Securing the modern enterprise with Windows Defender Advanced Threat Protection

Windows Defender Advanced Threat Protection (Windows Defender ATP) is a new cloud security service that enables enterprise customers to detect, investigate, and respond to advanced threats on their networks.

It really enables you as an administrator to detect attacks on your most vulnerable systems: workstations. Attacks are detected almost instant en the service portal will give you recommended remediation, enables to you quarantine or block files, or even isolate machines from your enterprise network!

In this post I will guide you through the set-up and give you an example of an attack and response scenario. Continue reading “Securing the modern enterprise with Windows Defender Advanced Threat Protection”

New rich Conditional Access features with the Intune Ibiza Portal

Microsoft has started migrating Intune from the old Silverlight to the new Azure Ibiza portal which is HTML5 and PowerShell capable. The new Ibiza portal has lots of new features and one of them is Conditional Access!

How do I see Conditional Access in one sentence?

It’s the gatekeeper for giving you access to corporate resources or keeping you out!

Continue reading “New rich Conditional Access features with the Intune Ibiza Portal”

Group Based Licensing now in Preview in Azure AD!

If you are involved with mail migrations to Office 365 or enabling other Azure Active Directory/Office 365 services, you will need to set licenses for your users. For a project with 1 to 50 users this can be done fairly easy with some manual configuration. However if you have more than 100 or even thousands of users with the E3 or E5 SKU this becomes fast a complex task. Scripting with PowerShell and triggering on a successful event of AD Connect sync for example. I think everyone has thought:

“Why do we need to create complex PowerShell scripts as this should be an easy to configure option”

Continue reading “Group Based Licensing now in Preview in Azure AD!”

Reporting mailbox migration progress in Power BI

I’m currently working on a global Active Directory consolidation and Exchange e-mail migration at a client and as with every project is nice/required to report about how the migrations are progressing. At first I was using a PowerShell script that exported all the details that I needed to a comma separated file. The content of the CSV was copied into Excel where I used some Pivot tables to get the actual numbers that I could use in my report.

As you can imagine this took a while to get everything ready (somewhere between one and two hours), so I was eager to find something new where my report was looking better and especially where the whole process was automated. The answer? Power BI! Continue reading “Reporting mailbox migration progress in Power BI”

Classify and protect your data with Azure Information Protection

Azure Information Protection is a cloud-based solution that helps an organization to classify, label, and protect its documents and emails. This can be done automatically by administrators who define rules and conditions, manually by users, or a combination where users are given recommendations.

A long time ago when Azure Rights Management service was introduced, I was already really excited about the concept. Since data is basically always available for employees, IT is breaking their heads about the security risks that were introduced and there was no really good solution to protect the data. Continue reading “Classify and protect your data with Azure Information Protection”

Isolate your data with Mobile Application Management

One of the great features of Intune is Mobile Application Management (MAM). The important benefit of using MAM policies are protecting your company data at the app level. Since mobile app management does not require device management, you can protect company data on both managed and unmanaged devices. The management is centered on the user identity, which removes the requirement for device management.

Another benefit is the fact end user productivity is not impacted, and the policies are not applied when using the app in a personal context. The policies are applied only in a work context, thus giving you the ability to protect company data without touching personal data. This gives you as an administrator the ability to only wipe company data when people leave the company. Continue reading “Isolate your data with Mobile Application Management”