Tag Archives: microsoft
Managed devices being detected as unmanaged in Access policy
I have an Access policy that targets devices that are not hybrid AD joined to block the OneDrive client syncing on personal devices. This is tested and working, but i’m finding that 1 of my pilot managed devices is intermittently displaying the cloud apps popup when OneDrive is being accessed.
The device in question is a corporate laptop running Windows 11 with a join type of “Microsoft Entra joined”.
When I look at the logs all OneDrive activities are allowed except for the ones with a description of “open in native app” which are being blocked, these have an activity type of “Download File”. Under User Agent Tag it only shows Intune Compliant, although I am not targeting this in the Access policy. I’ve noticed many computers in Entra ID are showing as non-compliant and didnt initially want to restrict them so did not tick it, should I?
Given a fleet of 17,000 devices, I need to understand why we are getting false positives and fix it before I roll out the policy to all of them. Any help is appreciated.
Thanks.
I have an Access policy that targets devices that are not hybrid AD joined to block the OneDrive client syncing on personal devices. This is tested and working, but i’m finding that 1 of my pilot managed devices is intermittently displaying the cloud apps popup when OneDrive is being accessed. The device in question is a corporate laptop running Windows 11 with a join type of “Microsoft Entra joined”. When I look at the logs all OneDrive activities are allowed except for the ones with a description of “open in native app” which are being blocked, these have an activity type of “Download File”. Under User Agent Tag it only shows Intune Compliant, although I am not targeting this in the Access policy. I’ve noticed many computers in Entra ID are showing as non-compliant and didnt initially want to restrict them so did not tick it, should I? Given a fleet of 17,000 devices, I need to understand why we are getting false positives and fix it before I roll out the policy to all of them. Any help is appreciated. Thanks. Read More
Migration Tenant to Tenant in IMAP
hello everyone,
I have to do a tenant to tenant migration and for various reasons I only have imap available, and a single administrative user on the active tenant I have contoso.com which is also part of other domains, I have to bring contoso.com to a new tenant, before the migration I called the new tenant contoso.net. I use the microsoft migration tool but it tells me that it does not find the username email address in the new tenant where I created email address but is different the @domain. in the meantime however the users must continue to use the old tenant until the cutoff. What should I do?
hello everyone,I have to do a tenant to tenant migration and for various reasons I only have imap available, and a single administrative user on the active tenant I have contoso.com which is also part of other domains, I have to bring contoso.com to a new tenant, before the migration I called the new tenant contoso.net. I use the microsoft migration tool but it tells me that it does not find the username email address in the new tenant where I created email address but is different the @domain. in the meantime however the users must continue to use the old tenant until the cutoff. What should I do? Read More
Error message 500 when try to access Bookwithme link after i am signed in with my account.
Hello everyone,
I have an issue at my office where i am unable to access a https://outlook.office.com/bookwithme link when i am signed in with my office.com account. (i tried this with a private email and it seems to work fine) we have an on Premise Exchange and is managed by our IT Teams.
If i try this with another company email it seems to work and i am able to see the booking website and chose the date and book the appointment.
FYI: I tried it with different computers, browser cache clean, many browsers differently also via Incognito and it didnt work.
Does anyone have an idea what the issue may be and how to resolve it?
The error message is as follows:
Would appreciate if someone can assist and help to at least identify what is going on because we used to check the licenses and everything is fine.
Hello everyone,I have an issue at my office where i am unable to access a https://outlook.office.com/bookwithme link when i am signed in with my office.com account. (i tried this with a private email and it seems to work fine) we have an on Premise Exchange and is managed by our IT Teams. If i try this with another company email it seems to work and i am able to see the booking website and chose the date and book the appointment.FYI: I tried it with different computers, browser cache clean, many browsers differently also via Incognito and it didnt work. Does anyone have an idea what the issue may be and how to resolve it?The error message is as follows: Would appreciate if someone can assist and help to at least identify what is going on because we used to check the licenses and everything is fine. Read More
(Classic Outlook) automatically delete items in “Sent Folder” if sent to a specific person?
