Move away from ADFS to password sync or PTA

Nowadays, a “normal” ADFS infrastructure with high available ADFS servers and high available proxy servers in the DMZ is not future proof anymore. Especially, since most companies want to remove the dependency of on-premise servers to authenticate to cloud services. Therefore, I was tasked to create a plan to get rid of our on-premise ADFS infrastructure.
Continue reading “Move away from ADFS to password sync or PTA”

Automate tasks secure with Powershell against Office 365

Part 1: Create a service account
In order to run a script we will use a separate service account. Create this account in Active Directory without additional permissions but with a strong password. In Office 365 I made this account Exchange Administrator for demo purposes but you can limit permissions depending on the tasks you want to automate. Continue reading “Automate tasks secure with Powershell against Office 365”

Remove the Store and Yammer app from the app launcher in Office 365

Last year Microsoft made the decision to activate Yammer on every new and existing tenant by default to encourage using it. Not everyone is happy with this and therefor I will describe how you can manage this from an admin’s point of view. Also many companies want to disable the access to the Office 365 store and remove the app that goes with it. Continue reading “Remove the Store and Yammer app from the app launcher in Office 365”

Fix Office 365 Room Mailbox permission issues

Mostly after assigning permissions for a Room Mailbox in Office 365 the permissions are not correctly synchronized to Outlook clients. I created cases at Microsoft for this “bug” but it seems a fix for this annoying issue is still far away. However instead of waiting for days (or eternity) there is something you can do to fix this within minutes! Continue reading “Fix Office 365 Room Mailbox permission issues”

Prevent headaches by upgrading to the new OneDrive for Business next generation sync client

Recently, Microsoft switched over their default OneDrive for Business to the new OneDrive sync client. It was already possible to run it but was still in a beta phase. In the last couple of months, I did some extended testing and even did a rollout recently for a big company. I can honestly say the improvements are significant, especially in stability.

Continue reading “Prevent headaches by upgrading to the new OneDrive for Business next generation sync client”

Preprovision hundreds of OneDrives at the same time

If you want to roll out OneDrive For Business into your organization and you also want to make life easy for the users you can bulk preprovision the OneDrives. Luckily there is a way to retrieve all Office 365 users and with some Excel/Notepad++  tricks you can list them in a txt file and preprovision 200 OneDrives at the same time (you can do this multiple times). Continue reading “Preprovision hundreds of OneDrives at the same time”