All about Microsoft 365
Today’s article will be about the newly introduced /analyzedEmails Graph API endpoint, which in a nutshell is a lightweight Threat explorer implementation. While the new API fails to measure up to the robust tool that Threat explorer is, this is not to say it has no merit, as it does …
Continue readingFirst look at the analyzedEmails Graph API endpoint
A question over at Q&A highlighted some changes in the way Microsoft is generating Entra audit log records for license operations. We have talked about issues surrounding this process a lot in the past, for example in this article over at Practical 365. Apart from missing entries, a common pain …
Continue reading“Sequence” events in the Entra Audit log and how to work with them
An updated version of my “proof of concept” script to report on any and all externally shared files within the organization. This new version covers SharePoint Online sites as well and can also process individual sites via the -Sites parameter. The output has been reworked and now uses the ImportExcel module to generate a “pretty” Excel file with conditional formatting and clickable links. In addition, I’ve toyed with another version of the script that enumerates lists and list items, as opposed to the “classic” one that enumerates drives and processes them much like a traditional folder structure. Both versions should give you the same set of results, but can differ in performance and throttling aspect… …
Continue readingReport on externally shared files in Microsoft 365 via the Graph API
The limited (and convoluted) filter capabilities of the Graph API have lead to scenarios where people are using incorrect queries to filter out the set of users enabled for specific Microsoft 365 service(s). In this article, we will go over some of the common mistakes I’ve seen in online examples, and provide you with a “proper” solution, to the best of the current Graph API filtering capabilities. …
Continue readingHow to properly filter for specific enabled services via the Graph API/SDK
A short article on how to use the Graph API methods or the corresponding Graph SDK for PowerShell cmdlets to hard-match on-premises user object against their Entra ID counterparts. …
Continue readingHow to hard-match Entra ID users via the Graph API or the Graph SDK for PowerShell