Microsoft 365 Security Basics: Enterprise Application Admin Consent Workflows

Back with another M365 Security basic, this time disabling ends user from application consent. This is a great way to prevent users from using non-sanctioned apps as well as prevent and limit the risk of malicious apps. L I N K S https://docs.microsoft.com/en-us/azure/active-directory/manage-apps/configure-admin-consent-workflow https://docs.microsoft.com/en-us/azure/active-directory/manage-apps/configure-user-consent?tabs=azure-portal https://docs.microsoft.com/en-us/azure/active-directory/manage-apps/review-admin-consent-requests

Microsoft 365 Security Basics: MFA Fraud Alert

Are your users experiencing MFA Fatigue? Are you worried about your employees accidentally approving a hacker's access to your environment? Well if you are you should enable MFA Fraud Alerts in your tenant! This option from MSFT gives your end user to report fraudulent MFA, and it can automatically block a users log in. L ... Read More

Microsoft 365 Security Basics: Secure Azure AD Directory Access

Microsoft default Security default settings allow end users to explore way to much info about your Azure Active Directory. In this quick video, I show you how to lock that setting down so end users cant access Azure AD. L I N K S https://docs.microsoft.com/en-us/azure/active-directory/fundamentals/users-default-permissions#restrict-member-users-default-permissions

Microsoft 365 Security Basics: Deploy MFA (4 Options)

Starting a new series of videos on M365 Security Basics. Where I will show you some quick wins for hardening your Microsoft 365 environment. The first and most important hardening activity is to deploy MFA. C H A P T E R S 00:00 Video Intro 01:50 Enable Combined Registration Experience 02:55 Deploy MFA with ... Read More

Automatically Apply Sensitive Labels: 3 Options

Microsoft Information Protection Sensitivity Labels are a great way to protect your Unstructured Data. However, it requires end users to label the data for the protection to work. Let's fix that and automate the labeling process. In this video, I give you 3 options for Automatically Applying Sensitivity labels. Reference Docs https://docs.microsoft.com/en-us/microsoft-365/compliance/apply-sensitivity-label-automatically?view=o365-worldwide https://dougsbaker.com/2021/11/23/label-all-files-in-an-spo-site/

MIP – Sensitivity Label Overview

Sensitivity labels from Microsoft Purview Information Protection is a great way for you to begin classifying and protecting your data. In this video, I give you an overview of the functionality and a demo of the end-user experience. Tech Net Resources: https://docs.microsoft.com/en-us/microsoft-365/compliance/sensitivity-labels

DLP Next Steps – User Education Mode

So you have analyzed the results of your monitor policy and are ready to move forward. In this video, I discuss setting up notifications to help alert your users they are about to share sensitive info. Microsoft Documentation Rescources. Custom Notifications: https://docs.microsoft.com/en-us/microsoft-365/compliance/use-notifications-and-policy-tips?view=o365-worldwide#custom-email-notification If your policy Tips are not showing there can be several Gotchas, see ... Read More

Exploring Sensitive Info Types

In this video, we discuss Sensitive Informations Types (SIT) and how they are a fundamental cornerstone of building out DLP policies. Links Sensitive Info Type Definitions https://docs.microsoft.com/en-us/microsoft-365/compliance/sensitive-information-type-entity-definitions?view=o365-worldwid

Design a Custom Sensitive Info Type (SIT) in Microsoft Purview

What do you do when none of the built-in MSFT Sensitive Info Types match your data? In this video, I show you where I start when building custom Sensitive Info Types(SIT) for Microsoft Purview Data Loss Prevention. Links: Testing Site https://regex101.com/ MSFT Documentation https://docs.microsoft.com/en-us/microsoft-365/compliance/create-a-custom-sensitive-information-type?view=o365-worldwide

Deploy MIP Sensitivity Labels

Let's go through the process of deploying Sensitivity Labels in our org. In this video, I will go from top to bottom to help you deploy a standard label schema to a test set of users. TechNet Articles: Deploy Labels https://docs.microsoft.com/en-us/microsoft-365/compliance/create-sensitivity-labels Enable Labels for SPO & OneDrive https://docs.microsoft.com/en-us/microsoft-365/compliance/sensitivity-labels-sharepoint-onedrive-files Enable Co-Authoring https://docs.microsoft.com/en-us/microsoft-365/compliance/sensitivity-labels-coauthoring