Tag Archives: microsoft
Access Europe – Wed 3 July: Improved, Enhanced Message Box / Enhancing Access forms
he next Access Europe User Group meeting will be on Wednesday 3 July 2024 starting at 18:00 UK time (6PM UTC+1) and finishing by 19:30 (7.30PM).
In this session, we are pleased to welcome two presenters from Germany: Olaf Nöhring and André Minhorst.
Olaf will demonstrate his improved version of the Enhanced Message Box which was originally developed by Renaud Bompuis about 15 years ago.
It is (almost) a drop-in replacement for the standard message box but offers some advanced features like displaying Access rich text format – color, bold, italic, fonts.
Olaf’s improved version includes a simple wizard which lets you create the box you want, including VBA code, different colored buttons, custom default button, auto close and enable-delay.
André will introduce two exciting enhancements for Access applications, designed to streamline and enhance user experience.
1. amvCalendar offers a comprehensive solution for managing appointments within Access applications. This may be particularly useful due to the likely removal of VBA automation from ‘New’ Outlook
2. amvExplorer addresses the common challenge of managing data associated with external documents within databases.
I hope you will join us on July 3rd for this session.
Please also download and import this iCalendar (.ics) file to your calendar application e.g. Outlook.
Doing this will add a recurring event for the first Wed of each month at the correct time for your location/time zone.
For more details about the topic and speaker together with connection details for the meeting, please visit https://isladogs.co.uk/aeu-29/ or https://accessusergroups.org/europe/event/access-europe-2024-07-03/
For local start times, please check https://www.worldtimebuddy.com
The meeting will again be held on Zoom. When the time comes, you can connect using Join Zoom Meeting.
If you are asked, use: Meeting ID: 924 3129 5683 ; Passcode: 661210
he next Access Europe User Group meeting will be on Wednesday 3 July 2024 starting at 18:00 UK time (6PM UTC+1) and finishing by 19:30 (7.30PM).In this session, we are pleased to welcome two presenters from Germany: Olaf Nöhring and André Minhorst.Olaf will demonstrate his improved version of the Enhanced Message Box which was originally developed by Renaud Bompuis about 15 years ago.It is (almost) a drop-in replacement for the standard message box but offers some advanced features like displaying Access rich text format – color, bold, italic, fonts.Olaf’s improved version includes a simple wizard which lets you create the box you want, including VBA code, different colored buttons, custom default button, auto close and enable-delay.André will introduce two exciting enhancements for Access applications, designed to streamline and enhance user experience.1. amvCalendar offers a comprehensive solution for managing appointments within Access applications. This may be particularly useful due to the likely removal of VBA automation from ‘New’ Outlook2. amvExplorer addresses the common challenge of managing data associated with external documents within databases.I hope you will join us on July 3rd for this session.Please also download and import this iCalendar (.ics) file to your calendar application e.g. Outlook.Doing this will add a recurring event for the first Wed of each month at the correct time for your location/time zone.
For more details about the topic and speaker together with connection details for the meeting, please visit https://isladogs.co.uk/aeu-29/ or https://accessusergroups.org/europe/event/access-europe-2024-07-03/For local start times, please check https://www.worldtimebuddy.comThe meeting will again be held on Zoom. When the time comes, you can connect using Join Zoom Meeting.If you are asked, use: Meeting ID: 924 3129 5683 ; Passcode: 661210 Read More
Shifts documentation?
Is there more technical documentation on Shifts out there? I see this Manage the Shifts app for your organization – Microsoft Teams | Microsoft Learn, but it says nothing about using the employee’s location to validate clocks ins/outs. I can’t figure out how to export Tags to Excel. And I can’t find information on how long the data is available to comply with retention needs.
Any links beyond the basics, any guidance appreciated.
Is there more technical documentation on Shifts out there? I see this Manage the Shifts app for your organization – Microsoft Teams | Microsoft Learn, but it says nothing about using the employee’s location to validate clocks ins/outs. I can’t figure out how to export Tags to Excel. And I can’t find information on how long the data is available to comply with retention needs. Any links beyond the basics, any guidance appreciated. Read More
Automatic Sort when closing Excel
I have to send a workbook each day. I don’t need to, but I would like to sort the data alphabetically starting with cell A2. There are a total 4 columns of data. I know how to sort the data, the problem is I always forget to sort it before sending. Is it possible for Excel to sort the data when I hit the “X” to close the app?
Using Windows 10, Excel 365 build 2405
Thank you in advance for your expertise.
I have to send a workbook each day. I don’t need to, but I would like to sort the data alphabetically starting with cell A2. There are a total 4 columns of data. I know how to sort the data, the problem is I always forget to sort it before sending. Is it possible for Excel to sort the data when I hit the “X” to close the app?Using Windows 10, Excel 365 build 2405Thank you in advance for your expertise. Read More
I do not see files in my onedrive, No veo archivos en mi onedrive
Spanish
Hola, ¿qué tal a todos?
Les vengo a contar el problema que tuve el día sábado 22 de junio y espero que, por favor, me puedan ayudar a encontrar una solución lo más pronto posible.
Bueno, les cuento. Yo siempre subo fotos desde mi teléfono Android o iPhone a mi OneDrive para respaldar ahí mi contenido multimedia. Tenía bastante basura en la papelera de reciclaje y la vacié. En mi PC también tengo instalado OneDrive y después recuerdo que desinstalé OneDrive de mi PC y lo volví a instalar. Ya no tenía muchas carpetas ni archivos, entonces usé el método de restablecer mi OneDrive. De hecho, ya probé cada copia de las opciones que me da, y lo que pasa es que me restablece todo e incluso me deja las carpetas que yo creé desde mi dispositivo Android o iPhone, pero me las deja sin ningún archivo multimedia y no sé por qué está haciendo esto. Me deja la carpeta pero sin ningún archivo dentro de ella.