Hello all,
I’ve applied a rule to an inbox I’m using that automatically forwards all e-mail received there to my personal address.
Issue is, this clogs up the “sent” folder with pointless duplicates.
So I tried to apply a rule to the “Sent” folder to get rid of these mails, issue is that once I select the rule “sent to user or public group” and write the e-mail address I want to filter, the options for the rule that appear afterwards don’t include the “delete the e-mail” ones.
There’s only the “create a copy and move to folder” option. Which is not what I need.
Any Idea on how I could solve this without contacting the mail server admin to auto forward from there?
Hello all, I’ve applied a rule to an inbox I’m using that automatically forwards all e-mail received there to my personal address.Issue is, this clogs up the “sent” folder with pointless duplicates. So I tried to apply a rule to the “Sent” folder to get rid of these mails, issue is that once I select the rule “sent to user or public group” and write the e-mail address I want to filter, the options for the rule that appear afterwards don’t include the “delete the e-mail” ones.There’s only the “create a copy and move to folder” option. Which is not what I need.Any Idea on how I could solve this without contacting the mail server admin to auto forward from there? Read More
Add cell from other column into a column by cell
Column 6 and Column 11, I want first cell in column 11 to be mapped inbetween of the 1st and 2nd cell in column 6, then second cell in column 11 to be mapped inbetween of the 2nd and 3rd cell in column 6, and so on. Is there any idea how to do this?
Process would look like this
Step one : Insert new rows inbetween rows in column 6 : row 1 and 2, and row 2 and 3
Step 2 : drag value of cell 1 and 2 from column 11 in to the respective cell in column 6
This would be manual, but is there an automatic way by using formula on excel to address this issue?
Please help, thank you.
Also, if you need the excel file do tell.
Column 6 and Column 11, I want first cell in column 11 to be mapped inbetween of the 1st and 2nd cell in column 6, then second cell in column 11 to be mapped inbetween of the 2nd and 3rd cell in column 6, and so on. Is there any idea how to do this?Process would look like this Step one : Insert new rows inbetween rows in column 6 : row 1 and 2, and row 2 and 3 Step 2 : drag value of cell 1 and 2 from column 11 in to the respective cell in column 6 This would be manual, but is there an automatic way by using formula on excel to address this issue?Please help, thank you. Also, if you need the excel file do tell. Read More
腾龙公司网址【微QGY889889】
数智创新变革未来安全性与合规性信息安全的重要性合规性的定义与要求相关法律法规介绍企业合规性管理框架信息安全风险评估常见安全威胁与应对措施合规性审计与监督未来趋势,脚本安全性和合规性第一部分脚本漏洞利用机制分析2第二部分合规性要求与技术对策。
数智创新变革未来安全性与合规性信息安全的重要性合规性的定义与要求相关法律法规介绍企业合规性管理框架信息安全风险评估常见安全威胁与应对措施合规性审计与监督未来趋势,脚本安全性和合规性第一部分脚本漏洞利用机制分析2第二部分合规性要求与技术对策。 Read More
MS Defender for MAC OS do not generate alert when I download malware
Hello!
I have the latest version MS Defender for Endpoint (MAC OS) with the last update. First I try to download any malware from test malware repos (like https://objective-see.org/malware.html). But when extracting files from the archive, Defender does not generate any alerts. Why?
But if I made a scan folder with MS Defender after extracting, MS Defender alerts work OK.
