User Profile

Vaman-Kini

Brass Contributor

Joined Mar 04, 2019

15 Posts5 LikesLikes received

View All Badges

User Widgets

Recent Discussions

Re: How to Enable the First Contact Safety Tip for Exchange Online Protection
TonyRedmond Got it. That was my thought too 🙂
Feb 16, 2021 Place Exchange
44KViews
1like
0Comments
Re: How to Enable the First Contact Safety Tip for Exchange Online Protection
TonyRedmond I ran into a quite odd situation where the feature works on a test Tenant/domain but not in the production. The headers show that the rule hit for both domains which should mean that the transport rule works. The mail flow is same for both tenants. Any tips on troubleshooting that you could share ?
Feb 16, 2021 Place Exchange
45KViews
1like
3Comments
Hide sensitive Information in MCAS Logs
Have anyone been able to hide/obfuscate file names as well as logs that many contain private/sensitive information from admins/analysts who need to investigate in MCAS?
Sep 08, 2020 Place Microsoft Defender for Cloud Apps
Cloud App Security
Data Protection
656Views
0likes
0Comments
Re: Block Display Name Spoof in EAC
dgillespie-adf I have had success with the Impersonation policy under phishing wherein we tested with <Myname> mailto:myname@domain.com added to the list of users to protect and send an email from <Myname> xyz@somedomain.com . The policy detected it to be impersonation. I wanted to test this safely with the Senior management email address and trying figure out a safe way to do that. documentation is https://docs.microsoft.com/en-us/microsoft-365/security/office-365-security/anti-spoofing-protection?view=o365-worldwide
Aug 27, 2020 Place Microsoft 365 admin center
42KViews
0likes
1Comment
Re: Roles for Office 365 P2
VasilMichev Thank you for the great input. I would need still some documentation to figure out which roles to include. The documentation that i quoted in my post, does not have that information. The other alternative would be to figure this out by trial and error. In short , I am looking for " what roles should we assign to be able to access explorer, submissions, investigations threat tracker and campaign in the Threat management menu"
Aug 27, 2020 Place Microsoft Security
953Views
0likes
0Comments
Roles for Office 365 P2
I would like to know if there is some better way of using the Office ATP features like Threat Trackers, Threat Explorer ,Automated investigation and response, Campaigns , etc without giving out Security admin /operator roles groups as outlined in the https://docs.microsoft.com/en-us/microsoft-365/security/office-365-security/office-365-atp?view=o365-worldwide ? Are they any specific roles like "Quarantine" that are available ? That would help practice the least privilege model instead of such broad access.
Aug 26, 2020 Place Microsoft Security
1KViews
0likes
2Comments
Re: Defender ATP - Lookup Hash and Domain
kylemiller061 Thank you so much.
May 15, 2020 Place Microsoft Graph Security API
6.9KViews
0likes
0Comments
Defender ATP - Lookup Hash and Domain
Defender ATP console is able to show that a hash or a domain has been previously seen on the hosts in the tenant. is there an graph API that could be leveraged to search for hosts with that hash or have seen traffic to a domain.
May 04, 2020 Place Microsoft Graph Security API
7KViews
0likes
2Comments

Recent Blog Articles

No content to show