Espero que, ojalá, a alguien le haya sucedido lo mismo y lo haya podido solucionar y que me ayude, por favor. De verdad se lo agradecería bastante porque me urgen muchísimo los archivos multimedia que estoy perdiendo.
English
Hello everyone,
I want to tell you about the problem I had on Saturday, June 22nd, and I hope you can help me find a solution as soon as possible.
Well, here’s the story. I always upload photos from my Android or iPhone to my OneDrive to back up my multimedia content.
I had a lot of trash in the recycle bin, so I emptied it. I also have OneDrive installed on my PC, and later I remember uninstalling OneDrive from my PC and reinstalling it. After that, I didn’t have many folders or files anymore, so I used the method to reset my OneDrive. In fact, I tried every copy option it gives me, and what happens is that it restores everything and even leaves the folders I created from my Android or iPhone device, but it leaves them without any multimedia files. I don’t know why it’s doing this. It leaves the folder, but there are no files inside it.
I hope that someone has experienced the same issue and has been able to solve it, and can help me, please. I would really appreciate it because I urgently need the multimedia files I’m losing.
SpanishHola, ¿qué tal a todos?Les vengo a contar el problema que tuve el día sábado 22 de junio y espero que, por favor, me puedan ayudar a encontrar una solución lo más pronto posible.Bueno, les cuento. Yo siempre subo fotos desde mi teléfono Android o iPhone a mi OneDrive para respaldar ahí mi contenido multimedia. Tenía bastante basura en la papelera de reciclaje y la vacié. En mi PC también tengo instalado OneDrive y después recuerdo que desinstalé OneDrive de mi PC y lo volví a instalar. Ya no tenía muchas carpetas ni archivos, entonces usé el método de restablecer mi OneDrive. De hecho, ya probé cada copia de las opciones que me da, y lo que pasa es que me restablece todo e incluso me deja las carpetas que yo creé desde mi dispositivo Android o iPhone, pero me las deja sin ningún archivo multimedia y no sé por qué está haciendo esto. Me deja la carpeta pero sin ningún archivo dentro de ella.Espero que, ojalá, a alguien le haya sucedido lo mismo y lo haya podido solucionar y que me ayude, por favor. De verdad se lo agradecería bastante porque me urgen muchísimo los archivos multimedia que estoy perdiendo.English Hello everyone,I want to tell you about the problem I had on Saturday, June 22nd, and I hope you can help me find a solution as soon as possible.Well, here’s the story. I always upload photos from my Android or iPhone to my OneDrive to back up my multimedia content.I had a lot of trash in the recycle bin, so I emptied it. I also have OneDrive installed on my PC, and later I remember uninstalling OneDrive from my PC and reinstalling it. After that, I didn’t have many folders or files anymore, so I used the method to reset my OneDrive. In fact, I tried every copy option it gives me, and what happens is that it restores everything and even leaves the folders I created from my Android or iPhone device, but it leaves them without any multimedia files. I don’t know why it’s doing this. It leaves the folder, but there are no files inside it.I hope that someone has experienced the same issue and has been able to solve it, and can help me, please. I would really appreciate it because I urgently need the multimedia files I’m losing. Read More
How Do I Fix Quick_Books Frozen on Remote Desktop
If Quick_Books freezes on a remote desktop, try these steps:
Restart the Remote Desktop: Close and restart the remote desktop session to resolve temporary glitches.Check Network Connection: Ensure a stable internet connection. Poor connectivity can cause freezing.Update Quick_Books: Make sure Quick_Books is updated to the latest version to avoid bugs.Check System Resources: Ensure the remote desktop has enough CPU and RAM for Quick_Books.Disable Antivirus/Firewall: Temporarily disable these to see if they’re causing issues.Run Quick_Books Tool Hub: Use the Tool Hub to fix common Quick_Books issues.Contact IT Support: If problems persist, seek help from IT professionals or Quick_Books support.
These steps should help resolve freezing issues on a remote desktop.
If Quick_Books freezes on a remote desktop, try these steps:Restart the Remote Desktop: Close and restart the remote desktop session to resolve temporary glitches.Check Network Connection: Ensure a stable internet connection. Poor connectivity can cause freezing.Update Quick_Books: Make sure Quick_Books is updated to the latest version to avoid bugs.Check System Resources: Ensure the remote desktop has enough CPU and RAM for Quick_Books.Disable Antivirus/Firewall: Temporarily disable these to see if they’re causing issues.Run Quick_Books Tool Hub: Use the Tool Hub to fix common Quick_Books issues.Contact IT Support: If problems persist, seek help from IT professionals or Quick_Books support.These steps should help resolve freezing issues on a remote desktop. Read More
Local login deprecation
I’m not sure if this is even the right place but, it seems Windows continues to try to get users to use a windows login rather than a local login. In the case where windows is used as part of a Point of Sale system, how in the world is this supposed to work?
Try overseeing 10 different users in a hardware store for the pain points in regards to this idea.
I’m not sure if this is even the right place but, it seems Windows continues to try to get users to use a windows login rather than a local login. In the case where windows is used as part of a Point of Sale system, how in the world is this supposed to work? Try overseeing 10 different users in a hardware store for the pain points in regards to this idea. Read More
Better Alternative to IF COUNT or Use of IF COUNT IN A RANGE
Hi Guys,
I am currently using an IF Count Function on to sort out the statement below.
So as you can see there is different types of transaction.I am using IF COUNTIF here and drag it for each line to sort out the amount i want in Phone (Virgin Media here is a phone provider and the formula is to categorize them as such) “Virgin” being the keyword for my selection.
Now let’s say i have different suppliers. In the case below, i am adding Starlink Telecom and the formula will work as follow.
The problem i have with this is the fact that i manually have to add every phone provider in my formula.
What i am trying to do instead is link the two phones suppliers here to list i would have made in another worksheet. The formula will then just read into the column C, pick the names and add the amount in the original sheet once there is a translation that contain those keyworlds.