Hello!I have the latest version MS Defender for Endpoint (MAC OS) with the last update. First I try to download any malware from test malware repos (like https://objective-see.org/malware.html). But when extracting files from the archive, Defender does not generate any alerts. Why?But if I made a scan folder with MS Defender after extracting, MS Defender alerts work OK. Read More
华纳公司开户【微QGY889889】
学术类的文章,自己投稿,发表率很低,特别是核心刊物,用稿率只有1%左右,其中还不包括向名家的约稿、领导的稿子等,另外,发表周期也特别长,有的甚至拖上一年多。
而委托本机构发表,可以有效避免这些情况,本机构拥有和大量杂志社长期合作资源,直接走的绿色通道,发表成功有保障。
学术类的文章,自己投稿,发表率很低,特别是核心刊物,用稿率只有1%左右,其中还不包括向名家的约稿、领导的稿子等,另外,发表周期也特别长,有的甚至拖上一年多。 而委托本机构发表,可以有效避免这些情况,本机构拥有和大量杂志社长期合作资源,直接走的绿色通道,发表成功有保障。 Read More
腾龙公司开户【微QGY889889】
②破格申报中级职称职务者必须具备下列条件中的二条:
获国家科技进步、星火计划四等奖或省、部级科技进步、星火计划三等奖以上项目的主要完成者,或获地(市)科技进步二等奖以上项目的主要完成者或获省部优质产品或优质工程的主要技术负责人。
在地市级以上报刊发表专业技术论文三篇以上或专著。
直接主持中型项目或中型骨干企业的专业技术工作,且连续二年以上取得了明显效益者。
担任助理级期间,成绩显著且获地(市)级优秀企业家或先进专业技术工作者称号的。
③有些条件符合者可以免计算机职称考试以及职称英语考试。
②破格申报中级职称职务者必须具备下列条件中的二条:获国家科技进步、星火计划四等奖或省、部级科技进步、星火计划三等奖以上项目的主要完成者,或获地(市)科技进步二等奖以上项目的主要完成者或获省部优质产品或优质工程的主要技术负责人。在地市级以上报刊发表专业技术论文三篇以上或专著。直接主持中型项目或中型骨干企业的专业技术工作,且连续二年以上取得了明显效益者。担任助理级期间,成绩显著且获地(市)级优秀企业家或先进专业技术工作者称号的。③有些条件符合者可以免计算机职称考试以及职称英语考试。 Read More
Azure Data Factory Multiple Copy Activity problem with pgSql
Hello,
I have been trying to copy multiple tables from a PostgreSQL database out of Azure using the copy activity and pasting the data in azure PostgreSQL.
It’s like I have two copy activities for copying data into two tables but it is giving me this error
Operation on target Copy data1 failed: ‘Type=Npgsql.PostgresException,Message=XX000: Tenant or user not found,Source=Npgsql,
Anybody who can guide me on this?
Your guidance in this matter will be highly appreciated.
Hello, I have been trying to copy multiple tables from a PostgreSQL database out of Azure using the copy activity and pasting the data in azure PostgreSQL. It’s like I have two copy activities for copying data into two tables but it is giving me this error Operation on target Copy data1 failed: ‘Type=Npgsql.PostgresException,Message=XX000: Tenant or user not found,Source=Npgsql, Anybody who can guide me on this? Your guidance in this matter will be highly appreciated. Read More
KB sharepoint page
Hello everyone,
I am wondering if anyone knows how to create a similar page on SharePoint like the link below?
I am not sure what’s the exact word to search to even look this up.
https://learn.microsoft.com/en-us/windows-hardware/drivers/debuggercmds/-shell–command-shell-
What I am wanting is to have like a KB style
– the page will set to 1/3 on the left
showing the whole list of heading they can search / click on
and on the right hand side is the content when select the heading on the left side.
– to have the list of topics on the left hand side
Hello everyone, I am wondering if anyone knows how to create a similar page on SharePoint like the link below? I am not sure what’s the exact word to search to even look this up. https://learn.microsoft.com/en-us/windows-hardware/drivers/debuggercmds/-shell–command-shell- What I am wanting is to have like a KB style- the page will set to 1/3 on the leftshowing the whole list of heading they can search / click onand on the right hand side is the content when select the heading on the left side.- to have the list of topics on the left hand side Read More
Integrating Workload profile Container App with Front Door and Application Gateway Private Link
Introduction
For the workload profile container app, private link support is not yet available. This is because the “Private Link Service does not support a load balancer that has an IP-based backend pool, which is used in Consumption + Dedicated environments (Workload Profile)”. Although we have a roadmap to implement this feature (Private link support for Workload Profiles · Azure Container Apps Roadmap), there is currently no ETA.
