User Profile
s_p_9
Copper Contributor
Joined Apr 29, 2020
User Widgets
Recent Discussions
Requiring password change for users whose credentials are leaked in Azure Identity Protection
We have E5 license for Office 365 so receive alerts if a user's credentials are leaked. I know in Azure Identity Protection for such scenarios the Risk is High and event type is "Leaked user credentials". 1. Can we create a rule in Azure Identity Protection if Risk is High and event type is "Leaked user credentials", require a password change, alert XYZ people? If so, how? Our Azure admin is really new and needs step by step guidance and he won't give us rights to explore what is allowed in Azure Identity Protection. 2. If no such rule can be created, are there any PowerShell scripts already existing which we can integrate with our Azure AD so that if Risk is High and event type is "Leaked user credentials", require a password change, alert XYZ people? I am sure the scenario is common as if a user's credentials are leaked at 1 am on a morning, no system admin is awake to reset the credentials so we need to automate it. 3. Any other suggestions would be appreciated so that we can keep an eye on those user accounts to see if they are repeatedly come up in leaked credentials. We already have MFA enabled for all our Office 365 accounts and Azure AD. Thanks4.4KViews1like5CommentsScheduling scans using Microsoft Defender ATP for Linux virtual machines
We have few Linux virtual machines which have Microsoft Defender ATP and are running Oracle web logic applications. If we scan the directories, where Oracle web-logic applications are stored it impacts performance so we had to exclude scanning those directories. The project manager wants to exclude scanning permanently but we don't want any suspicious files hiding in the excluded folders. Those directories are used heavily and they change frequently so we cannot schedule scans like 3 a.m. in the morning hoping usage will be low at that time. 1. How do we ensure malware does not hide in the excluded directories of Linux virtual machines? 2. Are there any settings in Microsoft Defender ATP for Linux which we can change to ensure the directories, where Oracle web-logic applications are stored can be scanned without affecting performance? 3. Any other suggestions for our scenario?666Views0likes0CommentsFailure to install a required security patch to address CVE-2020-1147 - how to diagnose and install
Our existing SharePoint admins left for another company and two persons who were doing desktop support are filling in for them so they are new at installing patches. I know it is odd, but that is a situation caused due to budget shortfall. They could not install the patch to address CVE-2020-1147 and message in log was "Installation Failure: Windows failed to install the following update with error 0x80070661: Security Update for Windows (KB4565579)" I saw the information at https://support.microsoft.com/en-us/help/4565579/kb4565579 They told me the server has March 12, 2019 servicing stack update (SSU) (KB4490628), latest SHA-2 update (KB4474419). They don't know if the servers have Extended Security Updates (ESU) Licensing Preparation Package (KB4538483) and are checking on it. 1. If the servers don't have Extended Security Updates (KB4538483) is there a way to install this security update? We may not have the budget to buy it this year because of low revenue stemming from the pandemic 2. If the servers absolutely need Extended Security Updates (KB4538483) can that be purchased for 4 servers? 3. What else needs to be checked to ensure there is no other factor causing the security updates to fail? P.S. I posted this at https://social.technet.microsoft.com/Forums/sharepoint/en-US/e866ba33-bce9-4f07-9044-f018080f6b90/failure-to-install-a-required-security-patch-to-address-cve20201147-how-to-diagnose-and-install?forum=SharePointMigrationTool but did not know if that was the right forum or not.1.5KViews0likes0CommentsCreating a survey using Forms where users do not have to login
Our office has lot of field workers who access Internet on their mobile phones iPhones/Androids or tablets like iPads etc. For the most part, the mobile devices are company issued but sometimes they are personal devices. We need to send out a survey to them daily and want to track their responses so we know who responded with what suggestions. We have multi factor authentication for our email via Office 365 so the field workers need to login to a Forms survey, which opens in a mobile browser like Safari and Chrome, using their Office 365 credentials. Logins reduce survey response rate as it is another step the workers need to do to take the survey. Another option is creating an anonymous survey but then we don't have reliable data as the workers need to self-report their name, email in the survey. A. Is there a way we can identify the workers if they click on the Forms survey from their Outlook email client on the mobile devices(iPhones, iPads, Androids etc.)? With desktop users we can configure their default browser to be Internet Explorer or Edge which does not need another authentication as those users are already logged into the company domain and using company devices. So, those users can take the survey in Internet Explorer/Edge and we can track who submitted which response. B. Does Forms support passing cookies in the survey link which can uniquely identify the user when the user opens the link in a mobile browser? I heard some surveying tools like Qualtrics can do that, but we don't have a license for that. C. If not, are there any ways to do what we need? Any suggestions would be helpful. Thanks7.6KViews0likes0Comments
Recent Blog Articles
No content to show