Microsoft 365 Zero Standing Access with Customer Lockbox

I am studying for one of the Microsoft 365 Certifications. I am using the free “Microsoft Learn”* offerings or paths. They are excellent. I already went through the “Azure Fundamentals” and passed that exam. But now I want to work on some Microsoft 365 or “M365” certification [Office 365, but with EMS – “Enterprise Mobility and Security”].

In Unit 5 of the Compliance Module, Microsoft points out that the most dangerous attack vector is compromised credentials. One way to fight this is with “Zero Standing Access”: it is a “users don’t get permissions by default” approach to data access within their Office 365 space. If they need access, there is a request process available. This needs to be set up accordingly. I absolutely love this.

M365 Zero Standing Access
Zero Standing Access

They also apply this concept to their Data Centers, by way of “Lockbox Workflow”. The point is that not everyone and anyone can simply open a file, or (in the case of a Microsoft Data Center) walk on into a tenant space and ‘look around’. They have safeguards to stop that and help customers get more organized around the matter of access and data security. IT and Auditors especially love this.

M365 Customer Lockbox
Lockbox

* Microsoft Docs, Microsoft Learn

New Thinking On Password Changes

I really like this way of thinking outside the box! Some of the old, and current, concepts on password complexity, length, history etc. are being revised. There is some new thinking on the matter, based mainly on trends and analytics Microsoft has done via millions of hack attempts on Azure based resources.

New Microsoft recommendations:

  • “Maintain an 8-character minimum length requirement (and longer is not necessarily better).
  • Eliminate character-composition requirements.
  • Eliminate mandatory periodic password resets for user accounts.
  • Ban common passwords, to keep the most vulnerable passwords out of your system.
  • Educate your users not to re-use their password for non-work-related purposes.
  • Enforce registration for multi-factor authentication.
  • Enable risk based multi-factor authentication challenges.”

Read it here 

LinkedIn Integration with Office Applications

Now that the Microsoft ‘LinkedIn’ purchase is completed, Microsoft is aggressively pursuing more relevant and very forward-thinking usage of all its applications in the SaaS [Office 365] world.

Nutshell: lots of resume / job searching /social profile types of integration between ‘LinkedIn’ and Office applications.

“With its $26 billion acquisition of LinkedIn getting the thumbs up from EU regulators, Microsoft is wasting no time in integrating the social platform with its productivity software.

The goal — as described by the tech giant’s CEO Satya Nadella — is to utilize LinkedIn’s networking and learning resources to help people “develop new skills online, find new jobs, and easily connect and collaborate.” “

Read it here

Samsung Galaxy S6 and Microsoft Office Apps

When worlds collide, and even … coexist.

“This might sound surprising but Samsung Galaxy S6 will be packed with Microsoft Office (free Office 365 subscription), OneDrive, OneNote and Skype. These probably aren’t the only ones to be included, but are mentioned in the report.”

It’s not a report, it is a fact by now, but it shows that this report was accurate. Microsoft Office is indeed included. Microsoft has been very aggressive with getting Office installed on various non Microsoft tablets and OS’s.

Read up on it

 

 

Microsoft OneDrive now at 10 Gigabytes of Storage

I just received this email from Microsoft:

“We’re excited to announce that you can now upload files up to 10 GB from desktop, mobile, and the web! Our goal with OneDrive is to provide a single place for all your files, and we don’t want you to be limited by file size.

Thanks,
The OneDrive Team”

10 Gigabytes of Storage – yikes, I don’t know if I have that much. ;>

If you do not know what it is, “OneDrive” used to be “SkyDrive”, and it is a Microsoft Cloud based storage area. You can upload pictures, videos, files to OneDrive either as your main working space (as opposed to saving to the Desktop, for example) or it can be a backup area. Either way, this is free disk space essentially …