Anyone has an idea on how to achieve that?
Thanks for taking the time to read this.
Hi Guys,I am currently using an IF Count Function on to sort out the statement below.So as you can see there is different types of transaction.I am using IF COUNTIF here and drag it for each line to sort out the amount i want in Phone (Virgin Media here is a phone provider and the formula is to categorize them as such) “Virgin” being the keyword for my selection. Now let’s say i have different suppliers. In the case below, i am adding Starlink Telecom and the formula will work as follow. The problem i have with this is the fact that i manually have to add every phone provider in my formula. What i am trying to do instead is link the two phones suppliers here to list i would have made in another worksheet. The formula will then just read into the column C, pick the names and add the amount in the original sheet once there is a translation that contain those keyworlds. Anyone has an idea on how to achieve that? Thanks for taking the time to read this. Read More
Filter function not working
Hello,
I am trying to filter data from one sheet to another in Excel. I want the range for the formula to include whole columns as I want it to be a living filter. This in the past has resulted in a 0 at the bottom right of the array due to the blank cells it’s trying to which I have been okay with and ignored.
This time, however, it’s populating the other cells in that last row with the 0, with duplicate info from further up the array. I have tried several things to get rid of this, including nesting the filter function in a unique function, for changing the way the filter acts towards blank cells, and nothing has resulted in getting rid of the unwanted row.
Any suggestions?
Hello, I am trying to filter data from one sheet to another in Excel. I want the range for the formula to include whole columns as I want it to be a living filter. This in the past has resulted in a 0 at the bottom right of the array due to the blank cells it’s trying to which I have been okay with and ignored. This time, however, it’s populating the other cells in that last row with the 0, with duplicate info from further up the array. I have tried several things to get rid of this, including nesting the filter function in a unique function, for changing the way the filter acts towards blank cells, and nothing has resulted in getting rid of the unwanted row. Any suggestions? Read More
Pop up window to confirm when sending email with with attachment externally
Hi,
I have been requested to configure a Pop up warning/message for emails sent outside our organization if there is an attachment. We are now running on M365 E3 with M365 E5 Security and I do not have that option there. From what I read, upgrading to M365 E5 would give us “oversharing pop ups” feature.
Before I will go with upgrading all users to E5, I would like to confirm whether the above would be possible with E5 license?
Hi, I have been requested to configure a Pop up warning/message for emails sent outside our organization if there is an attachment. We are now running on M365 E3 with M365 E5 Security and I do not have that option there. From what I read, upgrading to M365 E5 would give us “oversharing pop ups” feature. Before I will go with upgrading all users to E5, I would like to confirm whether the above would be possible with E5 license? Read More
SPO Site rename
Hi all,
I am looking for a way to rename a SharePoint site but only the site name (I don’t want the URL changed). I have found scripts to rename the site title but not the actual name.
I have tried scripts to rename the connected M365 group, but that only updates the site name under basic info, but does not update the name under site info.
Interestingly if i update the name of thew group manually in the admin center, it updates correctly in SPO (but doesn’t update the name under basic info).
These are the properties I am looking to update
I am needing to prefix over a thousand sites so I really need to find a way to do this in PowerShell or even Graph API.
Hi all, I am looking for a way to rename a SharePoint site but only the site name (I don’t want the URL changed). I have found scripts to rename the site title but not the actual name. I have tried scripts to rename the connected M365 group, but that only updates the site name under basic info, but does not update the name under site info. Interestingly if i update the name of thew group manually in the admin center, it updates correctly in SPO (but doesn’t update the name under basic info). These are the properties I am looking to update I am needing to prefix over a thousand sites so I really need to find a way to do this in PowerShell or even Graph API. Read More
Upgrade to Azure Synapse runtimes for Apache Spark 3.4 & previous runtimes deprecation
It is important to stay ahead of the curve and keep services up to date. That’s why we encourage all Azure Synapse customers with Apache Spark workloads to migrate to the newest GA version, Azure Synapse Runtime for Apache Spark 3.4. The update brings Apache Spark to version 3.4 and Delta Lake to version 2.4, introduces Mariner as the new operating system, and updates Java from version 8 to 11.
Within a few days/weeks, we are disabling Apache Spark 2.4, 3.1, 3.2 job execution. If you are affected you have already been notified. Using the runtime after EOS date is at one’s own risk, and with the agreement and acceptance of the risks that jobs will eventually stop executing. All support tickets will be auto-resolved. Learn more about the Microsoft Lifecycle Policy.
Migrate to the latest GA version of Azure Synapse runtimes for Apache Spark 3.4 before the deprecation and disablement of previous versions.
Please refer to the following article for more information on the lifecycle and supportability of our runtimes: Azure Synapse runtimes.
Go to Synapse runtime for Apache Spark lifecycle and supportability – Azure Synapse Analytics | Microsoft Learn and Migration Guide: Spark Core – Spark 3.4.1 Documentation (apache.org) for more details on how to migrate and how to change Apache Spark-based runtime in Azure Synapse Analytics.
Microsoft Tech Community – Latest Blogs –Read More
Week of June 27, 2024: Azure Updates
Public Preview: Continuous Performance Diagnostics for Windows VMs to enhance VM troubleshooting
Status: In Preview
Azure Monitor is a comprehensive monitoring solution for collecting, analyzing and responding to monitoring data, and maximizing the availability and performance of your applications and services. By leveraging existing on-demand Performance Diagnostics for an Azure VM, Azure Monitor enables you to get actionable insights, recommendations, and diagnostics data to address performance issues. The insights help identify the root cause of these issues.
We are excited to announce Continuous Performance Diagnostics. This new feature enhances the existing on-demand Performance Diagnostics for an Azure VM, offering continuous, actionable insights into high resource usage. Data is collected every 5 seconds and updates are uploaded every 5 minutes to your preferred storage account, whose retention policies you can customize according to your needs. This proactive approach to performance management empowers you to promptly diagnose performance issues as they arise due to high resource usage in your Azure VM, mitigating downtime and maximizing efficiency. The feature can be disabled at any time.
