User Profile
Frederick_Po
Copper Contributor
Joined 6 years ago
User Widgets
Recent Discussions
Powershell MSOL and hybrid domain joined
Since we have a conditionnal access control requiring domain joined device and mfa to access azure management..when we are using powershell it seems like powershell cannot recognize the device as domain joined and access is blocked due to the domain joined access control after mfa is performed. Any idea why?Solved2.4KViews0likes4CommentsMFA prompt every 24 hours
Hi, We want to make sure that MFA is prompted every 24 hours. What we did is that we put the parameter :allow users to remember multi-factor authentication on devices they trust at 1 day. We want the MFA to be prompt every 24 hours because we want to use Azure MFA with our VPN solution as the second factor. Now the problem is that the 24 hours used in the remember parameter is a real 24 hours so if you performed your MFA at 1 pm it will be asked again at 1pm the day after. What should we do to have a better user experience. Modify token lifetime? Like if your a in a middle of a teams reunion and you forgot that your MFA will expire in like 10 mins, you will lost connection. I know, users should just refresh their MFA every morning but you know they tend to forget....37KViews0likes3CommentsOneDrive SyncEngine
Hi, We have a problem with OneDrive SyncEngine, everytime a user is working remote after he logged in the windows session, OneDrive then try to sync but since the user hasnt performed MFA yet the syncEngine failed and a record of the failed attemps being recored in the identity protection logs. Is there a way to prevent this??8.5KViews0likes0CommentsMalware Scanning solutions before uploading to Azure storage
I'm looking for inputs and comments on different solutions that I maybe consider using to scan image being uploaded to Azure storage: - linux Multi container Web App with ClamAV, VT or any other API? (like OPSWAT, F-secure, attachment scanner etc...)? - VM with a scanner ? - An ARM with a virtual scanner ? (not considered for this scope but open to comments) Any other solutions you guys are using?956Views0likes0CommentsLooking for technical information about ZAP (Zero hour auto purge)
Hi everyone, I'm looking for technical information about how ZAP is "screening" users mailbox for malicious email that came in undetected. I have read multiple article about it but can't find how it is "screenning" users mailbox. I'm trying to compare the "scanning at rest" feature of third party vendors vs ZAP. I know that ZAP isnt scanning at rest on demand but it has to scan mail in users mailbox for updated signatures?741Views0likes0CommentsO365 ATP Mail protection
Hi everyone, I have a question regarding ZAP (zero-Hour auto purge), why would you not want all mailboxes to be screened by ZAP? I mean if you want to trap and remove a malicious mail that has already been delivered to the end user because the malware wasnt detected at the delivery but afterwards, why you would not want to detect it.... I'm asking becuase I heard a lot of false asumption by third party vendors that are saying that Microsoft doesnt scan mail at rest but since ZAP is doint it i'm trying to find why would people be disabling it....? Thank you all P.S: i'm new to the community so I hope I wrote in the right BLOG.Solved1.3KViews1like3Comments