All about Microsoft 365
Last week, we explored Entra ID’s app instance property lock feature. As part of the process, we examined one possible way that bad actors could take advantage of the convoluted nature of working with multi-tenant applications within Microsoft 365 and their in-tenant representation, the service principal. As the app instance …
Continue readingScript to review and remove service principal credentials
UPDATE: The property is now available in the /v1.0 version of the Graph API! Today’s article will be a short one. In a small, but meaningful update, Microsoft has released a new addition to the signInActivity resource, which allows us to determine the last time a given user was able …
Continue readingWe can finally report on last successful login timestamp in Entra ID
For this week’s updated PowerShell script, we will tackle the scenario of removing all mailbox (Full access) permissions for a given user. Such task might be performed as part of a cleanup after (suspected) account compromise, or as part of the leaver process. We did in fact cover this scenario …
Continue readingBulk remove mailbox permissions for Microsoft 365 users
Microsoft recently introduced the Invoke-HoldRemovalAction cmdlet to help organizations with the removal of orphaned and legacy holds within Microsoft 365. In this article, we will take the cmdlet for a spin and test it against several scenarios… …
PowerShell scripts that allow you to manage mailbox folder permissions in bulk, leveraging the Exchange Online V3 PowerShell module… …
Continue readingManaging mailbox folder permissions in bulk in Microsoft 365