In the meantime, I will guide you on how to integrate a workload profile container app with Azure Front Door using an Application Gateway. The architecture involves using the Application Gateway private link to connect to the Front Door, and placing the Application Gateway in the same VNET as the container app to achieve this integration.
Note: As of August 2024, the private link for integrating Application Gateway with Front Door is still in public preview. Please avoid using it in production environments. For more details, refer to the documentation: Secure your Origin with Private Link in Azure Front Door Premium | Microsoft Learn. You can also check the document to see if it has reached General Availability (GA). Once it is GA, it will be safe to use in production environments.
Instruction
1. Create Container App with workload profile in the internal VNET
This step is straightforward. Follow the official documentation here (Integrate a virtual network with an internal Azure Container Apps environment | Microsoft Learn) to create a new internal Azure Container App environment in the VNET. Here are a few important points to note:
(1) When using the workload profiles environment, ensure you have a /27 or larger subnet
(2) After creation, enable Ingress for “Limited to VNET” to allow Application Gateway traffic to reach the container app
2. Create the Application gateway in the same VENT as Azure Container App
Follow the step-by-step official document here (Protect Azure Container Apps with Application Gateway and Web Application Firewall (WAF) | Microsoft Learn) to create the Application Gateway in the same VNET as your Azure Container App. Here are a few important things to note during this process:
(1) Create a Private DNS Zone for the Container App’s default FQDN. This ensures that the Application Gateway can properly resolve the Container App’s FQDN
(2) Prepare a custom domain and certificate for the Application Gateway. This allows the Front Door to set up a private link to the Application Gateway’s custom domain using HTTPS
Once you’ve completed Steps 1 and 2, head over to your specified custom domain to check if the connection between the Application Gateway and Azure Container App is working smoothly.
3. Create Azure Front Door and integrate with Application Gateway via private link
When I wrote this blog in August 2024, the Azure portal still did not support integration with Application Gateway. (Secure your Origin with Private Link in Azure Front Door Premium | Microsoft Learn) Therefore, we might need to use Azure CLI commands to achieve this. Please follow the steps 3-1 to 3-7 to finish the setup.
3-1. Create an Azure Front Door Profile
Important Points to Note:
(1) Ensure you are using the Premium SKU.
(2) Create the resource group first, or you will encounter the error: InvalidArgumentValue: Missing required field: –location
az afd profile create –profile-name <profile-name> –resource-group <RG-name> –sku Premium_AzureFrontDoor
3-2. Create endpoint
az afd endpoint create –resource-group <RG-name> –endpoint-name <endpoint-name> –profile-name <profile-name> –enabled-state Enabled
3-3. Create origin group
az afd origin-group create –resource-group <RG-name> –origin-group-name <origin-group-name> –profile-name <profile-name> –probe-request-type GET –probe-protocol Https –probe-interval-in-seconds 60 –probe-path / –sample-size 4 –successful-samples-required 3 –additional-latency-in-milliseconds 50
3-4. Manually Adding Private Link Configuration for Application Gateway
When adding a private link configuration, keep these three points in mind:
(1) Create a New Subnet: Ensure you create a new subnet specifically for the private link.
(2) Select Frontend IP: Choose the Frontend IP that is connected to the listener.
(3) Save Frontend IP Configuration: Save the value for “Frontend IP Configuration” as it will be needed for the parameter –private-link-sub-resource-type in the next step.
