Thibault CHÂTIRON

News informatique

License enforcement for Microsoft Purview Information Protection for sensitivity labels

Microsoft Purview Information Protection helps organizations classify and protect their data while ensuring end user productivity. To apply a sensitivity label to documents, emails, meetings, groups, and sites manually, the following licenses are required for both the tenant admin and each end user: For both client and server-side automatic sensitivity labeling, the following licenses are …

Use double-key encryption to protect your most sensitive files and emails in Microsoft 365 Apps

Update of https://thibaultchatiron.fr/2023/07/31/use-double-key-encryption-to-protect-your-most-sensitive-files-and-emails-in-microsoft-365-apps/ To protect your most sensitive content, users of Microsoft 365 Apps can now use Double Key Encryption (DKE) for files and emails using the built-in labeling client. With DKE, Microsoft stores one key in Microsoft Azure and you hold the other key, ensuring that only you can ever decrypt protected content, under all circumstances. …

[MDO] Quarantine End User Allow and Block list management

In Microsoft Defender for Office 365, Microsoft is updating the way end users allow and block emails in Exchange Online.  When this will happen: Microsoft will begin rolling out late April 2024 and expect to complete by mid-May 2024. How this will affect your organization: With one click, end users will block emails from unwanted …

March 2024 security update is available

The March 2024 security update is available for Windows 11 and all supported versions of Windows 10. For more information about the contents of this update, see the release notes, which are easily accessible from the Windows 11 and Windows 10 update history pages. Highlights for the Windows 11, versions 23H2 and 22H2 update:  REMINDER The June 2024 security update …

Authentication strength improvements to support passkeys

Conditional Access authentication strengths in Microsoft Entra ID will be improved to support registration of device-bound passkeys (defined at passkeys.dev) stored on computers, security keys, and mobile devices.  When this will happen: Public Preview: Microsoft will begin rolling out early March 2024 and expect to complete by mid-March 2024. Worldwide: Microsoft will begin rolling out late …

Data Loss Prevention: Turning on DLP analytics

In Microsoft Purview, Data Loss Prevention (DLP) analytics is a feature that enables you to analyze data protection challenges, gaps, policy, and posture enhancement possibilities in the organization. Use intelligent Purview features to explore these challenges and resolve them in a few easy steps. After you turn on analytics, you can review analytics and recommendations …

Data Loss Prevention – Adding matched attachment details in Activity Explorer for Data Loss Prevention rules in Exchange

Microsoft is adding new fields in Microsoft Exchange to help prevent data loss. With these updates, admins can see more details about the attachments that are present in the email that violated the Data Loss Prevention (DLP) rules, including name, size, and labels. There will be new fields for the attachments that are in emails when …

Microsoft Defender for Office 365: Block Sender in Quarantine notification will require signing in to security portal

Quarantine End User Allow and Block list management, sign in to the security portal will be required for the Block Sender action in Quarantine notifications.  When this will happen: Microsoft will begin rolling out early March 2024 and expect to complete by mid-March 2024. How this will affect your organization: When the user clicks on …

Suspension of Azure Application Administrator role for Management of add-ins across Outlook, Word, Excel, and PowerPoint

Admins can manage add-ins across Outlook, Word, Excel, and PowerPoint from the Integrated Apps blade in the Microsoft 365 Admin Center. This capability is currently available to Global Administrators, Global Readers, Exchange Administrators, and Azure Application Administrators. Going forward, Microsoft is suspending capability for Azure Application Administrators from management of add-ins across Outlook, Word, Excel, and …

End of the Azure Information Protection Add-in for Office

Microsoft is retiring the Azure Information Protection (AIP) Unified Labeling add-in for Office on April 11th, 2024. When this will happen: The AIP Add-in for Office will be permanently disabled in Office after May 1st, 2024. How this will affect your organization: To continue using sensitivity labels powered by Microsoft Purview Information Protection in Office …

Retirement of AdminAuditLog and MailboxAuditLog cmdlets

Microsoft would like to inform you about an upcoming change in the way you access and manage your Exchange Online audit logs. Starting April 30, 2024, Microsoft will be retiring the following four cmdlets in the Exchange Online V3 module: When this will happen: Microsoft will roll out this change late April 2024 and expect …

Prepare for device-bound passkeys in Microsoft Entra ID (changes to FIDO2 and Windows Hello for Business)

Update of Prepare for device-bound passkeys in Microsoft Entra ID (changes to FIDO2 and Windows Hello for Business) | Thibault Chatiron Beginning mid-February 2024, Microsoft Entra ID will support device-bound passkeys stored on computers and mobile devices as an authentication method in preview, in addition to the existing support for FIDO2 security keys. This enables your users …

Information Protection: Full File Evidence for all workloads in Activity Explorer

This new feature grants the user the capability to view the source link of the file associated with the activity flagged in Activity Explorer. When this will happen: Rollout will begin in late January 2024 and is expected to be complete by early February 2024.  How this will affect your organization: Users can view the …

Data Loss Prevention – View-only mode for Data Loss Prevention and Information Protection Policies and Labels

This capability allows the admin with view-only restricted permissions to view the Data Loss Prevention and Information Protection policy configuration details without editing the policies or label configurations. When this will happen: Microsoft will begin rolling out in late December 2023 and complete by early February 2024. How this will affect your organization: 1. Assign …

Ability to change retention period on labels set to start retention based on “When items were labeled”

Previously, admins could not change the retention period set on existing labels configured to start retention from when items were labeled. This feature will remove this restriction, and the resulting behavior will be consistent with other retention label types.   When this will happen: Rollout will begin in mid-January 2024 and is expected to be complete …

January 2024 security update is now available

The January 2024 security update is now available for Windows 11 and all supported versions of Windows 10. We recommend that you install these updates promptly. For more information about the contents of this update, see the release notes, which are easily accessible from the Windows 11 and Windows 10 update history pages. To learn more about the different types …

“Open Microsoft 365” button in Outlook Preview

Currently, there is there no support available for iOS users looking to edit PDF files on the previewer in Outlook mobile. Microsoft is rolling out a new “Open Microsoft 365” button that helps users open/edit PDF files received on Outlook through the Microsoft 365 for mobile app. When this will happen: Microsoft will begin rolling …

[Public Preview] Windows Autopatch Reliability Report

The Windows Autopatch Reliability report is a new feature that will be accessible in the Windows Autopatch Reports section of the Microsoft Intune admin center. This new report provides a calculated reliability score across update cycles based on the occurrences of stop code errors detected on managed devices. Scores are determined at both the service and tenant …

New Microsoft Defender Antivirus services on Windows Devices

Microsoft Defender Antivirus on Windows 10 and Windows 11 will be shipping with a new service: When this will happen: Microsoft will roll out to all rings (Current Channel (Preview), Current Channel (Staged) and Current Channel (Broad)) during the week of March 11th, 2024. How this will affect your organization: To enhance your endpoint security …

Changes to FIDO2 security key registration and sign-in experiences

During FIDO2 security key registration, Microsoft Entra ID users may see an operating system or browser-generated prompt for creating a passkey on another device, such as a phone or tablet. In some cases, a QR code is shown to facilitate this option. When this happens, the user needs to select “Use a different device” to …