Month: August 2024
add printer option not working
I am trying to add a printer to my PC, pc is using Windows 11 and has most recent updates the Add printer button does nothing. I click it and nothing happens, so could soomeone please advise how I add new printer?
I am trying to add a printer to my PC, pc is using Windows 11 and has most recent updates the Add printer button does nothing. I click it and nothing happens, so could soomeone please advise how I add new printer? Read More
Inserting breaks into a long document
I have a book-length MS in Word 365 with many footnotes. The footnotes are numbered continuously from1 to over 1,000. I would like to begin footnote numbering over with each chapter. I understand that this should be possible if the chapters are separated by breaks, but when I have my cursor at the end of a chapter, the “breaks” button is greyed out and inoperable. As far as I can tell, the document is not “protected.” Can anyone help?
I have a book-length MS in Word 365 with many footnotes. The footnotes are numbered continuously from1 to over 1,000. I would like to begin footnote numbering over with each chapter. I understand that this should be possible if the chapters are separated by breaks, but when I have my cursor at the end of a chapter, the “breaks” button is greyed out and inoperable. As far as I can tell, the document is not “protected.” Can anyone help? Read More
Granular Admin Relationships expired
We are a MSP and have found that there are now 5 customers that the Granular Relationship has expired. Once expired, I’m trying to create a new relationship. I’m unable to choose Admin Agents and Helpdesk Agents in the Microsoft Entra roles. Wondering how to add those roles. Thank you.
We are a MSP and have found that there are now 5 customers that the Granular Relationship has expired. Once expired, I’m trying to create a new relationship. I’m unable to choose Admin Agents and Helpdesk Agents in the Microsoft Entra roles. Wondering how to add those roles. Thank you. Read More
New Blog | Architecting secure Gen AI applications: Preventing Indirect Prompt Injection Attacks
By Roee Oz
As developers, we must be vigilant about how attackers could misuse our applications. While maximizing the capabilities of Generative AI (Gen-AI) is desirable, it’s essential to balance this with security measures to prevent abuse.
In a recent blog post, we discussed how a Gen AI application should use user identities for accessing sensitive data and performing sensitive operations. This practice reduces the risk of jailbreak and prompt injections, preventing malicious users from gaining access to resources they don’t have permissions to.
However, what if an attacker manages to run a prompt under the identity of a valid user? An attacker can hide a prompt in an incoming document or email, and if a non-suspecting user uses a Gen-AI large language model (LLM) application to summarize the document or reply to the email, the attacker’s prompt may be executed on behalf of the end user. This is called indirect prompt injection. Let’s start with some definitions:
Prompt injection vulnerability occurs when an attacker manipulates a large language model (LLM) through crafted inputs, causing the LLM to unknowingly execute the attacker’s intentions. This can be done directly by “jailbreaking” the system prompt or indirectly through manipulated external inputs, potentially leading to data exfiltration, social engineering, and other issues.
Direct prompt injections, also known as “jailbreaking,” occur when a malicious user overwrites or reveals the underlying system prompt. This allows attackers to exploit backend systems by interacting with insecure functions and data stores accessible through the LLM.
Indirect Prompt Injections occur when an LLM accepts input from external sources that can be controlled by an attacker, such as websites or files. The attacker may embed a prompt injection in the external content, hijacking the conversation context. This can lead to unstable LLM output, allowing the attacker to manipulate the LLM or additional systems that the LLM can access. Also, indirect prompt injections do not need to be human-visible/readable, if the text is parsed by the LLM.
Read the full post here: Architecting secure Gen AI applications: Preventing Indirect Prompt Injection Attacks
By Roee Oz
As developers, we must be vigilant about how attackers could misuse our applications. While maximizing the capabilities of Generative AI (Gen-AI) is desirable, it’s essential to balance this with security measures to prevent abuse.
In a recent blog post, we discussed how a Gen AI application should use user identities for accessing sensitive data and performing sensitive operations. This practice reduces the risk of jailbreak and prompt injections, preventing malicious users from gaining access to resources they don’t have permissions to.
