virtual-tech
Brass Contributor
Joined 7 years ago
User Profile
User Widgets
Recent Discussions
Force change password at next login on-premise and MS online
Hi Currently, I have a hybrid environment with AD on-premise, Azure AD sync (with password hash & SSPR), and Exchange Online. My goal is to force change the password at the next login from on-premise AD to MS online and vice versa. It's working. When I change the password on-premise AD, MS Online prompts me to change the password. It is not working when I set the account from the Admin center to force the password change at the next login; it does not sync to on-premise AD. The domain computer will not prompt to change password. Thanks in advance MS recommend to try this Install-Module -Name Microsoft.Graph Connect-MgGraph -Scopes "OnPremDirectorySynchronization.ReadWrite.All" Then run this command. $ $OnPremSync.Features.UserForcePasswordChangeOnLogonEnabled = $true Update-MgDirectoryOnPremiseSynchronization -OnPremisesDirectorySynchronizationId $OnPremSync.Id -Features $OnPremSync.FeaturesForcePasswordChangeOnLogOn
Hi, I have a Hybrid environment, AD on-premises, Azure AD connect and Exchange Online. Currently using SSPR. Are there any risks enablingForcePasswordChangeOnLogOn? This won't impact the current accounts to change password? get-adsyncaadcompanyfeature PasswordHashSync : True ForcePasswordChangeOnLogOn : False UserWriteback : False DeviceWriteback : False UnifiedGroupWriteback : False GroupWritebackV2 : FalseSSPR at the windows sign-in screen by creating a device policy in Intune
Hi We are gradually deploying SSPR at the windows sign-in screen by creating a device policy in Intune. Option B mentioned in this article is to deploy a registry. My question is, does the registry get deployed with the Intune device policy? Because I have the registry below and I did not add it. HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\AzureADAccount "AllowPasswordReset"=dword:00000001Azure write back number of security sign in questions.
Hi I enabled SSPR 24 hours ago and checked the box security questions an hour ago. In my test accounts, I don't get prompt for any security questions. I only get prompted for i forgot password and verification steps. Do the security questions policy take a couple hours to apply?Azure write back
Hi I just started the process toConfigure account permissions for Microsoft Entra Connect using this guide. After steps 12-14, The popup warning permissions appeared. Is this normal? any concerns I should be aware of? In theApplies todrop-down list, selectThis object and all descendant objects UnderPermissions, select the box for the following option: Unexpire Password When ready, selectApply / OKto apply the changes and exit any open dialog boxes.Defender Tenant allow/block list
Hi Could someone please she some light on the questions below. Thank you! I need to fully understand what exactly the Tenant Allow/Block lists does is for the two features below. My understanding. domains and addresses are basically, domains I have manually tagged as allowed or block in the quarantine page. Spoofed servers: allow external senders to send as your domain. But why not just add them to the SPF record.email forwarding failed in DMARC
My primary office Corp is using Exchange online and we acquired another company with exchange online as well. In the new company tenant, the mailboxes were converted to shared mailboxes with email forwarding to CORP. Some of the emails fail to be delivered because of DMARC.The error is 550 5.7.509 DMARC verification fails. In CORP we have v=DMARC1; p=quarantine; pct=100; Does anyone have any suggestion?Office 2016 - Your Privacy Option Popup
Hi Globally we are using local Office 2016 Enterprise. I would like to do Uncheck/grey-out the option "turn on optional connected experiences." See visual below. From my search this can only be done by GPO. Option 1 below. This can also be configured in the Office2016 / 2019 / 365 ADMX Group Policy files. User > Policies > Admin Templates > Microsoft Office 2016 > Privacy > Trust Centre 1. Allow the use of additional optional connected experiences in Office 2. Allow the use of connected experiences in Office 3. Allow the use of connected experiences in Office that analyzeContent