July 2022 – DougSBaker

July 22, 2022

Microsoft 365 Security Basics: Deploy MFA (4 Options)

Starting a new series of videos on M365 Security Basics. Where I will show you some quick wins for hardening your Microsoft 365 environment. The first and most important hardening activity is to deploy MFA.

C H A P T E R S
00:00 Video Intro
01:50 Enable Combined Registration Experience
02:55 Deploy MFA with Identity Protection
06:47 Register MFA with SSPR(Self Service Password Reset)
11:38 Require MFA with Conditional Access
17:21 Per-User MFA / Always on MFA
20:00 Wrap UP

L I N K S
https://docs.microsoft.com/en-us/azure/active-directory/identity-protection/howto-identity-protection-configure-mfa-policy
https://docs.microsoft.com/en-us/azure/active-directory/authentication/tutorial-enable-sspr
https://docs.microsoft.com/en-us/azure/active-directory/conditional-access/overview
https://docs.microsoft.com/en-us/azure/active-directory/authentication/howto-mfa-userstates

July 14, 2022

Automatically Apply Sensitive Labels: 3 Options

Microsoft Information Protection Sensitivity Labels are a great way to protect your Unstructured Data. However, it requires end users to label the data for the protection to work. Let’s fix that and automate the labeling process.

In this video, I give you 3 options for Automatically Applying Sensitivity labels.

Reference Docs
https://docs.microsoft.com/en-us/microsoft-365/compliance/apply-sensitivity-label-automatically?view=o365-worldwide

https://dougsbaker.com/2021/11/23/label-all-files-in-an-spo-site/

July 9, 2022

MIP – Sensitivity Label Overview

Sensitivity labels from Microsoft Purview Information Protection is a great way for you to begin classifying and protecting your data. In this video, I give you an overview of the functionality and a demo of the end-user experience.

Tech Net Resources:
https://docs.microsoft.com/en-us/microsoft-365/compliance/sensitivity-labels

July 9, 2022

DLP Next Steps – User Education Mode

So you have analyzed the results of your monitor policy and are ready to move forward. In this video, I discuss setting up notifications to help alert your users they are about to share sensitive info.

Microsoft Documentation Rescources.
Custom Notifications:
https://docs.microsoft.com/en-us/microsoft-365/compliance/use-notifications-and-policy-tips?view=o365-worldwide#custom-email-notification

If your policy Tips are not showing there can be several Gotchas, see this link for some of the scenarios that can prevent them from showing.
https://docs.microsoft.com/en-us/office365/troubleshoot/data-loss-prevention/data-loss-prevention-policy-tips

July 9, 2022

Exploring Sensitive Info Types

In this video, we discuss Sensitive Informations Types (SIT) and how they are a fundamental cornerstone of building out DLP policies.

Links
Sensitive Info Type Definitions
https://docs.microsoft.com/en-us/microsoft-365/compliance/sensitive-information-type-entity-definitions?view=o365-worldwid

July 9, 2022

Design a Custom Sensitive Info Type (SIT) in Microsoft Purview

What do you do when none of the built-in MSFT Sensitive Info Types match your data? In this video, I show you where I start when building custom Sensitive Info Types(SIT) for Microsoft Purview Data Loss Prevention.

Links:
Testing Site
https://regex101.com/
MSFT Documentation
https://docs.microsoft.com/en-us/microsoft-365/compliance/create-a-custom-sensitive-information-type?view=o365-worldwide

July 8, 2022

Deploy MIP Sensitivity Labels

Let’s go through the process of deploying Sensitivity Labels in our org. In this video, I will go from top to bottom to help you deploy a standard label schema to a test set of users.

TechNet Articles:
Deploy Labels
https://docs.microsoft.com/en-us/microsoft-365/compliance/create-sensitivity-labels
Enable Labels for SPO & OneDrive
https://docs.microsoft.com/en-us/microsoft-365/compliance/sensitivity-labels-sharepoint-onedrive-files
Enable Co-Authoring
https://docs.microsoft.com/en-us/microsoft-365/compliance/sensitivity-labels-coauthoring