However, what if an attacker manages to run a prompt under the identity of a valid user? An attacker can hide a prompt in an incoming document or email, and if a non-suspecting user uses a Gen-AI large language model (LLM) application to summarize the document or reply to the email, the attacker’s prompt may be executed on behalf of the end user. This is called indirect prompt injection. Let’s start with some definitions:
Prompt injection vulnerability occurs when an attacker manipulates a large language model (LLM) through crafted inputs, causing the LLM to unknowingly execute the attacker’s intentions. This can be done directly by “jailbreaking” the system prompt or indirectly through manipulated external inputs, potentially leading to data exfiltration, social engineering, and other issues.
Direct prompt injections, also known as “jailbreaking,” occur when a malicious user overwrites or reveals the underlying system prompt. This allows attackers to exploit backend systems by interacting with insecure functions and data stores accessible through the LLM.
Indirect Prompt Injections occur when an LLM accepts input from external sources that can be controlled by an attacker, such as websites or files. The attacker may embed a prompt injection in the external content, hijacking the conversation context. This can lead to unstable LLM output, allowing the attacker to manipulate the LLM or additional systems that the LLM can access. Also, indirect prompt injections do not need to be human-visible/readable, if the text is parsed by the LLM.
Read the full post here: Architecting secure Gen AI applications: Preventing Indirect Prompt Injection Attacks Read More
Booking with me : Best way to delegate it ? (using unique link ONLY)
This question has already been asked : Bookings with me. Is there any way to delegate access to it as we can – Microsoft Community
==> Note : the shared mailbox doesn’t work for us, see our answer in this link over.
However it’s still a ”pain point” for our enterprise, at the moment.
Is there a new way in 2024, to delegate access to our ”Booking with me” with our colleagues, WITHOUT giving full access to your mailbox to the person you want to manage your booking with me dashboard/pages. I want them to book meetings for me, in my agenda AND I want them to send a unique link for that meeting. It is also important that MY OWN availability (from my agenda, not shared mailbox agenda) would be used into that Booking with me.
If not, is it possible to add a function in ‘Bookings” to send a UNIQUE LINK (no permanent access for customers to book whatever they want) to my agenda OR one of my colleague ? We want to keep the control on our agendas, since customers book ”useless appointment” in the actuel ”Bookings”. We are losing more time using Bookings than not using it …
It would be a really great improvement for Microsoft Booking. I’m sure a lot of customers have the same problem as we encounter.
Thank you for the time.
Olivier
This question has already been asked : Bookings with me. Is there any way to delegate access to it as we can – Microsoft Community==> Note : the shared mailbox doesn’t work for us, see our answer in this link over. However it’s still a ”pain point” for our enterprise, at the moment. Is there a new way in 2024, to delegate access to our ”Booking with me” with our colleagues, WITHOUT giving full access to your mailbox to the person you want to manage your booking with me dashboard/pages. I want them to book meetings for me, in my agenda AND I want them to send a unique link for that meeting. It is also important that MY OWN availability (from my agenda, not shared mailbox agenda) would be used into that Booking with me. If not, is it possible to add a function in ‘Bookings” to send a UNIQUE LINK (no permanent access for customers to book whatever they want) to my agenda OR one of my colleague ? We want to keep the control on our agendas, since customers book ”useless appointment” in the actuel ”Bookings”. We are losing more time using Bookings than not using it … It would be a really great improvement for Microsoft Booking. I’m sure a lot of customers have the same problem as we encounter. Thank you for the time. Olivier Read More
Project for Web
Hello, I have made a project in Project for Web, and I would like to grant the team access, but some guidelines indicate the proper use of this board. Can I include some guidelines in the project itself so that users can refer to them? What are the methods by which I can accomplish this? should it be feasible? Thanks
Hello, I have made a project in Project for Web, and I would like to grant the team access, but some guidelines indicate the proper use of this board. Can I include some guidelines in the project itself so that users can refer to them? What are the methods by which I can accomplish this? should it be feasible? Thanks Read More
Windows Autopatch: Auto-remediation with PowerShell scripts
Windows Autopatch deploys and continuously monitors Microsoft Intune policies to enrolled tenants. Policy conflicts can occur when there are two or more policies in the tenant and might impact Windows updates in Windows Autopatch. Let’s take a look at what causes policy conflicts and, more importantly, how you can easily resolve them with PowerShell scripts.
