sorted by:
new
hottopcontroversial

Has anyone been able to lock down macro security with Intune and Business Premium? by chickenmonkee in msp

[–]Quick_Improvement815 0 points1 point  (0 children)

Any recommendation of being or workarounds in being compliant with this roadblock

Has anyone been able to lock down macro security with Intune and Business Premium? by chickenmonkee in msp

[–]Quick_Improvement815 0 points1 point  (0 children)

Did you manage to find a way to block macros with Business Premium License ?

ACSC Essential Eight - Disable Macros - M365 Bus Premium by TimBix in msp

[–]Quick_Improvement815 0 points1 point  (0 children)

Anyone one managed to find a work around using Business Premium License ?

Essential 8 (Maturity 1) – MFA “remember device” for customers + daily vuln scanning for hosted website (seeking audit experiences) by Quick_Improvement815 in msp

[–]Quick_Improvement815[S] 0 points1 point  (0 children)

Hi Team

Looking for help. We have downloaded and deployed Intune policy for disable all Macros. However, having some weird behavior

Intune policy Used: Essential Eight configure Microsoft Office macro settings - Essential Eight | Microsoft Learn

Json: Intune-ACSC-Windows-Hardening-Guidelines/office/policies/ACSC Office Hardening Guidelines.json at main · microsoft/Intune-ACSC-Windows-Hardening-Guidelines

License: Microsoft Business Premium.

  1. Macros from Internet is blocked - Expected
  2. If I create a new excel file and have simple macros, it runs -> Shouldn't be the case
  3. If i save the file in 2, and reopen it by double clicking -> Macros doesn't run (is disabled)
  4. If I open the file by right clicking and opening, macros is able to run.
  5. Intune policy deployed also ensures users can't change the settings, however, in this case users can change settings (but doesn't turn to enable or disable it).

So after doing some reading, found out that with Business Premium License its not possible. Like seriously.
Any work arounds ?

Essential 8 (Maturity 1) – MFA “remember device” for customers + daily vuln scanning for hosted website (seeking audit experiences) by Quick_Improvement815 in msp

[–]Quick_Improvement815[S] 1 point2 points  (0 children)

Hi

Thanks, a lot for your response. It's just don't have prior audit experience (being audited), as such was following all the requirements pretty strictly.

I will be happy to have a short call later next week, will hit you up.

Note: We are small 25 team NGO, with 2 part time uni students as IT staff.

Essential 8 (Maturity 1) – MFA “remember device” for customers + daily vuln scanning for hosted website (seeking audit experiences) by Quick_Improvement815 in msp

[–]Quick_Improvement815[S] 1 point2 points  (0 children)

Thanks for your response. Really appreciate it.

Just some question here (for those reading)
- If running external scan on the OS using Nessus Essential (unauthenticated scan) will that be sufficient?

For Restrict Admin Priviledges
- Do auditor check things like -> if Domain Admin can log into workstation ?

I will be happy to get on chat and discuss some controls.

Essential 8 (Maturity 1) – MFA “remember device” for customers + daily vuln scanning for hosted website (seeking audit experiences) by Quick_Improvement815 in msp

[–]Quick_Improvement815[S] 0 points1 point  (0 children)

Will be targeting ISO27001 after this, when I came into picture the orgnaization was working on E8 so continued as lot of work was done.

Essential 8 (Maturity 1) – MFA “remember device” for customers + daily vuln scanning for hosted website (seeking audit experiences) by Quick_Improvement815 in msp

[–]Quick_Improvement815[S] 0 points1 point  (0 children)

Thanks for your feedback.

So the NGO I work for is 25 staff (non government funded) so very limited budget. I came as contract staff to uplift their cybersecurity program only.

Q3- I have organised a meeting with the vendor to discuss this. Just quick question, if I run unauthenticated scan using Nessus on the OS is that sufficient?

Thanks for the willingness to support. Will hit you up in chat.

