Ramblings

Have you migrated to the new Authentication Methods experience in Azure AD, and are you using TAPs yet?

No, you say? Well, “chop, chop” then, let’s get it done! ✌🙂🤞 A ‘Temporary Access Pass’ (or TAP) is a one-off, time-limited passcode that is generated for a specific user. It allows the user to sign in to configure their second factor security information in Azure AD e.g., Phone number, App notification, OTP code, Security …

Have you migrated to the new Authentication Methods experience in Azure AD, and are you using TAPs yet? Read More »

Loading

Exchange Online – merge a soft deleted mailbox into an active mailbox

Hi! hope you are well… I used this script yesterday and thought “I must post about that!” So here it is… 😃 This can be a good way to deal with an employee leaving, or if you end up with a dual-mailbox scenario, although Microsoft have made that much less likely since adding the Hybrid …

Exchange Online – merge a soft deleted mailbox into an active mailbox Read More »

Loading

Microsoft 365 cross-tenant migration

Hello! Long time no… 🍻😊🍻 I thought I would share some PowerShell I used during a recent cross-tenant migration. Firstly, the Microsoft documentation is really good and got the journey off to a good start: https://docs.microsoft.com/en-us/microsoft-365/enterprise/cross-tenant-mailbox-migration?view=o365-worldwide PLEASE NOTE: Following is some fairly raw PowerShell. You can’t just press Go! You’ll need to understand and update …

Microsoft 365 cross-tenant migration Read More »

Loading

Please do NOT disable Security Defaults!

If you aren’t licensed for and using Conditional Access policies, please do not disable the security defaults feature just because something isn’t working (e.g. scan to email). Microsoft introduced the defaults for a very good reason – they realised that tenants without Azure AD Premium P1 licensing and correctly configured CA policies were wide open …

Please do NOT disable Security Defaults! Read More »

Loading

Runbook: Sync Shared Mailbox accounts with an Azure AD Group

Hey! I hope you are well.. 🤘 🙂 🤘. This script was a result of the following ponderings: How to monitor and manage the deletion of Blocked (Disabled) and Guest accounts in Azure AD. I have a Dynamic group for ‘Blocked (Disabled) users’, but members include valid Shared Mailbox accounts. What about Guest users… should …

Runbook: Sync Shared Mailbox accounts with an Azure AD Group Read More »

Loading

Scroll to Top