Now available in Public Preview for Windows VMs, Continuous Performance Diagnostics represents a significant advancement in Azure VM performance troubleshooting and management.
By delivering actionable insights, recommendations, and diagnostics data, Azure Monitor equips you with the tools necessary to optimize resource utilization, streamline operations, and ultimately drive greater business success in the dynamic digital landscape.
For more information, please visit the documentation.
Products:
_____________________________________________________________________________________________________________________________
Public Preview: ED25519 SSH key support for Linux virtual machines
Status: In Preview
With Ed25519 SSH key support for Linux virtual machines (VMs), customers get better security and performance with a smaller key size. Previously, customers only had the option of using RSA encryption for SSH connections to their Linux VMs on Azure. Now customers can choose between RSA and ED25519 based SSH keys.
Azure now allows the creation of ED25519 SSH key pairs directly within the Azure Portal for a simplified key management process. Additionally, Azure CLI and PowerShell support this feature. While RSA remains the default key type, users can also apply ED25519 SSH keys to their Linux VMs, enhancing security and deployment efficiency on Azure.
Products:
_____________________________________________________________________________________________________________________________
Public Preview: JavaScript (JS) challenge on Azure WAF integrated with Azure Application Gateway
Status: In Preview
Azure Web Application Firewall (WAF) integrated with Azure Application Gateway now supports JavaScript (JS) challenge. Azure WAF JS challenge is available as a new mitigation action as part of the Bot Manager rule set and custom rules.
The JavaScript challenge is an invisible web challenge used to distinguish between legitimate users and bots. Malicious bots fail the challenge, which protects web applications. In addition, the JavaScript challenge is beneficial as it reduces friction for legitimate users since it does not require human intervention.
For more information on what’s included in this release, visit Azure WAF JS Challenge.
Products:
Web Application Firewall
Application Gateway
_____________________________________________________________________________________________________________________________
Generally Available: Azure Machine Learning – June 2024 announcement
Status: Now Available
Secure AI deployment with Microsoft Entra ID and managed online endpoint Microsoft: Entra ID and Azure Machine Learning Managed Online Endpoints provide a secure and efficient way to deploy and consume AI/ML models.
Guided experience for submitting training jobs: This feature will improve the getting started experience, provide consistency, and enable settings that were not previously supported in the UI. It also establishes an infrastructure that will reduce repetitive overhead when making updates to the submission experiences in the future, allowing us to move more quickly.
Create and manage prompt flow compute sessions: The Prompt Flow offers an interactive authoring experience for developing LLM applications, while the compute Session provides a managed computing environment that can reduce costs and enhance the authoring process.
Learn more:
Secure AI deployment with Microsoft Entra ID and managed online endpoint
Guided experience for submitting training jobs
Create and manage prompt flow compute sessions
Products:
_____________________________________________________________________________________________________________________________
Public Preview: Azure Machine Learning – June 2024 announcement
Status: In Preview
Azure AI Model Inference API: Foundational models, such as language models, have indeed made remarkable strides in recent years. These advancements have revolutionized various fields, including natural language processing and computer vision, and they have enabled applications like chatbots, virtual assistants, and language translation services.
While foundational models excel in specific domains, they lack a uniform set of capabilities. Some models are better at specific task and even across the same task, some models may approach the problem in one way while others in another. Developers can benefit from this diversity by using the right model for the right job.
Learn more:
_____________________________________________________________________________________________________________________________
Retirement: Onco-Phenotype model within Azure AI Health Insights
Status: Retirement
The Onco-Phenotype model is being retired July 31, 2024, please note that all other models within Azure AI Health Insights will remain available. The container image for Onco-Phenotype will also be removed from the Microsoft Artifact Registry. If you’ve downloaded the image and have it deployed in your own hosting environment, the Onco-phenotype model will cease to function.
If you have Azure AI Health Insights deployed via the Azure Portal, it will continue to work as usual, but the Onco-Phenotype endpoint will no longer be available. As per the standard operating procedure for the Onco-Phenotype model, API results are available for 24 hours from the time the request was created, after which the results are purged. We will honor this commitment up until the model is retired.
We understand that you may have questions regarding this retirement. Please reach out to our Customer Service and Support (CSS) team for assistance. If you don’t currently have CSS support, you can purchase support here: Azure Support Plans Comparison | Microsoft Azure.
_____________________________________________________________________________________________________________________________
Private Preview: Azure Backup for Elastic SAN
Status: In Preview
Azure Elastic SAN is a cloud-native service that offers a scalable, cost-effective, high-performance, and comprehensive storage solution for a range of compute options. Azure Backup now supports crash-consistent backup and restore of Azure Elastic SAN Volumes to guard against data loss.
Using this feature, you can:
Take a crash-consistent backup of your Elastic SAN Volume to an independent, ZRS resilient Managed Disk Incremental Snapshot.
Perform backup orchestration & utilize management capabilities of Azure Backup along with the single pane of glass view of Backup Centre.
Fill out this form to sign-up for private preview.
Products:
Azure Backup
Azure Elastic SAN
_____________________________________________________________________________________________________________________________
Public Preview: Azure cross-subscription Load Balancer
Status: In Preview
Today, we are announcing the public preview of Azure cross-subscription Load Balancer. Cross-subscription load balancing enables the load balancers components to be located in different subscriptions. For example, the frontend IP address or the backend instances could be located in a different subscription from the one that the load balancer belongs to.
Cross-subscription load balancing is available in all Azure public regions, China cloud regions, and Government cloud regions.
Learn more about cross-subscription load balancer via our public documentation or our recent blog.