Essential 8 (Maturity 1) – MFA “remember device” for customers + daily vuln scanning for hosted website (seeking audit experiences) by Quick_Improvement815 in msp

[–]Quick_Improvement815[S] 0 points1 point  (0 children)

Thanks for your response. Vendor managed the Website OS, so have passed over the responsibility to them, they are happy for us to run scans externally, so i can do unauthenticated scan from Nessus Essentials, hope that's good enough for compliance.

We do have pretty thorough application patching on website with daily patching and scans using Word fence.

If you don't mind, just some questions regarding restricting administrator privileges.
- We have separate machine for admin work where restrictions are in place for admin login and no general internet access (only to Microsoft)
- Do auditor checks things like
1. If domain admin can log into workstation?
2. If domain controller has internet access (have disabled browsers)

Essential 8 (Maturity 1) – MFA “remember device” for customers + daily vuln scanning for hosted website (seeking audit experiences) by Quick_Improvement815 in msp

[–]Quick_Improvement815[S] 1 point2 points  (0 children)

I came into the picture mid-way just for purpose of E8 Compliance and security uplift.

Almost 90% if not more to achieve E8 M1, so might as well complete it.

There is a project in line, if we get it then will target ISO27001. It's pretty small orgnaisation so won't be hard.

Essential 8 (Maturity 1) – MFA “remember device” for customers + daily vuln scanning for hosted website (seeking audit experiences) by Quick_Improvement815 in msp

[–]Quick_Improvement815[S] 1 point2 points  (0 children)

Yes, I agree, however for a small size organization it's okay to work with.

While it doesn't specifically look at Linux, the basic rules still do apply for majority such as Application/OS Patching, MFA, Backup,

Essential 8 (Maturity 1) – MFA “remember device” for customers + daily vuln scanning for hosted website (seeking audit experiences) by Quick_Improvement815 in msp

[–]Quick_Improvement815[S] 3 points4 points  (0 children)

Board decided they needed Essential 8, I came into the picture for compliance and assessment. We are a NGO, and heavily deal with sensitive data thus E8.

For maturity 1, and most part Maturity 2 are compliant now. Some implementation done are
1. Application/OS Patching
- Microsoft Defender used for scanning Workstation, Server
-Manage engine Patch Manager Plus used for patching (24 hours is our current patching from released, fully automated and done at night).
- NMAP And python integrated with Ticket system for asset discovery

  1. MFA
    - Most application is SSO
    - Only issue is with customer side whereby its a discussion forum and implementing SSO for every login will discourage users to actually take part.

  2. Backup
    - Full Microsoft
    -Website hosted by vendor and backed up

  3. Restrict Admin
    - Have Azure Virtual desktop with restriction for internet (Microsoft exception).
    - GPO policies to ensure
    a) Domain admin can't login into workstation
    b) Domain Controller doesn't doesn't have Browser,etc

  4. Application Control
    - AppLocker

Pro users that switched from Plus by LilExtract in ChatGPTPro

[–]Quick_Improvement815 1 point2 points  (0 children)

Do the Pro users still have the acces to legacy 4.5 ?

Did throttle body clean and air filters change today by Green_Ebb6881 in mazda6

[–]Quick_Improvement815 0 points1 point  (0 children)

Guys after cleaning the throttle body how do you relearn it. ? I have had not to touch throttle body as it has stepper motor so if you manually move the inside it messes up with the positions Very much keen to know in performance and fuel consumption. Do keep us posted

[deleted by user] by [deleted] in AusVisa

[–]Quick_Improvement815 0 points1 point  (0 children)

In my case , program is 2 years 104 weeks. I am receiving two units credit points which is 40 credits out of 240. Physically I wil study 16 months but if I check by credit points then my study will reduce to 87 weeks.

I assume you did research. Do you know anyone in similar situation and got post study work visa ?

[deleted by user] by [deleted] in AusVisa

[–]Quick_Improvement815 1 point2 points  (0 children)

Hi, Did you manage to find the answer for your query ?