User Profile
Ash_Gardiner
Iron Contributor
Joined 3 years ago
User Widgets
Recent Discussions
Re: windows 11 pro beta
Hi, Can't vouch for any of these videos but it's a common enough problem that YouTube has plenty of well watched videos for it. https://www.youtube.com/results?search_query=windows+11+we+couldn%27t+update+the+system+reserved+partition+ Hopefully one of these helps.1.4KViews0likes0CommentsRe: windows 11 pro beta
Hi mo24q, Based on the second screenshot: "Cause - The System Reserved Partition (SRP) may be full. The System Reserve Partition (SRP) is a small partition on your hard drive that stores boot information for Windows. Some third-party anti-virus and security apps write to the SRP, and can fill it up." https://support.microsoft.com/en-us/topic/-we-couldn-t-update-system-reserved-partition-error-installing-windows-10-46865f3f-37bb-4c51-c69f-07271b6672ac1.4KViews0likes2CommentsRe: MS Defender for O365 (MDO) - Default Alert Policies
Thanks for sharing your scenario akosijesyang. It's an interesting one. As far as I can see, your valid options are to disable the default policy and replace it with multiple granular policies, however I don't see the condition "activity is MaliciousUrlClick" as something you can add to a custom policy. The other options are to disable email notifications for the default alert policy so that the alert just appears as an alert within the console, or to change the recipients of the email notifications to something other than tenant admins. Not ideal, given your goal. Thanks, Ash1.7KViews0likes0CommentsRe: MS Defender for O365 (MDO) - Default Alert Policies
Hi, You are correct, you cannot edit the users this policy applies to as it is a default policy. I'm struggling to think of a good reason to exclude users from this policy too because even the lowest privileged user can bring your org down by clicking on a malicious URL. It would be good to understand your thinking. Thanks, Ash1.8KViews0likes2CommentsRe: Microsoft Azure Defender for Cloud Regulatory Compliance
Hi spintov, You are correct that you can unassign the initiative at the Subscription level, which means at that point the assessments are happening at the RG level. If the initiative has not been assigned on RGs within the Subscription directly they should disappear from the compliance view because they are no longer in scope. My initial answer was black and white - saying that what you wanted could be done and how to do it. The more real world answer is that I don't have customers who managed compliance at the RG level directly as it does not scale well. I've seen exceptions where only a couple of RG need PCI-DSS compliance but if you want to apply an initiative to many RG's individually it's not very fun unless they cascade from a parent Subscription. If workloads need to be subject to PCI-DSS compliance for example, one solution is to place those workloads in a dedicated subscription, maintaining the initiative at the subscription level. Hopefully someone else in the community has another approach to recommend. Thanks, Ash2.1KViews1like0CommentsRe: Microsoft Azure Defender for Cloud Regulatory Compliance
Hi Spintov, Yes. In the Azure portal, if you navigate to the Resource Group, you can select "Policies" and from there you can "Assign Initiative" There are initiatives that correspond to various regulations and standards. Select the one you want and assign it. Thanks, Ash2.3KViews0likes2CommentsRe: Exchange mailbox size and deleting items and retention policies
Hi Gurdev, You correctly state that your goals are in conflict. By design, retention rules will win in a conflict with deletions. They wouldn't be much use otherwise. You need to decide which goal matters more to your organization and it may be different on a per user or group of users basis. Typically retention goals trump deletion goals because retention is driven by legal/compliance/regulation. At some lifecycle stage, the reverse becomes true and items that are X years old are deleted because legal/compliance/regulation retention requirements have been met and the continued retention actually becomes a potential risk. One compromise between your goals would be to adjust lifecycle rules so items are moved to an archive mailbox where they are retained, so that space is freed up in the user's primary mailbox. The default rules for EOL are here. https://docs.microsoft.com/en-us/exchange/security-and-compliance/messaging-records-management/default-retention-policy#retention-tags-linked-to-the-default-mrm-policy You could reduce the default 730 day move to Archive to be a shorter period. Thanks, Ash1.3KViews0likes0CommentsRe: Make outlook automatically delete only marked junk mail not suspected junk
Hi TeamCapizzi, Here are some possibilities: 1) your email administrator can adjust the spam filter policy, which significantly influences the items that are dropped into your Junk folder. If EOP is your message hygiene solution, the instructions are here. https://docs.microsoft.com/en-us/microsoft-365/security/office-365-security/configure-your-spam-filter-policies?view=o365-worldwide#use-the-microsoft-365-defender-portal-to-create-anti-spam-policies 2) You can right click on any email and select Junk/Block sender. Items from this sender won't appear any more in Junk. 3) you can select "rules and alerts" in Outlook to automatically delete messages. Create a rule criteria as the trigger and set the action to "move it to the deleted items folder". For example I have a rule that deletes anything with an exclamation mark in the subject. The rule has additional "or" criteria for when I become aware of any new pattern in junk mail, such as my first name being used in the subject. I just keep iterating the rule to address that new pattern. Thanks, Ash6.9KViews0likes0CommentsRe: Managing access of applications not registered on Azure AD using Azure AD Entitlement Management
Hi SitaNayak, No, Entitlement Management cannot grant access to applications that are not on AAD. Entitlement Management encompasses "Assignment to Azure AD enterprise applications, including SaaS applications and custom-integrated applications that support federation/single sign-on and/or provisioning." https://docs.microsoft.com/en-us/azure/active-directory/governance/entitlement-management-overview#what-are-access-packages-and-what-resources-can-i-manage-with-them. You can add enterprise applications to AAD easily enough though. https://docs.microsoft.com/en-us/azure/active-directory/manage-apps/add-application-portal Thanks, Ash1.2KViews1like1CommentRe: Micro soft defender for cloud
