With the increasing reliance on mobile devices in the workplace, organizations must choose the right strategy to manage and secure corporate data. Microsoft offers two primary options: Mobile Application Management (MAM) and Mobile Device Management (MDM). Understanding the differences between these approaches is essential for balancing security, user experience, and administrative effort. This article provides... The post MAM vs. MDM: Choosing the Right Mobile Management Approach appeared fi...| Modern Workplace Blog
Organizations face increasing challenges in securing internet traffic and enforcing web access policies in today’s hybrid work environment. Two key tools from Microsoft, Microsoft Entra Internet Access (Global Secure Access) and Microsoft Defender for Endpoint (MDE), offer robust capabilities for managing security and productivity on the endpoint. This article provides an in-depth comparison between the... The post Comparing Web Filtering and Security: Microsoft Entra Internet Access (Globa...| Modern Workplace Blog
With the introduction of a converged policy combining settings from the legacy MFA portal and SSPR configuration, separating the use of SMS for password resets from its use as an MFA method has become challenging. This guide explains how to configure authentication policies effectively using authentication strengths in Microsoft Entra to address this issue. Table... The post Navigating New Authentication Methods: SMS for Password Reset, Not for MFA appeared first on Modern Workplace Blog.| Modern Workplace Blog
Enhancing the security of your organization’s communication channels is more critical than ever. Building on foundational protocols like SPF, DKIM, and DMARC, you can implement advanced technologies such as IPv6, DNSSEC, STARTTLS, DANE, and RPKI to secure Microsoft 365 email environments, specifically focusing on Exchange Online functionality. These protocols work in tandem to mitigate risks,... The post From SPF to DANE: Securing Microsoft 365 Email Communications appeared first on Modern ...| Modern Workplace Blog
As Microsoft continues to enhance security across its platforms, Multi-Factor Authentication (MFA) is becoming mandatory for an increasing number of administrative portals. This shift means that relying solely on a username and complex password for break glass accounts is no longer viable and should be revisited (if not already done). This initiative aligns with Microsoft’s... The post Protecting your Break Glass accounts in Entra now that MFA gets enforced on more and more Admin portals ap...| Modern Workplace Blog
In a modern managed workplace environment, ensuring that devices meet minimum operating system (OS) requirements is a critical aspect of security and compliance. By governing the OS versions allowed within your Microsoft Intune environment, you can prevent unsupported or outdated systems from accessing corporate resources. Additionally, having well-configured Windows Update for Business (WUfB) settings can... The post Governing OS Versions in Microsoft Intune: Best Practices and Configuration...| Modern Workplace Blog
Introduction Managing Apple devices in Microsoft Intune requires maintaining active integrations with Apple services. To ensure continued functionality, administrators must periodically renew four key components, including the SCIM token for third-party applications integrated via Microsoft Entra ID: Failure to renew these components before they expire can disrupt device management and app deployment. This guide provides... The post Renewing Apple Enrollment Program, VPP Token, and MDM Push C...| Modern Workplace Blog
Today (Tuesday February 27th) I have the pleasure to speak at the February 2024 Azure APE Meetup organized by the Azure Platform Engineering (APE) community. The event, which is hosted by ShareValue, is held in Gouda, the Netherlands and starts at 18:00. At this event, I will be speaking about Microsoft Entra Id Conditional Access,... The post Speaking at the February 2024 Azure APE Meetup appeared first on Modern Workplace Blog.| Modern Workplace Blog
Next week it’s time again for the annual Workplace Ninja Summit in Lucerne, Switzerland. The summit will start on Monday September 16th till Thursday September 19th. The Workplace Ninja summit is organized by the different Workplace Ninja user groups and consists of many Microsoft community heroes like Mirko Colemberg, Thomas Kurth, Daniel Schädler, Kenny Buntinx,... The post Speaking at the Workplace Ninja Summit 2024 appeared first on Modern Workplace Blog.| Modern Workplace Blog
This Thursday, I will visit and speak at the Cloud Identity Summit in Cologne, Germany. The Cloud Identity Summit is organized by Thomas Naunheim, Gregor Reimling and René Wasel. The Cloud Identity Summit is a hybrid event, were attendees can join both on location and remote via Teams. Sessions are not recorded though and even... The post Speaking at the Cloud Identity Summit 2024 on Thursday September 5th appeared first on Modern Workplace Blog.| Modern Workplace Blog