Important: This solution is for you if you currently use Microsoft Intune and don’t use third-party application patching solutions with Microsoft Configuration Manager.
The origin of Windows update policy conflicts
Policy conflicts can prevent successful deployment of Windows quality and feature updates. These issues are common in environments that rely on Configuration Manager and Group Policy Objects (GPOs).
Have you transitioned to modern management through co-management and shifted the control slider to Microsoft Intune? This step is crucial for enabling Windows Autopatch. However, legacy configurations can leave registry artifacts that disrupt the service operations.
When you use Configuration Manager, it’s important you don’t enable software update client settings that might conflict with Autopatch policies. If you currently allow or plan to allow Microsoft 365 app updates for Windows Autopatch–enrolled devices, the best practice is to disable Office updates via Configuration Manager. Alternatively, if you don’t use Configuration Manager to distribute third-party application updates, you can disable the software update client entirely. Please make sure that you remove any existing client configuration that can conflict with Autopatch, unless you’re using a third-party application patching solution. Review how in Client settings in Configuration Manager.
However, even well-configured environments might retain registry artifacts in the registry. Take these primary actions, for which we provide details below, to address update-policy-related registry artifacts:
Copy the detection script
Copy the remediation script.
Upload and deploy the scripts in Microsoft Intune
Monitor script execution.
Collect log files.
Note: This solution is based on recommendations in our official documentation, such as Conflicting configurations.
Copy the detection script
This PowerShell script performs several operations to detect and log specific Windows Update policy settings that could prevent correct update deployments. The detection script:
Defines log location and name. The script sets up variables for the path ($TranscriptPath) and name ($TranscriptName) of the log file where it will store the output. These point to a log file named “AutoPatchDetection.log” within the following folder: C:ProgramDataMicrosoftIntuneManagementExtensionLogs.
Creates log directory (if necessary). The script attempts to create the directory specified by $TranscriptPath if it doesn’t already exist, using the -Force parameter to overwrite any existing files without prompting for confirmation.
Stops orphaned transcripts. The script checks for any leftover PowerShell logging sessions and stops them to prevent interference. If there’s no active transcript session, it catches the resulting error and does nothing, preventing the script from stopping.
Starts transcription. The script begins a new transcription session. It saves the output to the specified log file and appends to it if it already exists.
Creates registry key array. The script creates an array ($regkeys) to hold objects representing specific registry keys related to Windows Update policies. Each object contains a name and a path indicating the location of the registry key and the value that it’s looking for.
Populates array with key information. The script adds objects to the $regkeys array representing the following registry keys:
DoNotConnectToWindowsUpdateInternetLocations
DisableWindowsUpdateAccess
NoAutoUpdate
Important: These keys are associated with policies that might limit the functionality of Windows updates.
Checks registry settings. The script iterates over each object in the $regkeys array, checking if the specified registry key exists and contains the specified property (expected policy setting). If it finds a key that matches, the script raises a flag $RemediationNeeded. This flag indicates that there are registry settings that need correction and have been logged.
Logs and exits based on findings.
If any incorrect settings were detected ($RemediationNeeded -eq $true), the script logs the issue, ends the logging session, and exits with code 1. Code 1 indicates that an error was found.
If no problems are found, the script logs that the registry settings are correct, stops logging, and exits with code 0. Code 0 indicates that everything is in order.
Tip: You can either copy the code presented here, or, if you want to engage with your peers, get it from GitHub.