_____________________________________________________________________________________________________________________________
Public Preview: ExpressRoute resiliency enhancements
Status: In Preview
ExpressRoute provides private connectivity between on-premises networks and Azure, ensuring low latency and high throughput. Customers can create an ExpressRoute circuit at a peering location through redundant Microsoft Enterprise Edge devices. For high availability and disaster recovery, setting up ExpressRoute circuits in multiple peering locations is highly recommended.
Resiliency architectures: There are three resiliency architectures: maximum, high, and standard. Maximum resiliency eliminates single points of failure and is ideal for mission-critical workloads. High resiliency, also known as ExpressRoute Metro, offers resilience within the same metropolitan area. Standard resiliency provides built-in redundancy but lacks site resiliency, making it less suitable for mission-critical workloads. Microsoft has developed a guided portal experience to make it easy for you to configure high and maximum resiliency architectures.
Zonal resiliency: Availability zones protect applications and data from data center failures and offer higher availability for mission-critical services on Azure. Existing non-zone redundant ExpressRoute gateways can now migrate to availability zone-enabled gateways.
Resiliency validation: This upcoming feature will allow customers to test site-failover during maintenance or interruptions, ensuring connectivity and validating failover success.
Resiliency insights: This upcoming feature will give customers visibility into the resilience of their deployments. Customers can monitor their circuit and gateway deployments for actionable insights on resiliency. A resiliency index is generated based on the setup, with the highest score awarded to deployments that have undergone recent testing and validation.
SLA Updates: The SLA model for ExpressRoute will be updated to align with differentiated levels of network availability, effective from Oct 1, 2024. Revised SLA levels include 99% for a single-site circuit, 99.9% for a Metro multi-site circuit, and 99.95% for multi-homed maximum resiliency. Details on the updated ExpressRoute SLA will be published on the official website here.
Products:
_____________________________________________________________________________________________________________________________
Public Preview: Azure CDN Standard from Microsoft (classic) zero-downtime migration to Azure Front Door
Status: In Preview
We are announcing the public preview of the zero-downtime migration from Azure CDN Standard from Microsoft (classic) to Azure Front Door.
Azure Front Door is a modern cloud content delivery network (CDN) and global load balancer service that delivers high performance, scalability, and secure user experiences for your content, websites, API and applications. Compared with Azure CDN Standard from Microsoft (classic), it has enhancements in security with Web Application Firewall and Bot protection, secures the origin with Private Link, supports more flexible routing logic via rules engine server variables, eliminates subdomain takeover with Deterministic Name Library integration, offers improved log & metrics and built-in report, and many more to come.
The migration capability enables you to perform a zero-downtime migration from Azure CDN Standard from Microsoft (classic) to Azure Front Door Standard or Premium in just three simple steps or five simple steps if your Azure CDN Standard from Microsoft (classic) profile has custom domains with your own certificates. The migration will take a few minutes to complete depending on the complexity of your CDN profile, such as number of endpoints, domains, origins, and other configurations.
To learn more about the tier migration capabilities, please refer to:
About Azure CDN from Microsoft (classic) to Standard or Premium tier migration | Microsoft Learn
Migrate Azure CDN from Microsoft (classic) to Azure Front Door Standard or Premium tier | Microsoft Learn
Products:
_____________________________________________________________________________________________________________________________
Public Preview: Cisco Firepower Threat Defense (FTD) integration with Virtual WAN
Status: In Preview
Customers can now deploy Cisco Firepower Threat Defense (FTD) directly into a Virtual WAN hub. This solution is jointly managed by Microsoft Azure and Cisco. Customers can deploy Cisco FTD into a Virtual WAN hub that performs Next-Generation Firewall capabilities. The Cisco FTD in the hub can be used to inspect all North-South, East-West, and Internet-bound traffic.
Read the announcement blog
Read the documentation
Products:
Microsoft Tech Community – Latest Blogs –Read More
Microsoft Classic Teams Still Showing as exposed After Updating to Latest New Teams
Hi,
Teams classic is showing as exposed in the Microsoft 365 defender Admin portal. But we have already updated to New teams in our environment.Intune report says its updated to latest version. Pls let us know how to fix this issue.
Does this New teams is showing in defender. Pls suggest…
Or is this a known issue
Can you anybody suggest how we can fix the devices vulnerability list
Thanks in Advance…
Karimulla
Hi, Teams classic is showing as exposed in the Microsoft 365 defender Admin portal. But we have already updated to New teams in our environment.Intune report says its updated to latest version. Pls let us know how to fix this issue.Does this New teams is showing in defender. Pls suggest… Or is this a known issue Can you anybody suggest how we can fix the devices vulnerability list Thanks in Advance… Karimulla Read More
Microsoft Classic Teams Still Showing as exposed Devices on M365Defender Admin Center After Updating
Hi Everyone,
Good day..
Teams classic is showing as exposed in the Microsoft 365 defender Admin portal. But we have already updated to New teams in our environment.Intune report says its updated to latest version. Pls let us know how to fix this issue.
Does this New teams is showing in defender. Pls suggest…
Or is this a known issue
Can you anybody suggest how we can fix the devices vulnerability list
Thanks in Advance…
Karimulla
Hi Everyone,Good day.. Teams classic is showing as exposed in the Microsoft 365 defender Admin portal. But we have already updated to New teams in our environment.Intune report says its updated to latest version. Pls let us know how to fix this issue.Does this New teams is showing in defender. Pls suggest… Or is this a known issue Can you anybody suggest how we can fix the devices vulnerability list Thanks in Advance…Karimulla Read More
macOS onboard
Our macOS device is enrolled in Intune. which onboarding mechanism supports onboarding macOS for Purview?