Hi Ikam_Ajay_kumar, Are you using Management Groups? https://docs.microsoft.com/en-us/azure/governance/management-groups/overview Management Groups are a way of grouping Subscriptions and applying a common set of policies/guiderails to those Subscriptions. In the Azure portal, search for "Management Groups" and select the relevant Management Group Select "Policy" Select "Assign Initiative" Under Basics, select the Initiative definition you want, such as "CIS Microsoft Azure Foundations Benchmark." Any Subscriptions placed beneath this Management Group will be assessed against this initiative. Hope this helps. Thanks, Ash863Views0likes0CommentsRe: Unable to see Sensitivity Label in Word, Excel and PowerPoint in Mac
Hi Raghav, I'm seeing more and more demand for Sensitivity Labels these days so I would be interested to hear what your issues are. I might not be able to help with them (will if I can) but it would be good to be aware of them. Cheers, Ash4.4KViews0likes0CommentsRe: How delete cache in Outlook
Hi CarlosMorales, Thanks for the additional clarity. This link contains the instructions for older versions of Outlook https://docs.microsoft.com/en-us/outlook/troubleshoot/contacts/information-about-the-outlook-autocomplete-list#how-to-clear-the-whole-autocomplete-list This link contains the instructions for current versions of Outlook https://support.microsoft.com/en-us/office/manage-suggested-recipients-in-the-to-cc-and-bcc-boxes-with-auto-complete-dbe46e31-c098-4881-8cf7-66b037bce23e Note the statement which I think is your problem based on what you have already tried. "You can't remove the entries in the Other Suggestions list or disable this list." This final link talks about adding a reg key to override the "suggested entries" behavior. Its an old link though and may no longer be valid. https://answers.microsoft.com/en-us/outlook_com/forum/all/outlook-auto-complete-function-only-showing-recent/e1505647-c0e7-47b2-8f05-a129ceed830d Thanks, Ash22KViews0likes0CommentsRe: How delete cache in Outlook
Hi CarlosMorales, If you are referring to the cache of emails created via "cached exchange mode", meaning the feature that enables a user to see their emails while offline, then the instructions below will enable you to delete it. If you have some other cache in mind, ignore the instructions below. By following these instructions your user will not see their emails while offline and you would need to re-establish cached exchange mode and resync all email again to restore it. In Outlook, navigate to: Account settings Account Name and Sync Settings Then select "more Settings" Advanced Outlook Data File Settings. This will show you the path to your OST file. Copy the path because this is the file you delete to remove an offline cache. Now go back to "Account Name and Sync Settings" Untick the box for "Use Cached Exchange Mode to download email to an Outlook data file" Save changes and restart Outlook. Now you can delete the OST file.22KViews0likes2CommentsRe: Where do I start with the entire ecosystem?
Hi dimforest, Take a look at the online - free learning from Microsoft for M365 fundamentals. https://docs.microsoft.com/en-us/learn/certifications/exams/ms-900. You don't have to take the exam, its just that the training links further down the page align to the exam. There is also an Azure fundamentals equivalent. I would start with that. And if you want to understand a specific tech or service you can search that Microsoft learning site and there will be at least one module for you to dive a little deeper. Thanks, Ash2KViews0likes0CommentsRe: OriginalFromAddress is different, yet ATP not blocking
Hi bennybarak, This article explains one way to address this issue. https://docs.microsoft.com/en-us/microsoft-365/security/office-365-security/create-block-sender-lists-in-office-365?view=o365-worldwide Please note the guidance in the document - "While you can use organization-wide block settings to address false negatives (missed spam), you should also submit those messages to Microsoft for analysis. Managing false negatives by using block lists significantly increases your administrative overhead." This link explains the process for reporting false negatives to Microsoft. https://docs.microsoft.com/en-us/microsoft-365/security/office-365-security/report-junk-email-messages-to-microsoft?view=o365-worldwide Hope this helps. Thanks, Ash1.8KViews0likes0CommentsRe: Outlook 2021 - Mailbox Full
Hi VikRob, Outlook is your mail client. Your actual mailbox lives elsewhere. It is your mailbox host we need to understand. Without actionable clues, the community will be reluctant to help because getting you an answer can be protracted. Could you please update your submission with details such as: Is your email hosted in Exchange Online, Gmail, Exchange on premises, some other mail provider? Within Outlook if you navigate to "Account Information", part way down the page you should see "Mailbox Settings". This will indicate how much space you are consuming and how much space you are entitled to. What is the amount of space you are entitled to? If it is a tiny but round number, it is probably a misconfiguration. If it is a completely weird value, that may indicate a different problem. If its a really big number, you've probably hit a service limit. Is this a recent issue after years with no problems? If so, are you aware of any recent change? Are there any other details in the "mailbox full" message that suggest a configuration value or other cause? Do you have administrative access to your email hosting service? With this detail, someone in the community will, hopefully, be able to better theorize about your problem and will know whether you are in a position to fix it yourself or whether you need to engage another party. Thanks, Ash1.1KViews0likes1CommentRe: Unsanctioned app shows data usage
Hi andy-1115, That is the expected behavior unless you have integrated MDCA, formerly MCAS with Defender for Endpoint. See this link for details.https://docs.microsoft.com/en-us/defender-cloud-apps/mde-integration You will see in the link above link that there is an "enforce app access" tick box. Thanks, Ash953Views1like1Comment
Groups
Recent Blog Articles
No content to show