Mark of the Web and trusting SharePoint Online
Andrew A common measure in corporate environments is to block macros files downloaded from the internet, which is implemented as a security measure to prevent users from inadvertently executing malicious. How…
Deploying Sentinel analytic rules from DevOps
There is a Microsoft Sentinel feature currently in public preview that allow you to deploy custom Sentinel content from DevOps or GitHub, such as analytic rules. The linked article provides…
Exchange Online SPF and domain validation
When on-boarding a domain to Exchange Online there is support documentation available detailing the DNS entries required for the domain to be successfully validated. One item not explicitly stated in…
Logic Apps and Concurrency Control awareness
If you’ve ever had strange, unexplainable behaviour in a Logic App loop that uses variables chances are the cause will be the Concurrency Control setting, which is turned off by…
WDAC feature limitations on Windows Server versions
Windows Defender Application Control (WDAC) is a core component of Windows, since Windows 10 and Server 2016, which can be used as part of your security posture to secure workstations…
#TIL WDAC logging and Policy Names from Windows Server 2016
In implementing a Windows Defender Application Control (WDAC) audit policy we discovered an interesting quirk with the information logged in the Windows Event Logs on Server 2016, that can make…
PowerShell script to convert WDAC XML file to binary CIP format
The Microsoft WDAC Wizard is a great tool for building and modifying WDAC policies, but there are times where it is necessary to manually modify the policy XML file. If…
Logic App security tips – Using a Key Vault
Logic Apps are amazingly powerful in what can be accomplished, and have a very low barrier to entry with their code-less approach, however care needs to be take to ensure…
#TIL converting a JSON date from a Dynamics 365 Business Event in a Logic App
While building a Logic App to perform actions based on business events in Dynamics 365, I faced a slight challenge – one of those challenges can sometimes be tricky in…
Generating a log file for an MSI or MSP
Recently when completing a MIM 2016 hotfix installation the upgrade process was failing with a very generic and largely unhelpful error message. It’s possible (and in the case of MIM…