Step by Step: Intune Delegation with RBAC #1

| Next >

RBAC

RBAC, or Role Based Access Control is a methodology for assigning permissions to users based on their job role(s). Administrative Rights delegation benefits from RBAC methodology by restricting rights to the people who need them without granting excessive permission. It contrasts with the most common AD access control methodology, Discretionary Access Control (DAC).…

Continue Reading →

Microsoft 365 Content Search – Can’t Preview or Download Results

Problem

Here’s a problem that comes up regularly when running searches in the Microsoft 365 Security and Compliance portal (As of this date, these portals are scheduled to be separated with the upcoming changes to the admin portal). When you run a search, you can’t preview or download search results. In the search preview, you get this message: “to preview search results, please ask your compliance admin to grant you preview permission.”

Continue Reading →

AC Brown’s Cloud Guide – Part 4 – Cloud Service Providers

What are Cloud Service Providers

Moving from a traditional IT infrastructure to a cloud-based or hybrid infrastructure is a complicated undertaking. Cloud systems will reduce the level of control an organization has over their application, and getting the right setup is sometimes difficult. This is where Cloud Service Providers (CSP) come in. I should first point out that CSP is a Microsoft term for organizations that partner with them to provide migration, administration, architectural, security, and development services to their customers.…

Continue Reading →

How Does SPF Work?

No, I’m not talking about sunscreen. The SPF I’ll be discussing here is Sender Policy Framework. It’s an email security measure that can prevent unauthorized use of your email domain name. I’ll be going over a few things in this post, but if you just want to know how to craft an SPF record, you can scroll to the “The SPF Puzzle” section below.…

Continue Reading →

AC Brown’s Cloud Guide – Part 3 – Shared Responsibility Model

What does “Shared Responsibility” Mean

“Shared Responsibility” explains the demarcation line between what a cloud provider controls and what a cloud consumer controls. In a traditional DIY IT environment, responsibility for everything rests entirely on the business and its IT personnel. Electricity, physical security, hardware, software, and everything else has to be purchased, installed, maintained, and administered by the company directly or through an intermediary.…

Continue Reading →

AC Brown’s Cloud Guide – Part 1 – The Basics

Cloud Concepts and Terminology

As a consultant who was working on Office 365 migrations shortly after it was released (well, renamed), I have worked on a log of migrations. Migrations are a always a project that can be difficult to manage if not done properly. As with any project, planning for a migration is extremely important.…

Continue Reading →

IT Concepts – What is Identity Federation

One of the most historically difficult problems to address in IT is usernames and passwords for multiple applications. We all have a multitude of accounts we have to manage. Bank accounts, social media, email, work accounts, cloud storage, and every other system we use relies on usernames and passwords to “authenticate” who we are. There are a number of different solutions for this problem, but the most user friendly method is a technique called “Identity Federation.”…

Continue Reading →

Step by Step: Export Office 365 OneDrive Data

Office 365’s OneDrive is a wonderful tool for storing, sharing, and securing access to files of all types, but running an export of Office 365 data can be confusing. One of the rules for OneDrive is that, unless shared, data is normally only accessible by the user who owns the OneDrive folder. But when employees leave the company, accessing that data and exporting it to a more accessible location requires a bit of work.…

Continue Reading →