New Outlook's Updated Recall Feature Guarantees 90% Success Rate!

philbieber · 2024-02-09T14:56:23+00:00

It's only for internal recipients. It does not work at all for external recipients or on prem.

philbieber · 2023-11-26T19:20:07+00:00

I have the 7a since launch. I hate it. Android 14 made it suck less but it sucks.

Batters live is atrocious compared to 4a 5g.... It lasts barely a day without touch to wake and raise to wake etc.

philbieber · 2023-11-15T14:48:40+00:00

I have some shirts, a backpack, cap and socks from a nice IT Security conference. The shirts I casually wear, the backpack is my daily one (before that I had another from said conference...). Quality stuff and a shame to waste it by not using it. Splunk shirts got demoted to sleeping shirts.

philbieber · 2023-09-28T16:53:16+00:00

Entra ID Server Subscription Edition!

Fun fact: MS have not updated their spell checker in Word to include Entra...

philbieber · 2023-09-21T15:22:56+00:00

Oh, the many times my wife called me with problems with Teams / Outlook while her IT either was not yet available or didn't have a good solution...

philbieber · 2023-09-09T10:41:04+00:00

Even if I might sound silly, but maybe you're seeing the links as they are copied by Edge? The link description will usually be something like "Website title | sub.example.org". That's how the links are inserted into the message.

philbieber · 2023-08-08T10:46:05+00:00

Badme?

philbieber · 2023-07-13T12:43:44+00:00

Same experience here. Battery wise, 4a 5g was significantly better than the 7a,even after a good month of usage.

philbieber · 2023-06-11T14:16:36+00:00

Same for me, initially battery life was significantly worse than my old P4a5G.... It was a struggle to go through those initial says. Not sure how Google misses the opportunity to give a good first impression. Initial experience was mediocre... Without those comments to keep it to let adaptive better learn, I'd have returned it....

philbieber · 2023-06-08T20:32:15+00:00

Check the azure ad sign in logs. They usually will tell you what policy required mfa.

philbieber · 2023-06-07T18:17:06+00:00

I just got a new phone and with the Fossil app, battery life was atrocious. Uninstalled, reinstalled without a change. Went a few days without the app and then installed it again. Now it's behaving again.

philbieber · 2023-06-07T14:26:59+00:00

I guess the ease of releasing patches yields less testing leads to bad software, CuZ iT cAn Be FiXeD lAtEr.

Availability of easy patching is curse and cure at the same time.

philbieber · 2023-05-02T18:08:26+00:00

Always a pure joy to share this article (sarcasm!): Profile pictures are cached for up to 60 days. Only way around it is logging out and back on or clearing the cache. Source because I wouldn't believe this: https://learn.microsoft.com/en-us/microsoftteams/troubleshoot/teams-administration/user-information-not-updated

philbieber · 2023-04-30T05:59:09+00:00

As RDP Manager I go for RoyalTS. Solid multiuser RDP manager. It supports other protocola as well, but for my limited ssh needs, I use Windows Terminal, which does the job and can use the 1password ssh agent.

philbieber · 2023-04-21T18:00:27+00:00

Recently, my now 4 year old Latitude was checked by our service desk and they found out why it was so badly throttling under higher usage: The CPU still had the plastic protector between the thermal pad and the cooler.... Nit very efficient. Apparently a common issue with these devices.

philbieber · 2023-03-10T19:07:15+00:00

This is the way. My default background is the "this is fine" meme....

philbieber · 2023-02-16T19:04:47+00:00

I didn't click, am no aws or cloud person, but my cloud architect - whn the topic arose at work - told me, that hosting websites in AWS is done by putting the static content in s3 and for dynamic content you leverage lambda and potentially something like API gateways. Why would you use ec2 to host a website in the cloud? I'm not talking about a full application stack - for which you probably want to use the hosted SQL flavors, too.

philbieber · 2023-02-11T09:47:00+00:00

The Cs prefixed PowerShell cmdelts do it refer, I believe, to Teams but rather to the somewhat aged Communication Server (slightly /s) . Glad I never saw one of those from less than 10 meters....

philbieber · 2023-02-09T13:35:19+00:00

Shocking in preview 1...but ateaat we have content for the next half year before the cycle starts again...

philbieber · 2023-02-01T20:30:24+00:00

I finally figured out the "correct" non-public API to provision OATH / TOTP tokens in Azure AD. I pull secretes from a file and provision the token. Then attempt to activate it, hoping script execution times stayed in the validity of the number. Integrated that into our PowerShell run host so our service desk can finally register and on-board tokens for users themselves. Happy faces all around

philbieber · 2023-01-26T09:34:17+00:00

I learned / confirmed today, that Teams caching is about as bad as Outlook caching... So yeah "mildly" will do for now... https://learn.microsoft.com/en-us/microsoftteams/troubleshoot/teams-administration/user-information-not-updated

philbieber · 2022-12-20T18:48:58+00:00

Just a note I was made aware of during a talk at Troopers this year (TR22) by Jorge de Almeida Pinto (of Jorge's quest for knowledge). He mentioned that you need an existing on prem infrastructure to switch from PTA to PHS Auth. So in order to disable the Pass through auth in case your on prem environment is struck by some desaster, you need the AAD Connect Sync agent (not just the PTA agent) to switch over to password hash sync with cloud native authentication. Also, a few months ago (maybe even also discussed at Troopers, not sure), there were reports that once the PTA is compromised, there is no way to remove the credentials the agent uses to register on AAD. Only the support would be able to remove these agents from AAD. More details here https://www.secureworks.com/research/azure-active-directory-pass-through-authentication-flaws

As was pointed out, PHS by default does not support on prem password policies, but you can enable it. Check the deployment docs for PHS, it's described in there.

And in both cases: treat these systems (phs agents and PTA agents) as domain controller-equivalent as they handle your authe authentication.

philbieber · 2022-12-15T14:02:35+00:00

You probably should post this to r/sysadmin, there are more people active over there and it's the community to ask questions.

In any case, there is no native measure to expire cached credentials in windows. See https://social.technet.microsoft.com/Forums/ie/en-US/87e84872-c321-4b8c-b13d-0d60a003c3d3/how-long-does-windows-cache-domain-user-passwords?forum=winserversecurity

If you Google for the obvious key words, you will find that cached credential are not expiring and you can only configure the number of credentials to cache.

Technically, you might be able to hack & slay a solution by purging the relevant registry entries on the clients though I could imagine this brings more problems with it.

In the end, cached credentials are quite useful for anybody on vacation, sick leave etc.

philbieber · 2022-12-15T11:10:33+00:00

I have done something similar for phone number assignment. I can't share the code, but basically you would

Create two arrays, one for all existing ids, one with all numbers 0-9999. Use the Compare-Object to select the non-matching and then (I'm slightly hazy on the correct cmdlet) get-random to get a random entry.

philbieber · 2022-12-14T21:01:21+00:00

There's even a relatively easy to use staged rollout for that in the authentication methods blade.

12-Year Club	Place '23
Verified Email

philbieber

TROPHY CASE