$TranscriptPath = “C:ProgramDataMicrosoftIntuneManagementExtensionLogs”
$TranscriptName = “AutoPatchDetection.log”
new-item $TranscriptPath -ItemType Directory -Force
# stopping orphaned transcripts
try
{
stop-transcript|out-null
}
catch [System.InvalidOperationException]
{}
Start-Transcript -Path $TranscriptPath$TranscriptName -Append
# initialize the array
[PsObject[]]$regkeys = @()
# populate the array with each object
$regkeys += [PsObject]@{ Name = “DoNotConnectToWindowsUpdateInternetLocations”; path = “HKLM:SOFTWAREPoliciesMicrosoftWindowsWindowsUpdate”}
$regkeys += [PsObject]@{ Name = “DisableWindowsUpdateAccess”; path = “HKLM:SOFTWAREPoliciesMicrosoftWindowsWindowsUpdate”}
$regkeys += [PsObject]@{ Name = “NoAutoUpdate”; path = “HKLM:SOFTWAREPoliciesMicrosoftWindowsWindowsUpdateAU”}
foreach ($setting in $regkeys)
{
write-host “checking $($setting.name)”
if((Get-Item $setting.path -ErrorAction Ignore).Property -contains $setting.name)
{
write-host “$($setting.name) is not correct”
$RemediationNeeded = $true
}
}
if ($RemediationNeeded -eq $true)
{
write-host “registry settings are incorrect”
Stop-Transcript
exit 1
}
else
{
write-host “registry settings are correct”
Stop-Transcript
exit 0
}
Copy the remediation script
You can remediate Windows Update policy conflicts with this PowerShell script. It removes specific registry keys that can prevent updates from being deployed successfully. The remediation script:
Sets up log file. It establishes a file name and a directory where the script’s output will be recorded for logging purposes: C:ProgramDataMicrosoftIntuneManagementExtensionLogsAutoPatchRemediation.log.
Creates log directory (if necessary). The script ensures the existence of the specified directory for the log file. If it doesn’t already exist, the script creates it using the -Force parameter to override any potential issues without prompting.
Stops orphaned transcripts. It attempts to stop any transcription (logging) sessions that might have been left running previously. If no such session is active, and an error occurs, it catches the error to prevent the script from failing at this point.
Starts new transcription. It begins logging the script’s output to the specified log file, appending to it if the file already exists. This process records all actions taken by the script.
Creates registry key array. It creates an array to hold objects, each representing a specific registry key related to Windows Update policies that might cause conflicts.
Populates array with target keys. The script adds several objects to this array, each specifying the name and path of a registry key that potentially conflicts with Windows updates. These keys include:
DoNotConnectToWindowsUpdateInternetLocations
DisableWindowsUpdateAccess
NoAutoUpdate
Remediates conflicts. For each registry key object in the array, the script checks if the specified key exists and contains the property (name) indicated.
If the property exists and indicates a potential policy conflict, the script removes this property from the registry to remediate the conflict. It then logs this action.
If the property does not exist, it logs that the specific setting was not found. In that case, no action is needed for that key.
Stops transcription. Once all specified registry keys have been checked and remediated as necessary, the script stops logging its actions and closes the log file.
Tip: You can either copy the code presented here, or, if you want to engage with your peers, get it from GitHub.
$TranscriptPath = “C:ProgramDataMicrosoftIntuneManagementExtensionLogs”
$TranscriptName = “AutoPatchRemediation.log”
new-item $TranscriptPath -ItemType Directory -Force
# stopping orphaned transcripts
try
{
stop-transcript|out-null
}
catch [System.InvalidOperationException]
{}
Start-Transcript -Path $TranscriptPath$TranscriptName -Append
# initialize the array
[PsObject[]]$regkeys = @()
# populate the array with each object
$regkeys += [PsObject]@{ Name = “DoNotConnectToWindowsUpdateInternetLocations”; path = “HKLM:SOFTWAREPoliciesMicrosoftWindowsWindowsUpdate”}
$regkeys += [PsObject]@{ Name = “DisableWindowsUpdateAccess”; path = “HKLM:SOFTWAREPoliciesMicrosoftWindowsWindowsUpdate”}
$regkeys += [PsObject]@{ Name = “NoAutoUpdate”; path = “HKLM:SOFTWAREPoliciesMicrosoftWindowsWindowsUpdateAU”}
foreach ($setting in $regkeys)
{
write-host “checking $($setting.name)”
if((Get-Item $setting.path -ErrorAction Ignore).Property -contains $setting.name)
{
write-host “remediating $($setting.name)”
Remove-ItemProperty -Path $setting.path -Name $($setting.name)
}
else
{
write-host “$($setting.name) was not found”
}
}
Stop-Transcript
Upload and deploy the scripts in Microsoft Intune
So, let’s execute our developed solution. First, we’ll deploy the detection and remediation scripts through Microsoft Intune. Here’s where you can ensure precise configuration adjustments, resolve policy conflicts, and enhance Windows update deployments with Windows Autopatch.
