Setup Alert when user creates a new inbox rule
Hi, I am looking for an way to setup a new Office 365 Alert that would send me an email when a user creates a new inbox rule. I have looked at tech articles and have created them via manage alerts, but they don't seem to be working as I never get the email notification.ANNOUNCING: Office 365 Admin Center for GCC High General Availability
The Office 365 Admin Center is the central location for subscription management, service configuration, service health and change notifications, and usage reporting for Office 365 services. With a simple user interface to provide a personalized experience and actionable insights, the Office 365 Admin Center is the primary tool for administrators and IT Pros. Learn more about this tool here: https://support.office.com/en-us/article/About-the-Office-365-Admin-Center-758befc4-0888-4009-9f14-0d147402fd23 Please note: Office 365 GCC High has unique endpoints so admins can access the portal at https://portal.office365.us and find custom DNS guidance at https://go.microsoft.com/fwlink/?linkid=866560 The Admin Center will be available in DoD as soon as DISA signs off.
Notify admin when user changes the password in O365
In security and compliance I have tried to create an alert, where I as an admin should receive an alert if any user in my domain changes the password. Tried to create a DLP policy to link with an alter but there is no predefined policies and custom option is unavailable. Can someone let me know, how can I get a notification or alert if any user in my domain tries to change the password or after.Office 365 - Meltdown and Spectre CPU bugs
No not the next Bond film, posted to the Office 365 Message center today "https://portal.office.com/AdminPortal/home?switchtomodern=true#/MessageCenter?id=MC126594" are details about the high profile hardware vulnerabilities named Meltdown and Spectre using speculative execution side-channel attacks, which affects all modern processors. Also there is a public web page with the same information - https://support.microsoft.com/en-us/help/4073235/cloud-protections-speculative-execution-side-channel-vulnerabilities. Microsoft has reassured customers that there is no indication that Office 365 has been affected and have mitigations in-place to protect customers, as well as detection capabilities to intercept these attacks. The fixes that mitigate this problem from being exploited are thought to have a sizable hit on performance but it seems Microsoft has done this in a way that that shouldn't be noticeable based on the corresponding https://azure.microsoft.com/en-us/blog/securing-azure-customers-from-cpu-vulnerability/ information - Microsoft "are not seeing noticeable performance impact after the fix has been applied". There are lots of details, for anyone wanting to read up on this issue, in Microsoft's Security Advisory - https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180002. "Speculative execution side-channel vulnerabilities can be used to read the content of memory across a trusted boundary and can therefore lead to information disclosure. There are multiple vectors by which an attacker could trigger the vulnerabilities depending on the configured environment. Microsoft has been working with hardware and software makers to jointly develop mitigations to protect customers across Microsoft’s products and services. These mitigations prevent attackers from triggering a weakness in the CPU which could allow the contents of memory to be disclosed." It's important customers apply all available updates and follow the advice here to protect clients as well - https://support.microsoft.com/en-gb/help/4073119/windows-client-guidance-for-it-pros-to-protect-against-speculative-exe. There is also corresponding guidance for https://support.microsoft.com/en-gb/help/4072698/windows-server-guidance-to-protect-against-the-speculative-execution-s as well. Microsoft Edge and IE are affected and details on the fix are https://blogs.windows.com/msedgedev/2018/01/03/speculative-execution-mitigations-microsoft-edge-internet-explorer/.Set activity alerts using PowerShell issues
I have used the following command: new-activityalert -name "Elevation of Privilege" -NotifyUser "user@domain.com" -type elevationofprivilege and it completed successfully. I do not however see this new alert listed in the browser interface in the Manage Alerts area. Also if I execute the following, I see no listing of this new alert: get-activityalert but if I execute: get-activityalert -identity "Elevation of Privilege" I do see the alert. Any ideas what I missing and why the initial alert creation in PwoerShell works but then doesn't appear anywhere unless I ask for it by name??
Quarantine spoofing and reporting phishing emails
This morning when I opened Outlook, I found an email from "Administrator" titled "Spam Quarantine Notification". Being the administrator of our Exchange Online network, I know this is not an Office365 notification - it's clearly a phishing email - but it looks pretty darn close to our normal spam quarantine notifications that I fear that some of our users may not know the difference. I would very much like it if Microsoft Office365/Exchange Online would build a "report this email as phishing scam" feature in to new versions of Outlook and maybe even make a publicly available add-in for existing versions. You have the feature in Outlook Mail - the free webmail hosting - yet it isn't available for the paying customer's using corporate hosting and costly (in a relative sense) full desktop products. I find this quite alarming actually. In addition to this, it would also be darn helpful if administrators of a network had an easy way to blacklist or whitelist emails and/or domains from the Outlook email client. I know this is a public forum and not a support centre, but it would be great to know if my concerns and requests are valid. Thanks and regards Reece - "Long term Microsoft user and cloud hosting advocate"Social Media Connections: Let's Network!
I love the Microsoft Tech Community and find it to be an incredible source of information, discussion, feedback, and comradery. I also use LinkedIn and Twitter to keep in touch with my professional network. Do you? Share your usernames in the comments and let's connect! I'll start 🙂 Twitter: Brian_Levenson LinkedIn: https://www.linkedin.com/in/brianlevenson