3-5. Create origin and integration with Application Gateway private link
az afd origin create –enabled-state Enabled –resource-group <RG-name> –origin-group-name <origin-group-name> –origin-name <origin-name> –profile-name <profile-name> –host-name <custom-domain-name-for-appgw> –origin-host-header <custom-domain-name-for-appgw> –http-port 80 –https-port 443 –priority 1 –weight 500 –enable-private-link true –private-link-location <location-for-application-gateway> –private-link-request-message ‘AFD application gateway origin Private Link request.’ –private-link-resource <application-gateway-resourceID> –private-link-sub-resource-type <frontend-ip-configuration-name>
3-6. Go back to Application Gateway and approve Private link request
3-7. Create route
az afd route create –resource-group <RG-name> –profile-name <profile-name> –endpoint-name <endpoint-name> –forwarding-protocol MatchRequest –route-name route –https-redirect Enabled –origin-group <origin-group-name> –supported-protocols Http Https –link-to-default-domain Enabled
Congratulations! All the steps are complete. Now, you can try accessing the Azure Front Door default domain to ensure everything is working perfectly 🙂
Additional Suggestion
To ensure that the Application Gateway only accepts requests from Azure Front Door (AFD), you can use a Network Security Group (NSG). Follow these steps:
(1) Create a new NSG
(2) Add a rule to allow traffic only from the source (AzureFrontDoor.Backend) for port 443
(3) Add another rule to allow from source (GatewayManager) for port 65200 – 65535 *This is needed for Application Gateway to working
(4) Navigate to the Application Gateway subnet and attach this NSG
This will lock down access to the Application Gateway, allowing requests only from Azure Front Door.
Reference
Integrate a virtual network with an internal Azure Container Apps environment | Microsoft Learn
Protect Azure Container Apps with Application Gateway and Web Application Firewall (WAF) | Microsoft Learn
Secure your Origin with Private Link in Azure Front Door Premium | Microsoft Learn
Microsoft Tech Community – Latest Blogs –Read More
Introducing new OneDrive, Quick Links and Playlist cards for Viva Connections
Viva Connections is the one stop place for all employee service where employees can easily access the relevant company information and their personal tools. We keep on evolving and improving the Viva Connections experiences constantly with new out-of-the-box features and on new extensibility opportunities .
We are excited to announce the availability of three new out-of-the-box cards, which are available to be used within the Viva Connections dashboard. These cards are a OneDrive card (files), Quick Links card and the Playlist card.
These new cards are demonstrated in the following video with Pooja Gulati (Microsoft) & Vesa Juvonen (Microsoft).
OneDrive card
The OneDrive card is one such card which appears out-of-the-box without any configuration by the operator (Viva Connections “administrator”). It is a user-based card, and the end user can access the recently accessed, shared, and favorite files from this card. This OneDrive card gives a quick and straightforward way to access commonly used files by the user directly from the dashboard. Files are automatically opened in the most suitable solution in desktop, tablet and mobile devices.
This card is associated with Microsoft 365 Roadmap ID 388496.
Quick Links card
Quick Links card is used to expose relevant links for the end user. The operator will set up a list of commonly used links by the user based on their role or company objectives. Especially in the case of frontline workers, this comes handy as they are on the go and need relevant information easily accessible through their mobile devices. Quick Links card can be configured for a particular department, using audiences, which then enables relevant links specific to department employees or teams.
This card is associated with Microsoft 365 Roadmap ID 402189.
Playlist card
The Playlist card displays a list of video files listed in a specific playlist. This card can be, for example, targeted for new employee onboarding which covers a list of videos which the employee should view to complete the onboarding process of the organization. This could also refer to a group of videos to handle a security audit or certain announcements for an event or trouble shoot parts of an appliance. This card needs explicit configuration by an operator and videos can be made available with audience targeting in place if needed.
This card is associated with Microsoft 365 Roadmap ID 402190.
Frequently asked questions
When are these cards available?
Cards are gradually rolling out in the summer/autumn 2024 timeframe. Each card will be enabled one-by-one for customers, so you can expect them to be fully available within autumn 2024.
What do you need to prepare?
There is no need to prepare for these features as they will be simply available in your tenant automatically. If you have already enabled Viva Connections in your tenant, cards will be available for the operators in the dashboard editing experience, as they are enabled.
What is next?
Lot of new features in the roadmap of the Viva Connections. We are working on numerous new features to improve the Viva Connection experience based on customer and partner feedback. Your feedback and input are invaluable on building these experiences. Got an idea or feedback? – Please add comment below or use the Microsoft Feedback portal.