Creating a new remediation script
Sign in to https://intune.microsoft.com.
Navigate to Devices.
Select Scripts and remediations. Out of the available script options, select Remediations.
Select Create to start creating a new custom script.
To Create custom script, you’ll complete all required information step by step in the wizard as shown below.
Using the wizard to create a custom script
Let’s walk through the wizard to create a custom script based on our recommendations.
In the Basics tab, give your script a name and fill out the following details:
Name: Enter the name of your remediation script. For example, you can call it “Windows Autopatch – Auto-remediation policies.”
Description (optional): Enter a description with helpful details about this script.
Publisher (automatic): Your name is automatically filled in, but you can change it.
Version: Give your script a version number. This helps you track changes and ensures consistency across deployments.
In the Settings tab, add detection and remediation scripts to the solution:
Add detection script: Select the folder icon to locate your detection script and open it. This will add the script.
Add remediation script: Select the folder icon to locate the remediation script and open it. This will add the script.
Make sure to keep the default settings of “No” on all the following script behaviors. (Tip: Move down the page if you don’t see these options right away.)
Run this script using the logged-on credentials: No
Enforce script signature check: No
Run script in 64-bit PowerShell: No
In the Scope tags tab, select your scope tags if you wish to use them.
In the Assignment tab, configure the deployment options as follows:
Assign to: You can ignore this option for now.
Assignment group: Select the “Windows Autopatch – Devices All” group. That will ensure that you target all devices registered in the Windows Autopatch service.
Schedule: Select Daily to edit the schedule for your remediation. You have multiple options to run the script. You can run it once, hourly, or daily. You can choose if and how often to repeat it. You can also choose a start time. Note: We recommend running this script every hour to remediate any drifts.
Filter: Optionally, use filters to assign a policy based on the rules that you created earlier. We’re not using filters in this guide.
Filter mode: Optionally, include or exclude the groups that receive the filter assignment.
Select Next to review your settings and create your remediation script.
Select Create. If all goes as planned, you’ll now have your remediation script created and assigned to all your Windows Autopatch devices.
Monitor script execution
After deployment, use Intune to monitor the execution status and outcomes of your scripts through the Device status page within Proactive remediation script.
If you select the script package name in Remediations, you’ll get some information about how your script package is performing
If you’d like to have more insights into the Detection status and Remediations status metrics, check the Overview page.
Collect log files
We have some intelligence built into our scripts. It’s contained in log files that are being saved in the Microsoft Intune Management Extension (IME) Log folder.
Important: The generated log files are stored in the IME folder C:ProgramDataMicrosoftIntuneManagementExtensionLogs. This simplifies the diagnostic process and allows for easy collection through Intune.
Use the Collect diagnostics function in Intune to obtain these log files produced by the detection and remediation scripts. Here are the steps to collect and read the logs:
From https://intune.microsoft.com, navigate to Devices.
Go to All devices.
Enter your device name in the search bar.
Select the device name to view the device’s information.
Select Collect diagnostics to ask Intune to gather the diagnostic data from the device.
Once the diagnostic files are uploaded, the Device action status changes from “Pending” to “Complete.” (Tip: You might want to hit F5 a couple times to speed up the refresh in the console.) If you wish, you can download the zip file with all the log files from the Device diagnostics page for each device.
