Securing break glass account for access from multiple geographical locations?
Based on this news announcement…
Signing an audit App Control for Business (WDAC) Policy Doesn't Log Events?
Hello, We have several App Control for Business policies deployed on our fleet of machines, several of them are signed and enforced. We had one policy in audit mode (unsigned), and the Code Integrity logs for this policy came in just fine. No issues…
Protecting data on BYOD devices
Hi everyone, We have sixth form students using BYOD, and we're looking for advice on how to protect data on these devices, specifically for Microsoft 365 resources. I've tested Windows app protection for Edge, but students are also accessing data through…
Active Directory Password Policy: Changing the [Mast Change] Attribute
Hello everyone, Is there an article that specifies how to change the [Mast Change] attribute in Active Directory? I need to modify this parameter for some users to enforce a password change (bypassing the Default Policy - GPO). Are there any certified…
Resolving Blocked SMTP Access for certain user in Odoo Service
The user noreply@domain.com has been blocked due to security defaults. While I can sign in normally, I am unable to use SMTP in the Odoo service because of this account being blocked. I aim to mark this account as safe, which I can manage, but I also…
Conditional Access Policies to allow Guests to Teams
Hi We have a Conditiona Policy to require Compliant Device to access any data/app in MIcrosoft 365 cloud service. We have Microsoft 365 Business Premium licenses. We have a need to allow Guest users to access Teams teams, they are invited to. For this,…
Conditional access for mobiles: Android and iOS
Hi everyone, I am asking for support, When I try to add a business account in a native application such as gmail on an unregistered cell phone, after specifying only the business email address and domain password = access is not possible (correct…
Question regarding Microsoft Admin Portals app in Conditional Access
If I block access to resource "Microsoft Admin Portals" app from other users than admin users, do I also block normal user or guest user access to Windows Azure Active Directory, so that normal users or guest user can register their 2FA to…
ARM Processor with Windows 11 Home is not allowing Checkpoint SSL Network extender
We are not able to use following Application on below Microsoft Laptop. Not allowing to run : Checkpoint SSL Network extender & Checkpoint VPN on Below Laptop. Microsoft Surface Laptop 7 Copilot+PC ZGM-00080 Qualcomm Snapdragon
Windows Hello - DisablePostLogonProvisioning Intune CSP fails on some client
Hello, we're about to deploy Windows Hello for Business (WhfB) in our Hybrid environment. For that, we're using the Account Protection policy to enable WhfB scoped on user groups. At first, we don't want to force users to enroll WhfB, for which we like…
Cant remove work or school account from personal PC
recently left an organization and my ID there was disabled. When employed there, I used my personal PC for work as well as my own stuff. Now I get frequent requests to log in to my Work or School Account. How do I remove the Work account from my personal…
How can I enable and configure Multi-Factor Authentication (MFA) for all users in Microsoft 365, and what are the recommended steps for a smooth rollout?
I’m setting up Multi-Factor Authentication (MFA) for all users in Microsoft 365 through Azure Active Directory, aiming for a smooth rollout. I need guidance on both enabling MFA across the organization and the best way to configure it to avoid…
Intune Wrapped App Access Blocked for User – "This app has not been set up" Error
Hello, I am facing an issue where an Intune-wrapped app is showing the following error message when a user tries to access it: "App access blocked: This app has not been set up for Mohans@outsystemsDemo.onmicrosoft.com **to use. Contact your…
Can a custom 53003 message be created to replace the default?
When validating Conditional Access violations, the default 53003 error provides too much information about the client and login attempt. Is there a way to customize this error response so if a Conditional Access policy is violated a very generic response…
How to allow my users to be password less when authenticating ?
Based on this: https://learn.microsoft.com/en-us/entra/identity/authentication/concept-authentication-passwordless#choose-a-passwordless-method I am trying to enable all of my users with the Passwordless feature with the existing mobile/cell phones…
회사 또는 학교 계정 관련해서 로그인이 안돼요.
지금 계정은 개인 계정이고, 같은 계정으로 회사 또는 학교 계정이 있는데, 로그인 하려고 하면 microsoft authenticator 앱을 이용해서 로그인해야 되는데, 이 앱으로 인증 코드를 받으려고 해도 오류가 발생했다는 문구만 뜨고 받을 수 없습니다. 그래서, 인증 앱을 이용하지 않고 로그인할 수 있는 방법 있나요?
Bitlocker locked my hard drive D -/i have recawery KEY
Please help. I use drive D connected to a laptop. I used the bitlocker function and everything was fine until a certain moment, One day I connected the drive as usual - I enter the password - incorrect. OK I take out the printout with the security code I…
Export & import Intune tenant settings (Windows | Configuration profiles)
I have tried the following but seems like not working between Azure…
Verification of Step-by-Step Methods to Prevent Account Sharing in Microsoft Office 365
Hello, I’m looking to implement security measures in Microsoft Office 365 to prevent users from sharing their accounts externally. I have compiled the following step-by-step methods based on information I received from Microsoft AI. Could you please…
Bitlocker configuration - Password complexity to encrypt USB storage
Hi everyone, I have created a configuration profile in Intune to prevent users from writing information to unencrypted USB storage. Doing the encryption test on a storage USB, I see that it asks you for a password. Supposedly, the password complexity…