest accounts. This article explores what's involved in moving mail contacts over to Azure AD guest accounts using PowerShell.

The post Migrating Exchange Online Mail Contacts to Azure AD Guest Accounts appeared first on Practical 365.

In this edition of our series on the "Top 5 Best Practices for Exchange Online Domain Transfers," we delve deeper into the importance of validating your plan prior to implementation. Implementing a well-tested and practiced process will help prevent mistakes and encountering unknowns during the migration. Join us as we explore the key considerations for a successful validation phase.

The post Microsoft 365 Exchange Online Domain Transfers: Validation Phase Part I appeared first on Practical 365.

A writeup about the MERCURY attack by the Microsoft Threat Intelligence team reveals how a nation state actor linked to the Iranian government compromised an Azure AD tenant by using the AADConnect tool. In this article, we discuss how the attack developed and what you can do to prevent the same attack techniques being used against your tenant.

The post Microsoft Reports New Attack Using Azure AD Connect appeared first on Practical 365.

In this edition of Practical Protection with Paul Robichaux, we dive into understanding what multi-tenant applications are, what they can do, and how to manage them in order to keep your tenant and users safe.

The post Practical Protection: Azure AD Apps and Tenancy  appeared first on Practical 365.

PowerShell is an important tool for any Microsoft 365 Admin – particularly in larger environments. In this article, Sean McAvinue outlines some key tools and concepts to help tenant admins build a ‘toolbox’ for PowerShell to make almost any scripting task easier and more robust.

The post Building your Microsoft 365 PowerShell toolbox appeared first on Practical 365.

Microsoft 365 auditing makes lots of data available to administrators to help them understand what happens in a tenant. When attackers try to compromise accounts, they can leave fingerprints behind in audit data. Being aware of what you might find in the data helps suppress BEC attacks.

The post Using Microsoft 365 Auditing and Alerts to Monitor Email Forwarding appeared first on Practical 365.

Are you looking to add some extra security to your small organization? Microsoft Defender for Business may be the right fit. Learn more about the capabilities of Microsoft Defender for Business and how it compares to other Microsoft Defender Plans.

The post How does Microsoft Defender for Business compare to Defender for Enterprise? appeared first on Practical 365.

On the show this week, we talk about a new report from Goldman Sachs on how Generative AI could affect 300 million jobs - and with Microsoft 365 Copilot on the front line, we consider how likely this is. And finally - Microsoft Teams "V2" - the new Teams has began appearing in Microsoft 365 tenants. Plus, you can replace your face with an Avatar, use the preview of the Loop App - and Windows 11 might be appearing on your Teams Rooms devices very soon.

The post New Teams in Preview, Loop App & Avatars, AI and more: Practical 365 Podcast S3 E24 appeared first on Practical 365.

Microsoft's announcement of Security Copilot is more interesting in some respects than Microsoft 365 Copilot because it promises to help organizations defend themselves better. Of course, we don't know much yet about how Security Copilot will work in the real world, but if Microsoft delivers what it says, Security Copilot could be quite a tool in the battle against the bad guys.

The post Microsoft Launches Security Copilot appeared first on Practical 365.

Copilot for Microsoft 365 generated a lot of media hype after its March 16 announcement. In this article, we contemplate some of the implementation issues that need to be teased out before Copilot for Microsoft 365 deployments start.

The post Practical Issues Around the Implementation of Microsoft 365 Copilot appeared first on Practical 365.

Microsoft released the preview version of the Loop app on March 22. The app works well for collaboration with people from the same Microsoft 365 tenant but fails utterly once external people are involved. Some other teething problems are evident, but there's enough in the Loop app for people to make their minds up if this will make collaboration smarter within their organization.

The post Using the Preview Version of the Loop App appeared first on Practical 365.

Microsoft announced that Exchange Online will block old Exchange Servers by throttling and then rejecting their inbound email into Exchange Online. The hope is that this tactic will convince those who operate unsupported versions of Exchange Server to upgrade and use supported software that isn't vulnerable to known attack vectors.

The post Microsoft’s Grand Plan to Force Upgrades of Unsupported Exchange Servers appeared first on Practical 365.

Conditional Access policies are one of Microsoft's most versatile and flexible security features ever built. However, there’s one area that Conditional Access can help you protect that isn’t as well known—using IP restrictions to control where a specific app can be used. 

The post Practical Protection: Azure AD Conditional Access – Location, Location, Location  appeared first on Practical 365.

In the third and final article in a series covering Git-based Source Control for Microsoft 365 Tenant Admins, Andy Schnieder covers how to leverage tools to streamline your workflow with Git and gain insight into some useful advanced techniques.

The post Source Control for Microsoft 365 Tenant Admins: Part III appeared first on Practical 365.