Open the zip file and search for the IntuneManagementExtension_Logs folder. That folder contains our two log files created by the remediation script. If no remediation was required, you’ll have only the detection log.
If you want to know if the remediations were executed, search for “remediating” in the autopatchremediation.log file. You’ll notice that every check is listed in the log. Whenever a drift is detected, it will be flagged for remediation by the detection script.
Final considerations
By following these guidelines, you can streamline update deployments and maintain system integrity.
Important: Make sure to test this in your environment on a small set of devices before pushing it out.
In the complex ecosystem of modern IT environments, ensuring the smooth deployment of Windows updates is critical. With these auto-remediation scripts you can resolve policy conflicts and maintain system performance more effectively with Windows Autopatch.
Continue the conversation. Find best practices. Bookmark the Windows Tech Community, then follow us @MSWindowsITPro on X and on LinkedIn. Looking for support? Visit Windows on Microsoft Q&A.
Microsoft Tech Community – Latest Blogs –Read More
Running AutoCAD from MatLAB
Hello, \trying to run AutoCAD from MATLAB.
Tried the code proposed here
https://www.mathworks.com/matlabcentral/answers/1921990-using-the-matlab-net-interface-to-interact-with-autocad
Unfortunately I got this error
Error using dotnetAutoCADExample
Message: Call was rejected by callee. (Exception from HRESULT: 0x80010001 (RPC_E_CALL_REJECTED))
Source: Autodesk.AutoCAD.Interop
HelpLink: None
The topic was closed so I was not able to ask questions there.
Any useas?
What I need to do is plot some objects based on numbers calculated in a loop in MATLAB
Thank youHello, \trying to run AutoCAD from MATLAB.
Tried the code proposed here
https://www.mathworks.com/matlabcentral/answers/1921990-using-the-matlab-net-interface-to-interact-with-autocad
Unfortunately I got this error
Error using dotnetAutoCADExample
Message: Call was rejected by callee. (Exception from HRESULT: 0x80010001 (RPC_E_CALL_REJECTED))
Source: Autodesk.AutoCAD.Interop
HelpLink: None
The topic was closed so I was not able to ask questions there.
Any useas?
What I need to do is plot some objects based on numbers calculated in a loop in MATLAB
Thank you Hello, \trying to run AutoCAD from MATLAB.
Tried the code proposed here
https://www.mathworks.com/matlabcentral/answers/1921990-using-the-matlab-net-interface-to-interact-with-autocad
Unfortunately I got this error
Error using dotnetAutoCADExample
Message: Call was rejected by callee. (Exception from HRESULT: 0x80010001 (RPC_E_CALL_REJECTED))
Source: Autodesk.AutoCAD.Interop
HelpLink: None
The topic was closed so I was not able to ask questions there.
Any useas?
What I need to do is plot some objects based on numbers calculated in a loop in MATLAB
Thank you matlab, autocad, api MATLAB Answers — New Questions
How does MATLAB Parallel Server check out seats?
How does MATLAB Parallel Server check out seats?How does MATLAB Parallel Server check out seats? How does MATLAB Parallel Server check out seats? MATLAB Answers — New Questions
Cell Displaying Wrong
For many years I have linked cells from the same page, or separate tabs within a document, or even from document to document, never with any issues. But now I am trying to link a text field cell to another text field cell in a separate tab within the the same document. The tab with the info is just a persons name which I want to have display in another page.
I have tried everything I can find which toggles the display of cells from formula to the results of the formula, and no matter what I do it ONLY show’s the formula and not the results of the formula.
Now as I’ve been working trying to fix this issue all cells anywhere in the document now are doing this. Be it same page, different page / tab, or separate document!
For many years I have linked cells from the same page, or separate tabs within a document, or even from document to document, never with any issues. But now I am trying to link a text field cell to another text field cell in a separate tab within the the same document. The tab with the info is just a persons name which I want to have display in another page. I have tried everything I can find which toggles the display of cells from formula to the results of the formula, and no matter what I do it ONLY show’s the formula and not the results of the formula. Now as I’ve been working trying to fix this issue all cells anywhere in the document now are doing this. Be it same page, different page / tab, or separate document! Read More
Making Attachments Mandatory for List Items on Power Apps
Hello,
I am trying to make newly added list items with attachments mandatory and have written the following formula for a customized Power Apps form.
