Exchange – New Exchange Hybrid Configuration Wizard in preview

A new Exchange Hybrid Configuration Wizard (HCW) is now available in preview. This new Hybrid Configuration Wizard is called either Hybrid Agent or Modern Hybrid to differentiate it from the current HCW version. This new HCW has a lower inbound/outbound connectivity requirements and use an agent, making it more appropriate for install in DMZ. The Hybrid Agent is built on the Azure Application Proxy, helping to reduce the connectivity requirements…

Read More

Exchange Online – Item read and access is going to be audited

You may be already aware that you can have audit on any Office 365 activities, including Exchange Online mailboxes. In February 2019, Exchange Online mailbox audit is going to be improved by adding audit for item read and access by mailbox owners, administrators and delegates. This new implementation is replacing the previous MessageBind action, which will be deprecated when the update will be available on your tenant. You have nothing…

Read More

Office 365 – 3DES cipher support is being retired by Feb 28, 2019

As Microsoft has announced it was moving to TLS 1.2, the 3DES cipher support is going to be removed by February 28, 2019. If you are not sure if this cipher is still being used by your organization to connect and access Office 365 services you can go to the Secure Score website (http://securescore.microsoft.com) and use the “Remove TLS 1.0/1.1 and 3DES Dependencies” option By clicking the Learn More button…

Read More

Exchange Online – Introducing the Fiddler extension for Exchange Online

You may already know Fiddler, the web debugging tool which has been initially developed by a Microsoft support engineer years ago and now part of Telerik (but still free). Well, the Exchange product team has been proud to announce the availability of a Fiddler extension dedicated to Exchange Online troubleshooting. The Exchange Online extension provides you all the features available with Fiddler (session capture, session colouring…) but also much more…

Read More

Exchange – An updated Hybrid Configuration Wizard adds additional configuration transfer settings

As you may be aware, the Exchange Hybrid Configuration Wizard (HCW) has been able to migrate some organization configuration settings (ActiveSync Mailbox Policy, Mobile Device Mailbox Policy, Retention Policy and Tag) to Exchange Online since June 2018. Now, an updated version is coming and will be able to add additional organization settings like: ActiveSync Device Access Rule ActiveSync Organization Settings DLP Policy Malware Policy Organization Config Policy Tip Policy In…

Read More

Office 365 – Microsoft is NO LONGER enforcing TLS 1.2

As you may have been aware as there has been quite lot of communication, Microsoft was planning to disable TLS 1.0 and 1.1 support for Office 365 services. Well, it seems this is longer the plan as per the updated KB 4057306 (https://support.microsoft.com/en-gb/help/4057306/preparing-for-tls-1-2-in-office-365) – as per the extract below: Note This doesn’t mean Office 365 will block TLS 1.0 and 1.1 connections. There is no official date for disabling or…

Read More

Exchange Online – Implement ‘Limited Access’ Conditional Access

You may already know that you can implement a ‘limited access’ conditional access for SharePoint Online and OneDrive for Business, allowing end-users to access content on SharePoint Online but not authorizing to download anything while accessing using non compliant devices. Now, you can do the same for Exchange Online to allow your end-users accessing their mailbox using Outlook on the Web (aka Outlook Web Access) while the device they are…

Read More

Office 365 – Get a sneak peek of what’s coming on Outlook on the Web

End-users accessing their mailbox on Exchange Online with Outlook on the Web (aka Outlook Web Access) will start seeing a toggle to invite them to try the new Outlook on the Web interface. The toggle will be available on the top right As administrator you may want to disable this capability; to do so you need to update your OWA mailbox policy to turn off this capability using the following…

Read More

Exchange Online – The end-user quarantine now has a new home

As you may know, your end-users can access and manage their own quarantine on Exchange Online by accessing the URL https://admin.protection.outlook.com/quarantine Ok, so you need to update them and let them know to start using the new URL, now hosted within the Security and Compliance center, https://protection.office.com/#/quarantine Don’t worry, they will have access only to their quarantine mailbox, nothing more (unless off course you have granted them additional permissions on…

Read More

Office 365 – New user deletion process for cloud user objects

If you do not use the directory synchronization (Azure AD Connect) to manage your user accounts in Office 365 (creation, update, deletion), this is for you. The user account deletion process has been updated in Office 365 to give the opportunity to define what to do with licenses and data. The next time (please keep in mind this update may not yet be deployed and available in your tenant), you…

Read More

Office 365 – A multi blog posts to read about Office 365 ATP and the phishing protection

A very good multi-part / multi-post reading about Office 365 Advanced Threat Protection (ATP) and the anti-phishing capabilities https://blogs.technet.microsoft.com/cloudready/2018/07/31/introduction-email-phishing-protection-guide-enhancing-your-organizations-security-posture/

Read More

Office 365 – New anti-phishing capabilities added to Advanced Threat Protection

A new default policy is being deployed for Office 365 ATP (Advanced Threat Protection) to protect you against phishing. The new policy is/will be available through the Security and Compliance administration portal (https://protection.office.com/) From there, reach out the Threat Management\Policy section and then click on ATP anti-phishing option Then the Default policy is not displayed in the list of policy; it is displayed using the button Default policy By clicking…

Read More

Office 365 – Reminder to move to TLS 1.2

UPDATE Oct 26th, 2018 – Microsoft is delaying the enforcement http://bit.ly/2D5uv3p A quick reminder as the date is fast approaching: you must have moved to TLS 1.2 before October 31, 2018 It has been announced about a year ago (October 2017), all client-server and browser based communication with Office 365 services will use TLS 1.2 After October 31, 2018, if you are still using older TLS version (1.0 or 1.1),…

Read More

Exchange Online – Mailbox Auditing will be enabled by default

A good news for compliance and security, Exchange Online Mailbox auditing will now be enabled by default. The schedule is all commercial tenant will be set by end of calendar year. All mailboxes already set for auditing will continue to be enabled, while all others will then be audited. A new parameter for the Set-OrganizationConfig cmdlet will also be introduce for Exchange administrator to override (not recommended) this new configuration.…

Read More