Our macOS device is enrolled in Intune. which onboarding mechanism supports onboarding macOS for Purview? Read More
How to Include Custom Details from an Alert in Email Generated by a Playbook
I have created an analytics rule that queries Sentinel for security events pertaining to group membership additions, and triggers an alert for each event found. The rule does not create an incident. Within the rule logic, I have created three “custom details” for specific fields within the event (TargetAccount, MemberName, SubjectAccount). I have also created a corresponding playbook for the purpose of sending an email to me when an alert is triggered. The associated automation rule has been configured and is triggered in the analytics rule. All of this is working as expected. When a member is added to a security group, I receive an email.
The one remaining piece is to populate the email message with the custom details that I’ve identified in the rule. However, I’m not sure how to do this. Essentially, I would like the values of the three custom details shown in the first screenshot below to show up in the body of the email, shown in the second screenshot, next to their corresponding names.
So, for example, say Joe Smith is added to the group “Admin” by Tom Jones. These are the fields and values in the event that I want to pull out.
TargetAccount = AdminMemberName = Joe SmithSubject Account = Tom Jones
The custom details would then be populated as such:
Security_Group = AdminMember_Added = Joe SmithAdded_By = Tom Jones
and then, the body of the email would contain:
Group: AdminMember Added: Joe SmithAdded By: Tom Jones
I have created an analytics rule that queries Sentinel for security events pertaining to group membership additions, and triggers an alert for each event found. The rule does not create an incident. Within the rule logic, I have created three “custom details” for specific fields within the event (TargetAccount, MemberName, SubjectAccount). I have also created a corresponding playbook for the purpose of sending an email to me when an alert is triggered. The associated automation rule has been configured and is triggered in the analytics rule. All of this is working as expected. When a member is added to a security group, I receive an email. The one remaining piece is to populate the email message with the custom details that I’ve identified in the rule. However, I’m not sure how to do this. Essentially, I would like the values of the three custom details shown in the first screenshot below to show up in the body of the email, shown in the second screenshot, next to their corresponding names. So, for example, say Joe Smith is added to the group “Admin” by Tom Jones. These are the fields and values in the event that I want to pull out.TargetAccount = AdminMemberName = Joe SmithSubject Account = Tom JonesThe custom details would then be populated as such:Security_Group = AdminMember_Added = Joe SmithAdded_By = Tom Jonesand then, the body of the email would contain:Group: AdminMember Added: Joe SmithAdded By: Tom Jones Read More
GPU node health checks integrated into Azure Kubernetes service via node problem detector
Introduction
Large AI model training can take months to complete on very large AI supercomputers. These AI supercomputers consist of many high-end GPU’s (e.g NVIDIA A100 or H100) all connected with InfiniBand. The Azure NDv5 has 8 H100 GPU’s, each connected directly by NVlink 4 (on a node) and each GPU has a 400 Gbps IB link that enables it to communicate with all the other GPU’s on the AI Supercomputer.
AI model training workloads are tightly coupled, at regular intervals all the gradients need to be updated using NCCL collective communication. If any of the gpus or InfiniBand links fail (e.g. dropped GPU, InfiniBand link flap etc) this can cause the complete job to terminate (and require it to be restarted from the last checkpoint). It is imperative that any unhealthy nodes/IB fabric be identified to prevent them being included in any of the nodes used in the training job.
The Azurehpc node health repository provides a suite of recommended node health checks for all Azure specialized SKU’s (including GPU’s). In this blog post we will show how to integrate a few of the GPU node health checks into AKS (Azure kubernetes service) in such a way that
GPU node health checks are run at regular intervals.
Nodes which fail any of the GPU tests will be automatically cordoned off (to prevent any jobs being scheduled on them) and optionally drained (all pods removed from node)
We will be leveraging Node problem detector (NPD) to run the specific GPU node health checks and draino to cordon/drain any nodes that fail any of the GPU node health checks.
GPU node health check integration into NPD
NPD is commonly used in K8s environments to run various k8s cluster health checks and report any issues via k8s events/conditions to k8s api server. The k8s cluster can then take some action depending on how serious the condition is (e.g. for some permanent conditions, the node may be cordoned off and drained). We will leverage the NPD custom plugin
Note: GPU count, GPU NVlink, GPU XID and GPU ECC health checks are included (other GPU node health checks can also be easily included).
Get the NPD github repository
git clone http://github.com/kubernetes/node-proble-detector.git
Edit the NPD Makefile (get modified file here)
Build for linux_amd64 only (not ARM)
LINUX_PLATFORMS=linux_amd64
DOCKER_PLATFORMS=linux/amd64
Provide a unique tag
TAG?=$(VERSION)_<UNIQUE NUMBER>
Change registry to Azure ACR
REGISTRY?=<YOUR ACR>.azurecr.io/k8s-staging-npd
Change the BASEIMAGE
BASEIMAGE:=nvcr.io/nvidia/pytorch:23.03-py3
Edit NPD Dockerfile (get modified file here)
Change base container
FROM nvcr.io/nvidia/pytorch:23.03-py3 as builder-base
Install golang in container
COPY go1.22.4.linux-amd64.tar.gz .
RUN rm -rf /usr/local/go && tar -C /usr/local -xzf go1.22.4.linux-amd64.tar.gz
Remove unnecessary ARM packaged
#RUN clean-install util-linux bash libsystemd-dev
Edit entrypoint
ENTRYPOINT [“/node-problem-detector”, “–config.custom-plugin-monitor=/config/custom-plugin-gpu-count.json”]
Note: You can get the golang tarball here, go1.22.4.linux-amd64.tar.gz
Build NPD without SystemLogMonitor and SystemStatsMonitor. AKS has its own NPD which will run complete monitoring, we only want our NPD to just run the GPU node tests.
BUILD_TAGS=”disable_system_log_monitor disable_system_stats_monitor” make 2>&1 | tee make.out
Push the container image to ACR
make push 2>&1 make_push.out
You could add all the GPU node health check plugins and scripts to the NPD container, but it’s much more flexible to use a k8s configMap to inject them directly into the container at runtime.