However, when I attempt to use this form, it returns the following error, and I am unable to save a new item.
Does anyone have an idea about what is wrong?
Thnx in advance!
Hello, I am trying to make newly added list items with attachments mandatory and have written the following formula for a customized Power Apps form. However, when I attempt to use this form, it returns the following error, and I am unable to save a new item. Does anyone have an idea about what is wrong? Thnx in advance! Read More
Can I send a survey to multiple people w different data pre-filled?
I am trying to get feedback from our hiring managers for our recruiters. Can I use the same Form for the survey, but update the job and recruiter before sending to a specific hiring manager. Is there a way to do this (maybe with Power Automate?) and have all results in the same Excel sheet?
I am trying to get feedback from our hiring managers for our recruiters. Can I use the same Form for the survey, but update the job and recruiter before sending to a specific hiring manager. Is there a way to do this (maybe with Power Automate?) and have all results in the same Excel sheet? Read More
Find Disk IOPs via PowerShell (What metric to use)
Hello:
1. Can someone please advise what metric should I use to find IOPs (let’s say for Read)?
I’m going to run something like below, but not sure what Metric to use:
Hello: 1. Can someone please advise what metric should I use to find IOPs (let’s say for Read)? I’m going to run something like below, but not sure what Metric to use: Get-AzMetric -ResourceId $resourceId -TimeGrain 6:00:00 -StartTime $st30 -EndTime $et -DetailedOutput -MetricNames “DiskReadIOPS???” 2. In additional, for the future, is there a way to see/find from Get-AzMetric all available Metrics for specific Resource? Thank you! Read More
Copilot Prompt Limit Difference Between Licenses
Hello,
Based on a user’s M365/O365 license, are prompt character limits changed for Copilot for M365 prompts? For example, a user assigned a Business Basic license has a 2,000-character limit for prompts, and a user assigned an Office 365 E3 license has a 4,000 character-limit for prompts. Why is this the case? Does licensing change anything with prompt limits?
Thank you
Hello,Based on a user’s M365/O365 license, are prompt character limits changed for Copilot for M365 prompts? For example, a user assigned a Business Basic license has a 2,000-character limit for prompts, and a user assigned an Office 365 E3 license has a 4,000 character-limit for prompts. Why is this the case? Does licensing change anything with prompt limits?Thank you Read More
Windows Licensing for Startups
Our company recently joined the Microsoft for Startups program. We understand that this gives us access to a lot of Azure resources but we are building a physical product that we want to base on a Windows LTSC OS. I can’t find any information about whether or not the Startups program includes any OS licensing benefits. Does anyone have any insight?
Our company recently joined the Microsoft for Startups program. We understand that this gives us access to a lot of Azure resources but we are building a physical product that we want to base on a Windows LTSC OS. I can’t find any information about whether or not the Startups program includes any OS licensing benefits. Does anyone have any insight? Read More
Adoption Masterminds September Meetup
Excited to share the registration link for the Adoption Masterminds September meetup: https://events.teams.microsoft.com/event/03b3e79b-99c4-4c52-b19d-844800f3c211@8b3dd73e-4e72-4679-b191-56da1588712b
Join us as Caitlin O’Kane shares her experience setting up and running a Digital Ambassador Network at her company!!! Caitlin and I met and she showed me around and I left full of ideas for my own Champions Program, and that is our goal for this session!!!
Come ready to hear, share, and explore together!!!
Excited to share the registration link for the Adoption Masterminds September meetup: https://events.teams.microsoft.com/event/03b3e79b-99c4-4c52-b19d-844800f3c211@8b3dd73e-4e72-4679-b191-56da1588712b Join us as Caitlin O’Kane shares her experience setting up and running a Digital Ambassador Network at her company!!! Caitlin and I met and she showed me around and I left full of ideas for my own Champions Program, and that is our goal for this session!!! Come ready to hear, share, and explore together!!! Read More
Stuck at Employment verification rejection
Tried to update Developer account info and always got rejected at “Employment verification” step.
