General

In the second video in our series on Practical Conditional Access, we are talking about requiring MFA except when you are in a trusted location. This type of policy is common but increases an organization's risk due to the bypass. So in this video, we will walk through a design called "The Castle Bypass" which ... Read More

Creating a set of Conditional Access policies on your own without ever seeing how other orgs do it can be hard. In this series, we will be showcasing different policy designs and providing examples of practical deployments to meet various organizational requirements. These policies are designed to be templates that can be easily customized to ... Read More

In this video, we'll cover some key points you need to know to secure your Exchange Online environment. We'll discuss topics such as disabling legacy authentication, identifying risky email overrides, enabling audit logging, blocking outbound forwarding, help users quickly identify external emails, and enabling an easy way for your users to report phishing attacks. By ... Read More

In this video, we'll be discussing the importance of MFA and how you can use conditional access to ensure that your organization's accounts are properly secured. Did you know that only 26.64% of Azure AD accounts use MFA? This means that a large number of accounts are not adequately protected against unauthorized access. By implementing ... Read More

The Built-in reporting engine for Purview DLP is pretty limited. However, with Power Bi, we can create custom reports that really help extend the functionality of our reporting. In this video, I do my best impression of a Power Bi Report designer and show how you can get started with PowerBi reporting. L I N ... Read More

SharePoint and OneDrive leave a lot to be desired in the way of default security configs. in this video, I walk through the basic options of locking down your environment so you make sure your data is protected. C H A P T E R S 00:00 Video Intro 01:28 Sharing Controls 07:41 Security Controls ... Read More

This is the final video in the series on building an EDM solution using Microsoft Purview. In this video, we will set up the Sensitive Info Definition that uses EDM. I will cover creating the SIT using XML, and cover the key decisions/items that go into your policy design. L I N K S MSFT ... Read More

I am back with another M365 Security Basic, this one isn't a setting but a change in methodology. Separating your Standard user account and Admin account, and mastering your cloud admin accounts in M365. Let me know in the comments if you separate your accounts and if you use cloud-only admins. C H A P ... Read More

This is the second video in the series of building out an EDM solution using Microsoft Purview. In this video, we will setup our server for uploading our EDM Content to Microsoft Purview. L I N K S Previous Video https://www.youtube.com/watch?v=4-fZmj7DyPk&t=18s C H A P T E R S 00:00 Intro 00:40 Create EDM User ... Read More

This is the first video in the series of building out an EDM solution using Microsoft Purview. In this video, we will download a test data set and I will show you how to use XML to build and upload your schema to the compliance center. L I N K S https://dlptest.com/sample-data/namessndob/ https://learn.microsoft.com/en-us/microsoft-365/compliance/sit-get-started-exact-data-match-create-schema?view=o365-worldwide https://github.com/dougsbaker/Public-Toolbox/blob/main/o365Tools/Compliance/ExactDataMatch/DLP-Test-Schema.xml https://github.com/dougsbaker/Public-Toolbox/blob/main/o365Tools/Compliance/ExactDataMatch/EDM-Schema-Setup.ps1 ... Read More