Edit deployment/node-problem-detector-config.yaml add the GPU custom plugin (yaml file) and gpu health check scripts (bash scripts) to the k8s ConfigMap yaml file. (get modified file here)
Note: You can control the frequency in which the tests are run, there are parameters in the custom plugin yaml files.
Edit deployment/node-problem-detector.yaml. (get modified file here)
NPD command line
– –config.custom-plugin-monitor=/config/custom-plugin-gpu-count.json,/config/custom-plugin-gpu-nvlink.json,/config/custom-plugin-gpu-xid.json, ,/config/custom-plugin-gpu-ecc.json
Which image/container to use
image: <YOUR ACR>.azurecr.io/k8s-staging-npd/node-problem-detector:<YOUR TAG>
Container limits
cpu: 240m
memory: 2048Mi
Bash script permissions
defaultMode: 0777
Which files to inject into the container.
– key: kernel-monitor.json
path: kernel-monitor.json
– key: docker-monitor.json
path: docker-monitor.json
– key: custom-plugin-monitor.json
path: custom-plugin-monitor.json
– key: check_ntp.sh
path: plugin/check_ntp.sh
– key: custom-plugin-gpu-count.json
path: custom-plugin-gpu-count.json
– key: check_gpu_count.sh
path: plugin/check_gpu_count.sh
– key: custom-plugin-gpu-nvlink.json
path: custom-plugin-gpu-nvlink.json
– key: check_gpu_nvlink.sh
path: plugin/check_gpu_nvlink.sh
– key: custom-plugin-gpu-xid.json
path: custom-plugin-gpu-xid.json
– key: check_gpu_xid.sh
path: plugin/check_gpu_xid.sh
Note: I have shown how to integrate 4 GPU node health checks, other GPU health checks can be easily added.
Note: You will probably need to modify the container limits (cpu/memory) depending on how many and what GPU tests you are running.
Draino set-up
The draino set-up is easy, we just need to tell draino which GPU node health check events/conditions to act on (e.g. cordon/drain).
Get the draino repository
git clone https://github.com/planetlabs/draino.git
Build and push draino image/container to your ACR
docker build -t <YOUR ACR>.azurecr.io/draino .
docker push <YOUR ACR>.azurecr.io/draino
Edit the drain manifest yaml file (get modified file here)
Add correct service account permission/rules so draino can access the k8s service
rules:
– apiGroups: [”]
resources: [events]
verbs: [create, patch, update]
– apiGroups: [”]
resources: [nodes]
verbs: [get, watch, list, update, patch]
– apiGroups: [”]
resources: [nodes/status]
verbs: [patch, watch, list, update, patch]
– apiGroups: [”]
resources: [endpoints]
verbs: [get,watch, list, create, patch, update]
– apiGroups: [”]
resources: [pods]
verbs: [get, watch, list]
– apiGroups: [”]
resources: [pods/eviction]
verbs: [create]
– apiGroups:
– extensions
– apps
resources: [daemonsets]
verbs: [get, watch, list]
Draino command line (Only cordon GPU nodes with these GPU conditions)
command: [/draino, –skip-drain, –node-label=accelerator=nvidia, GpuCount, GpuNvlink, GpuXid, GpuEcc]
Select the correct image/container
image: <YOUR ACR>.azurecr.io/draino:latest
Testing NPD+Draino GPU health checks
Prerequisites
You have a working AKS cluster. In this test we will be using a NDmv4 nodepool (See here on how to deploy an NDmv4 AKS nodepool).
Deploy NPD+GPU health checks
kubectl apply -f rbac.yaml
kubectl apply -f node-problem-detector-config.yaml
kubectl apply -f node-problem-detector.yaml
Note: You should see the node-problem-detector daemonset running on NDmv4 nodes.
Deploy special draino deployment with support for GPU node health checks
kubectl apply -f manifest.yml
Note: You should see the draino deployment.
Verify that the GPU node health checks are running (Check the NDmv4 node description and look at the node events/conditions.
You can see the GpuNvlink, GpuXid and CpuCount conditions reporting normal status.
Now, to simulate a GPU node health check failure, we will drop one of the NDmv4 GPU’s.
nvidia-smi -i 00000001:00:00.0 -pm 0
nvidia-smi drain -p 0001:00:00.0 -m 1
Note: nvidia-ami will verify that there are 7 GPU’s (instead of the expected 8).
Check the NDmv4 node events/conditions (via node description). If shows that the GPU count test has failed, and the node has been automatically cordoned by draino (i.e. no pods can be scheduled to this node).
Some additional considerations
NPD is set to run periodically and can overlap with a customer’s job. The timing and type of GPU node health checks you run may affect how well the customer job performs. One possible strategy is to perform thorough node health checks on an empty cluster from time to time and to run some essential GPU node health checks that do not affect performance on regular intervals.
Conclusion
Fully automated GPU specific health checks integrated into AKS, that
identify unhealthy GPU nodes
cordon nodes
helps to improve the reliability of large AI supercomputers running training jobs. In this blog post we showed how to integrate GPU specific health checks into NPD and then have draino look for specific GPU failure conditions and take some action (e.g cordon/drain node).
Microsoft Tech Community – Latest Blogs –Read More
Update on MFA requirements for Azure sign-in
We would like to share an update on the announcement that Microsoft will require multi-factor authentication (MFA) for users signing into Azure. In this post, we share clarifications on the scope, timing and implementation details, along with guidance for preparation.
Timing
Enforcement for the MFA requirement at Azure sign-in will be rolled out in phases:
Phase 1: Starting in July 2024, enforcement for MFA at sign-in for Azure portal only will roll out gradually to all tenants. This phase will not impact any other Azure clients, such as Azure CLI, Azure PowerShell and IaC tools.
Phase 2: Starting in early 2025, enforcement for MFA at sign-in for Azure Command Line Interface (CLI), Azure PowerShell and Infrastructure as Code (IaC) tools will gradually roll out to all tenants.