Thanks for reading. Please enjoy the new configuration options and let us know any feedback or questions in the comments.
Microsoft Tech Community – Latest Blogs –Read More
Flicker Issue in SharePoint online modern Site
Hi All,
Noticing flickering issue while loading SharePoint modern Site. We have customized the navigation menu with help of SPFx application customizer.
Please advise, it would be great help.
Regards,
Sangamesh
Hi All, Noticing flickering issue while loading SharePoint modern Site. We have customized the navigation menu with help of SPFx application customizer. Please advise, it would be great help. Regards,Sangamesh Read More
DLP content inspection for encrypted emails
can M365 DLP for exchange do content inspection for encrypted emails which are protected using standard rms templates (encrypt only) or MIP labels?
can M365 DLP for exchange do content inspection for encrypted emails which are protected using standard rms templates (encrypt only) or MIP labels? Read More
Logo Builder not available with Partner Launch Benefits?
This year we switched from using the Microsoft Action Pack to the Partner Launch Benefits pack. I was surprised to learn that the Logo Builder is *not* included in Partner Launch Benefits.
Is there some rational reason why this is the case?
This year we switched from using the Microsoft Action Pack to the Partner Launch Benefits pack. I was surprised to learn that the Logo Builder is *not* included in Partner Launch Benefits. Is there some rational reason why this is the case? Read More
Kiosk mode with non microsoft store app
New to Intune so go easy. I want to setup a Kiosk profile to apply to single purpose machines. The issue is the one application needed is not a store app?
When setting up the profile I appear to have to select Add Store App and then add the app. I believe I have to add the App in the AppsAll Apps section but from there how to add the legacy application?
New to Intune so go easy. I want to setup a Kiosk profile to apply to single purpose machines. The issue is the one application needed is not a store app? When setting up the profile I appear to have to select Add Store App and then add the app. I believe I have to add the App in the AppsAll Apps section but from there how to add the legacy application? Read More
Cannot play Live Photos in OneDrive Shared Album
I cannot play Live Photos stored in OneDrive Shared Albums when I access them from the OneDrive website under my account (I have a personal Microsoft 365 subscription). However, they can be played from the OneDrive website of the original owner of the album.
I can play live photos that are shared individually, but not when they are inside a shared album.
I haven’t found anything on the web about shared albums not supporting live photos. Is this the case?
I cannot play Live Photos stored in OneDrive Shared Albums when I access them from the OneDrive website under my account (I have a personal Microsoft 365 subscription). However, they can be played from the OneDrive website of the original owner of the album.I can play live photos that are shared individually, but not when they are inside a shared album. I haven’t found anything on the web about shared albums not supporting live photos. Is this the case? Read More
How do i recover files permanently deleted from recycle bin
Hi guys,
I Lost my important project files. This is frustrating to me because I have emptied the recycle bin.
I came across this post and found it is unavailable. I can’t get a solution to recover my lost files.
Looking for the most effective method to quickly get deleted files back!
Hi guys, I Lost my important project files. This is frustrating to me because I have emptied the recycle bin. I came across this post and found it is unavailable. I can’t get a solution to recover my lost files.https://techcommunity.microsoft.com/t5/windows-10/how-to-recover-permanently-deleted-files-on-windows-10/m-p/4074560 Looking for the most effective method to quickly get deleted files back! Read More
Activating Microsoft Office 365 Business Standard ESD license on NCE account.
Hello,
We have purchased Microsoft Office 365 Business Standard ESD licenses that we wish to activate on an NCE account through the admin center or perhaps through separate accounts, could somebody assist in how this can be done?
A step by step tutorial would be very highly appreciated.
Hello, We have purchased Microsoft Office 365 Business Standard ESD licenses that we wish to activate on an NCE account through the admin center or perhaps through separate accounts, could somebody assist in how this can be done? A step by step tutorial would be very highly appreciated. Read More