“Fix now” button just reload the page and not allow to upload docs.
Tried in Edge, Chrome, Safari.
@JillArmourMicrosoft Tried to update Developer account info and always got rejected at “Employment verification” step.”Fix now” button just reload the page and not allow to upload docs.Tried in Edge, Chrome, Safari. Read More
Restrict only use Safari, Edge and Firefox browsers on iPAD
How do I go about restricting only these 3 browsers to be used for iPAD? Is there an Intune policies that can be configured?
How do I go about restricting only these 3 browsers to be used for iPAD? Is there an Intune policies that can be configured? Read More
Alert: Compliance Manager Default Alert Policy
Hi community,
I received this email, can anyone tell me more about this and if I should take any action?
Currently all my privileged admin users have a conditional access policy to force them to set up MFA.
Hi community,I received this email, can anyone tell me more about this and if I should take any action?Currently all my privileged admin users have a conditional access policy to force them to set up MFA. Read More
Effortlessly Migrate Azure VMs between zones
For various reasons you might come across a situation when you need to migrate your Azure VMs from one zone to another. Migrating Azure VMs between zones can be a daunting and time-consuming task, especially when done manually. I’m excited to share the Python tool I’ve developed that simplifies the process of migrating VMs along with its data disks across zones within Microsoft Azure.
The Challenge of VM migration
Migrating VMs specially along with its data disks, between zones can be a daunting task. It involves creating snapshots, creating disks from the snapshots in the new zone, creating VMs using those disks and ensuring that all configurations are correctly set up in the new zone. This process is not only time-consuming but also prone to errors if done manually.
Introducing the Azure VM Migration Tool
To address this challenge, I’ve created a Python script that automates the entire migration process. The tool takes snapshots of the disks attached to a VM in one Azure zone, create new disks using those snapshots in another zone, and create new VM using those disks in another zone and handling all the necessary steps in between. All you need to do is to provide necessary information in a CSV file and it will take care of all the complex tasks.
Key Features
Snapshot Creation: The tool automatically creates snapshots of the disks attached to a VM, ensuring that a consistent state of the disk is captured for migration.
Disks creation in target zone: It then creates disks in the target zone using the snapshots and abstract away the complexity of this operation.
Create VM and attach data disks: Now new VMs are being created in the new zone and all disks are attached to the new VM.
Logging: Throughout the process, the tool provides detailed logging, making it easy to monitor the migration and troubleshoot any issues that may arise.
How It Works
The script requires minimal setup. Users need to provide a CSV file with following information. A sample CSV has also been shared in the repository.
Names of the source VMs
Source VM Resource Group
Operating system type
New Resource Group where new VMs need to be created
Target zone where VMs need to be created
Size of the new VM.
Apart from the above information, following information also needs to be provided in the script.
Virtual Network Name
Subnet Name
Virtual Network
The tool then performs the following steps:
1. Capture Subnet ID: It starts by capturing the subnet ID that will be used in the VM creation process in the target zone.
2. Create Snapshot: The tool creates snapshots of the disks attached to the VM.
3. Create disks from the snapshot: The snapshots are then used to create disk in the target zone.
4. Create VM and Attach Disks: Finally, the new OS disk is used to create new VM in the target zone and the data disks are attached to the VM.
Getting Started
To use the tool, you’ll need Python 3.6.x and the Azure CLI installed on your machine. Then, simply run the script with `python az_vm_migration_tool.py`, passing the name of a CSV file containing the migration parameters as an argument.
Github repo
Conclusion
The Azure VM Migration Tool represents a significant step forward in simplifying the process of migrating VMs within Azure. By automating the migration process, it not only saves time but also reduces the potential for errors, making it an invaluable resource for anyone managing Azure VMs.
Microsoft Tech Community – Latest Blogs –Read More