For both phases, Microsoft will notify global admins about the expected enforcement date of your tenant(s) by email and through Azure Service Notifications, 60 days in advance. The countdown for enforcement for your tenant(s) does not begin until you have received this first notification from us. Additionally, we will send out periodic reminders to global admins at a regular cadence between the first notification and the beginning of enforcement for your tenant(s).
We will also allow a grace period for select customers with use cases where no workarounds are easily available and who need additional time (beyond the start date of enforcement for their tenants) to prepare for the MFA requirement at Azure sign-in. The first notification from us stating the enforcement date for your tenant(s) will also include a link to apply for the grace period. Additional details on customer types, use cases and scenarios that are eligible for grace period will be included in the notification.
Scope of enforcement
User accounts
We heard your feedback noting confusion about which users will be impacted by this requirement. We want to clarify that all users signing into the Azure portal, Azure CLI, Azure PowerShell and IaC tools, such as Azure Developer CLI, Bicep, Terraform and Ansible to perform any CRUD (Create, Read, Update, Delete) operation will require MFA when the enforcement begins. End users who are accessing apps, websites or services hosted on Azure, but not signing into the Azure portal, CLI or PowerShell, are not subject to this requirement from Microsoft. Authentication requirements for end users will still be controlled by the app, website or service owners.
We’d like to reenforce that Microsoft recommends adoption of MFA as one of the most fundamental security measures for all users given the growing intensity and sophistication of current Cyber-threats.
Automation accounts
Workload Identities, such as managed identities and service principals, will not be impacted by this enforcement. If you are leveraging user identities as a service account running automation (including scripts or other automated tasks), those will be required to use MFA once enforcement begins. Our guidance is that user identities are not recommended for automation and customers should migrate those to Workload Identities.
Implementation
This requirement for MFA at sign-in is implemented by Azure. Microsoft Entra ID sign-in logs will show it as the source of the MFA requirement.
This requirement will be implemented on top of any access policies you’ve configured in your tenant. For example, if your organization chose to retain Microsoft’s security defaults, and you currently have security defaults enabled, your users will see no change in behavior as MFA is already required for Azure management. If your tenant is using Conditional Access policies in Microsoft Entra and you already have a Conditional Access policy through which users sign into Azure with MFA, then your users will not see a change. Similarly, if you have existing more restrictive Conditional Access policies in place targeting Azure that require stronger authentication, such as phishing-resistant MFA, then those policies will continue to be enforced and your users will not see any changes.
Available MFA Methods
All supported MFA methods are available for you to use and there are no changes to the authentication method features as part of this requirement. Support for external MFA solutions is in public preview with external authentication methods, and can be used to meet the MFA requirement. The deprecated Conditional Access Custom Controls preview will not satisfy the MFA requirement, and you should migrate to the external authentication methods preview to use an external solution with Microsoft Entra ID.
If you are using a federated Identity Provider (IdP), such as Active Directory Federation Services, and your MFA provider is integrated directly with this federated identity provider, the Federated identity provider must send an MFA claim.
Identifying impacted Azure users in your tenant
You can use the resources below to help you identify which users are signing into Azure with and without MFA:
Use this PowerShell command to export a list of users and their auth methods: https://aka.ms/AzMFA
Use this Multifactor Authentication Gaps workbook: Multifactor Authentication Gaps workbook – Microsoft Entra ID | Microsoft Learn
Use these App IDs in your queries:
Azure portal: c44b4083-3bb0-49c1-b47d-974e53cbdf3c
Azure CLI: 04b07795-8ddb-461a-bbee-02f9e1bf7b46
Azure PowerShell: 1950a258-227b-4e31-a9cf-717495945fc2
Break glass accounts and special scenarios
We have heard your questions about break glass or “emergency access” accounts. We recommend updating these accounts to use FIDO2 or certificate-based authentication (when configured as MFA) instead of relying only on a long password. Both methods will satisfy the MFA requirements.
In addition, below are a few scenarios for which we are still working on developing guidance, and we will address these in an upcoming blog post scheduled for mid-August:
Organizations using privileged access management with delegation management, or other security approaches with additional security for accounts shared by multiple people.
Hands-on Azure learning and labs that utilize user identities created and deleted within a short timeframe.
Utilizing Azure APIs that require an Entra user identity or APIs that don’t support application permissions.
What you can do to get ready
We recommend setting up MFA now to secure your cloud resources. Keep users and data safe by setting up MFA with the MFA wizard for Microsoft Entra and learn more from the MFA deployment guide. If you’re using user identities for automation, start the process of migrating to managed identities or service principals.
We will continue to publish blog posts, articles and direct customer notifications regarding the requirement for MFA at Azure sign-in to help you effectively prepare and keep your cloud resources secure.
Thank you,
Naj Shahid and Greg Kinasewitz
Microsoft Tech Community – Latest Blogs –Read More
Similarity Search with FAISS and Azure SQL | Data Exposed
Learn how to leverage FAISS with Azure SQL for efficient similarity search. Discover how to integrate FAISS library with Azure SQL, enhancing your data retrieval with speed and precision. Learn from live demos and best practices to apply these techniques to your datasets.
Resources:
View/share our latest episodes on Microsoft Learn and YouTube!
Microsoft Tech Community – Latest Blogs –Read More
DP203 certificate not available on Learn profile
I appeared for DP 203 certification on June 18, 2024 and cleared the exam. I have also received confirmation email with the certification ID, but the certificate is not yet available on my Microsoft learn profile under Credentials.certification id.
Could you please check and upload the certificate to my profile. Please let me know if you want me to share the certification id or any other required detail.
I appeared for DP 203 certification on June 18, 2024 and cleared the exam. I have also received confirmation email with the certification ID, but the certificate is not yet available on my Microsoft learn profile under Credentials.certification id.Could you please check and upload the certificate to my profile. Please let me know if you want me to share the certification id or any other required detail. Read More