How much time does it takes to update secure score on Defender portal?
Hi Folks, I have marked some of the recommended actions on secure score as "third party" or "alternate mitigation". Even after 10 hours I can see action is still marked as "to be addressed". How much time does it take for changes to show up there? And also, how much time will it take to get this add up to my cumulative secure score?
SecureScore Intune Configuration Recommendations without devices
I am trying to maximize our SecureScore for our tenant. We are a Windows/iOS/Android only tenant. No macOS devices at all. SecureScore has a policy "Ensure that mobile devices require complex passwords (Simple Passwords = Blocked)" that says "Note: This recommendation is relevnat only for MacOS." (the misspelling is on the page too). Since we still can get points for this, I made a policy following the instructions perfectly: Prerequisites You have Microsoft Defender for Cloud Apps. Next steps To set mobile device management profiles, use the Microsoft Intune admin center: Select Devices, then under Policy select Configuration profiles If there are no policies, select Create Policy. Set a Name for the policy, choose MacOS in the Platform and under Profile type select Device restrictions. Click on the new policy name. Under Configuration settings click Edit. In the Password section, ensure that Simple Passwords is set to Blocked. If there are existing policies, per each MacOS policy - Click on the policy name. Under Configuration settings click Edit. In the Password section, ensure that Simple Passwords is set to Blocked. Note: this setting is only for MacOS policies. However, it has been over a week and we have no points. I opened a ticket with MS #2312010040005555. They've sent me here for community feedback on this. The current belief with support and me is quite simply: "Our understanding is that you will not get SecureScore points if you don't have a MacOS device for this particular configuration". Can I get any validation on this from the community?Secure Score - resolved through alternate mitigation
On recommended actions I set the implementation as "resolved through alternate mitigation" also adding in the notes the alternative used to mitigate Microsoft's advice; when I save and re-enter however I find "to address" configured. Should I just wait until tomorrow or is this anomalous?Regulatory and Compliance Headaches?
Are regulatory and compliance requirements a source of frustration, stress, or uncertainty in your organization? Did you know that Microsoft has a product called Microsoft Compliance Manager (MSCM) that can help alleviate the stress, uncertainty and most importantly risk to your organization? The wait is over! Be a part of the movement that is MSCM and help guide its evolution. Your direct input and feedback is valuable to our teams here at Microsoft. A simple 10-minute survey, click here, can get you started down the road to better regulatory and compliance preparedness! It’s free for 90 days to all E3 and E5 customers, so what are you waiting for! Should you have any questions please reach out to mipcompcxe@microsoft.com. Also don’t forget to tell your teams about the recently published Microsoft Compliance Manager Ninja Training and the free 90 day trial for all customers!
Creating Planner task from Secure score
When I try to share a Secure Score recommended action into a planner To Do task in a Teams group, and after filling in the Group, Plan, Bucket, the Create Planner button is activated and is clicked, but after the text flashes, the window box remains until Cancel is clicked. No planner task is created. Creating a Post to Teams does work however. Is there a setting I am missing? Thank you in advance for your time. Fin
Secure Score - Compliance Administrator Access
As a user with Compliance Administrator Roles in Azure, I cannot "Edit status & action plan" on Secure Score findings, this as a Role Based Access within Azure should be given access to Compliance Administrators in addition to: Global administrator Security administrator Exchange administrator SharePoint administrator As documented in: https://learn.microsoft.com/en-us/microsoft-365/security/defender/microsoft-secure-score?view=o365-worldwide#required-permissions I would recommend this be corrected
Secure Score dropped from 78% to 73%
I have been creating policies and recommendation policies thru PowerShell, Intune Management and all other security recommendations. Secure score updates every 24hrs and would need to clear your cache to show the updated score (MS support advised this). I have reached it to 78% but then after a few days it went down to 73% for some reason. I am pretty sure that the policies have bee applied successfully and was able to check the status via system logs as well. I'm currently talking to a MS support but they said that when creating MS Intune policies, this doesn't add score hence it also reduces the score?
How to stop/slow down spam
Hi All, We currently have a lot of spam coming through which goes out to others externally too! which isn't great! How can we prevent this or at least slow it down? I know people clicking on it is what makes it go out further but thats something that we cant stop as they are usually users that do it not knowing. They seem to have a legit subject. spam like this: Every time we put a rule in something new comes up Please help! Any advice would be helpful!
