User Profile
LainRobertson
Silver Contributor
Joined 6 years ago
User Widgets
Recent Discussions
How to submit support tickets?
Hi, folks. How does one submit a support request for the Exchange Online PowerShell v3 module? The following article instructs you what not to do, but provides zero detail on what to do: About the Exchange Online PowerShell V3 module | Microsoft Learn Similarly, the following articles highlight the "correct" process, however, it doesn't work: Get support - Microsoft 365 admin | Microsoft Learn How can I get support for M365 Exchange Online? - Microsoft Q&A Where having used the above option, you get to the end and are shown the following completely unrelated message with the support request having been lost in the process: The bug I'm trying to submit is outlined here: UShort Error with the Exchange Module - Microsoft Community Hub Cheers, LainRecycle Bin GPO settings not working/implemented in Windows Server 2022.
Hi, folks. I leverage the following three settings under User/Administrative Templates/Windows Components/File Explorer to effectively disable the Recycle Bin and force prompting for deletions on all Windows Server hosts, yet on Windows Server 2022, they are having no effect. The description for each setting contains no hints as to whether they've been deliberately omitted from Windows Server 2022 (most likely) or this is just some kind of bug/accidental omission. I ran a cross-check using the local group policy editor on a Server 2022 host as I haven't specifically updated the domain templates to Server 2022, but it's the same outcome. Does anyone have any insight as to whether these settings have been dropped as of Server 2022/Windows 11? Cheers, LainLatest update on PowerShell and Azure AD/Entra ID.
Re-posting this here as there's some useful updates with respect to the retirement of the old PowerShell modules (MSOnline and AzureAD/AzureADPreview) and Azure AD Graph (not to be confused with the newer Microsoft Graph API): What’s new in Microsoft Entra – June 2024 - Microsoft Community Hub Cheers, LainPotential bug: List view.
Hi, folks. I'm hoping someone can take the time to try reproducing the following new breakage so I can get some context around whether this is an issue only within my environment or Teams more generally. Issue When using the web version of Teams and choosing the "list view" layout from within Settings, web Teams hangs and does not recover. I've been able to reproduce this across multiple computers after having applied the March 2024 security update (KB5035845). It was not an issue prior to this update. Environment Windows 10 Enterprise, version 22H2 (19045.4170); Microsoft Edge 64-bit, version 122.0.2365.80; Web Teams, version 2 (aka "new Teams"); Group policy setting(s): InPrivateModeAvailability: Forced (documented here). It's important to note that only the Windows update was applied. There were no pending Edge updates waiting to be installed at the same time. Reproduction steps These steps will only be relevant if your organisation is forcing you to use "new Teams". I can't comment on whether this bug exists on the earlier version. Ensure you have configured the above group policy setting to enforce InPrivate mode, as there's already a number of critical differences in behaviour between InPrivate and "normal" configurations, meaning results from a "normal" mode test have no practical value to me. Log into login.microsoftonline.comwith your work account; Select the "Office app launcher" charm and then "Teams"; When you are prompted to switch to "new Teams", do so (not that you have a choice); Go to the "Settings and more" menu and select Settings; From the Settings sidebar menu, select "Appearance and accessibility"; Within the "Layout" options, choose the "List" option; Within the app sidebar, select "Teams"; Teams now proceeds to hang; Close Edge (after optionally waiting on the standard Edge "this page isn't responding" dialog. If you leave Teams in the unwieldly "Grid" layout, the hang/bug does not manifest. If anyone has the time and patience to corroborate or debunk this, I'd appreciate it. Cheers, LainRefining the metadata endpoint.
Hi, folks. My search skills are failing me and I can't find much useful documentation about working with the metadata endpoint (https://graph.microsoft.com/beta/$metadata). Is anyone away of any means for server-side filtering this monstrous document down such that you can select just the elements you want, or do you have to pull the whole thing client-side and XPath out the pieces you're after? For example, I'm only after a handful of specific EntityType elements for the property (not relationships) data types: Alternatively, if there's a better means for grabbing select core schema definitions, I'm all ears/eyes. Cheers, LainLinkedIn workplace verification
Hi, folks. It's coming up to a year (April 2023) since the Verified ID preview for LinkedIn workplace verification was established. When are we going to hear something new - either progress or being scrapped? I went to the preview enlistment page and noticed that the preview is supposedly on pause - which doesn't inspire confidence that this is going somewhere. Setting up LinkedIn workplace verification - Microsoft Entra Verified ID | Microsoft Learn Is anyone on enrolled in this preview and is it still functional? Cheers, LainBug: Outlook functionality mutually excluding secure browser configuration.
Hi, folks. This topic relates to a bug with the interoperability between Outlook and Microsoft Edge introduced somewhere around 2023 Q3. I've documented the issue in the Microsoft Feedback Portal, however, I anticipate that issues are only cherry-picked by the number of votes and not the criticality, so I figured it might be worth cross-posting here and possibly also in Q&A: BUG: Integration of Outlook with Edge when InPrivate is enforced. · Community (microsoft.com) Description Microsoft Edge provides group policy settings for enforcing InPrivate browsing, which I use in conjunction with forced cache clearing on browser closure to ensure residual data (such as cookies and possibly other personal information) are not retained. This works well, and up until recently bore no impact on Outlook. Around July 2023, after an Office update, a high-impact bug was introduced for Edge InPrivate users where if you receive an e-mail with a hyperlink, and you click that hyperlink within the Outlook "read" view, it causes all Edge processes to terminate. Reproduction Ensure the following group policies Computer Configuration > Policies > Administrative Templates > Microsoft Edge under are set: Clear browsing data when Microsoft Edge closes = Enabled; Configure InPrivate mode availability = InPrivate mode forced; Ensure the policy has applied to your client before proceeding; In Edge, browse to any page you like - you just need Edge open to see the bug's impact; In Outlook, navigate to any e-mail that contains a hyperlink; Click on the hyperlink. What you will observe Edge freezes for a short period; All Edge processes terminate ungracefully, with all data being lost. Workaround In Edge, open a page (any page you like will suffice); In Outlook, navigate to any e-mail that contains a hyperlink; For that e-mail, choose one of the "sending" actions such as Forward or Reply; Ctrl + click the hyperlink; Observe that it now opens in InPrivate Edge just fine; Press the Esc key to exit e-mail composition mode. Impact The issue may not be widespread but it is very high-impacting for in-scope users who frequently suffer data loss through the forcible closure of all Edge processes. Conclusion Organisations should not be forced by one product team (Outlook) to disable the security mechanics of another product (Edge). The workaround is not intuitive for users and hasn't significantly precluded the loss of information. This issue needs fixing. Cheers, LainKeeping PowerShell up-to-date via WSUS.
Hi, folks. This is a quick one to let any fellow hybrid operators know that PowerShell (as distinct from Windows PowerShell) can be kept up-to-date via WSUS these days. Product and Classifications You can find the PowerShell products listed as shown below, while within the Classifications tab, you want to have the "Updates" category checked. After WSUS synchronisation You'll see it's now aware of the various 7.x branches. After client synchronisation to WSUS You'll see the various updates pending approval for deployment. (Yes, my PowerShell's very old now!) A nice little win for the keeping the small things in (my) life current for zero extra effort. Cheers, LainAdvanced searches using the "site" keyword are not reliably working.
It's a simple topic where the subject says it all. For the past 24 to 48 hours, when running a search utilising the "site:" keyword, Bing almost always returns an error. At random intervals, it will return the expected results, after which running the same search continues to return those results (i.e. it's akin to a cached experience) but eventually, it's reverting to the broken behaviour. I feel like there may be a regional-/locale-specific component to this as when trying the same search from another environment, it's working more often than not, but I'm not clear on whether we can do much in the way of diagnosis for Bing. Has anyone else had issues with searches using the "site:" keyword? Cheers, LainApplication access to User.ReadBasic.All for B2B scenarios.
Hi, folks. The Azure AD Graph right, User.ReadBasic.All, has very limited use internal to a tenant but would be quite powerful in B2B scenarios where external partners/customers/etc. are unwilling to provide unintended access to personally identifiable information (PII) or other business-confidential information. Unfortunately, User.ReadBasic.All is not made available as a right that can be delegated to servicePrincipal identities using the "application" model. On its own, it doesn't make a lot of sense, but paired with something like Group.Read.All (which is still too powerful but that would require a separate request on the Feedback hub) begins to address real-world privacy concerns through providing customer-managed reduced data sets. If you work in B2B spaces like identity management, multi-tenant applications, etc. where the current out-of-the-box rights, roles and functionalities (like access packages) simply aren't suitably aligned against privacy concerns (in the Australian context, these are often driven by legislative requirements), then please take a moment to have a read of the feedback request I've made below and if it resonates with you, vote on it. User.ReadBasic.All required as an application permission for B2B (privacy reasons.) · Community (microsoft.com) References: Microsoft Graph permissions reference - Microsoft Graph | Microsoft Learn(User.ReadBasic.All) Microsoft Graph permissions reference - Microsoft Graph | Microsoft Learn(Group.Read.All) Cheers, Lain
