Category: Skype for Business

December 2nd, 2021 by Author

Additions : 7
Updates : 17

New Features Current Status
Microsoft Teams: Local time added to people profile In Development
Microsoft 365 compliance center: Insider Risk Management analytics for Government clouds In Development
Office app: Create Videos on Office mobile app In Development
Microsoft 365 compliance center: Insider risk management – Native triggers (New signals, indicator selection, customization, Activity explorer) In Development
OneDrive and SharePoint: Markup Ink for Edit HVC (high-value controls) In Development
Microsoft 365 compliance center: AIP client and scanner data surfaced in Content explorer In Development
Microsoft Information Protection: New roles and role groups for granular permissions management In Development
Updated Features Current Status Update Type
Excel: Co-authoring Support For Protected Files in Excel and Excel for the web Launched Status
Microsoft Search: Conversation search in Microsoft search in Bing, Office.com and SharePoint In Development Title, Description
Microsoft Search: People centric search in SharePoint and Office.com In Development Description
Microsoft 365 admin center: Informed network routing – SD-WAN integration Launched Status
Office 365: Intelligent Suggestions Launched Status
Outlook for Windows: Editor Launched Status
Microsoft Compliance center: Information Governance: Retention label deletion behavior change in SharePoint Rolling Out Status
Microsoft Information Protection: Co-authoring on encrypted documents Launched Status
Excel: Support for Large Files from SharePoint in Excel for the web Launched Status
Microsoft Teams: Teams device management for Surface Hubs Rolling Out Status
Microsoft Viva: Viva Insights homepage with personal insights Launched Status
SharePoint: SharePoint site template admin controls in PowerShell Rolling Out Status
Office 365: New security policies in Trusted Documents Rolling Out Status
Microsoft 365 compliance center: Communication Compliance integration with Power Automate for GCC High and DoD In Development Title
Microsoft Viva: Manager insights in Microsoft Viva Insights app, Outlook and Office.com Launched Status
SharePoint: Updated site creation experience Rolling Out Status
Microsoft Teams: Sign out from Teams Admin Center on Teams displays Rolling Out Status

Regards
The Author – Blogabout.Cloud

Posted in Skype for Business

December 2nd, 2021 by SharePoint Maven

External sharing is one of the trends of modern collaboration – we constantly need to share content with clients, vendors, partners, contractors, etc. The prevalent way to do so is via external sharing of files and folders I documented previously. However, there is another way to share the same information externally, via the Anyone link in SharePoint Online, and that is what I would like to explain to you in this post.

Two ways to share externally

When it comes to sharing files and folders externally, there are really only 2 options that we have in SharePoint Online and OneDrive. We can either share with Specific people

…or via Anyone Link (Anonymous sharing)

Each option comes with its pros and cons. I want to compare the two options and share some advice on Option # 2.

Specific People

When you choose the Specific People link, you can choose the specific people (external users/email addresses) you want to share files or folders with. The recipient would need to type in the additional passcode they would request by email, taking care of their login/authentication. Once again, I documented this process extensively here.

Pros

  • Pretty secure
  • The link will only work for users the content was shared with
  • You can easily see who made the changes to the content since the user is logged in using their personal email address

Cons

  • Have to manually remove access to the shared content
  • When sharing a folder or a document externally and you allow the recipient to edit content, they can also delete it as well

Anyone Link (Anonymous Sharing)

Another alternative to share externally would be via the Anyone link. This option is enabled by default in OneDrive for Business, but has to be enabled for the SharePoint sites.

The beauty about this option is that this option does not require the user to type in additional passcodes, and the user has access to the content immediately after clicking on a link.

Anyone link in SharePoint Online

Pros

  • Seamless for the user
  • No extra steps or clicks
  • It does not allow the user to delete content (even when granted Edit permission)
  • Has additional “security” features built-in if necessary (more on this below)

Cons

  • You will never know who accessed the content since the user does not authenticate (link can be forwarded to anyone else)

How to share securely with Anyone link in SharePoint Online

With that being said, if you do like the convenience of the Anyone link, there are ways you can make it more “secure.”

Open in Review Mode only

This feature only applies to situations when you share a single Word file (does not apply to any other Office files like Excel or PowerPoint). When enabled, this feature allows the recipient only to leave comments and suggestions and not actually change the file.

Anyone link in SharePoint Online

Link Expiration

This feature expires the link on the date specified.

Anyone link in SharePoint Online

File/Folder Password

This feature allows you to set a password for the shared file or folder. Once the link is shared, you would also need to share the password with the recipient separately. This is almost like the passcode option on the Specific People link above, except you can agree on a friendly password with your recipient and not rely on temporary passcodes sent by Microsoft.

Anyone link in SharePoint Online

Anyone link in SharePoint Online

Block Download

And finally, this feature prevents users from downloading documents locally to their computers. This option is only available on shared files, not folders, and only when generating view-only links (not available with Edit link).

Anyone link in SharePoint Online

The post How to share securely with Anyone link in SharePoint Online appeared first on SharePoint Maven.

Posted in Skype for Business

December 1st, 2021 by Tom Arbuthnot

image

Interesting news today, Microsoft launched a new Teams only SKU, Microsoft Teams Essentials.

While Microsoft has generally moved away from single product SKU’s towards various Office 366 bundle plans, they must feel there is a demand for customers who are not ready for/don’t want full Office 365 but are specifically shopping for a chat and meetings solution. Possibly overwhelmed by moving up to Microsoft 365 Business Basic? Or maybe they are happily using Gmail or consumer email but need a meeting platform. They could also be using classic on-premises Office or Exchange from a third-party hosting provider.

Microsoft is also making direct comparisons to Zoom Pro, the SKU that unlocks their meeting limits and costs $14.99 vs $4 for Microsoft Teams Essentials

Microsoft Teams Essentials will be available directly from Microsoft web-direct) and select Microsoft Cloud Solution Providers (CSP).

Microsoft Teams (free) offers:

  • Group meetings for up to 60 minutes, limited to 100 participants
  • Direct user to user calls, limited to 60 minutes per call
  • Up to 100 participants per meeting
  • 5 GB of cloud storage per user
  • chat
  • File sharing, tasks, and polling
  • Support is self-help online and forum

Microsoft Teams Essentials includes everything in Free and adds:

  • group meetings for up to 30 hours
  • Up to 300 participants per meeting
  • Up to 30-hour time limit on any single user to user call (so effectively no limit)
  • 10 GB of cloud storage per user
  • Anytime phone and web support

Note, Free, Essentials and Teams personal all drop the SharePoint backed Channels feature in favour of just basic Chat.

People using Microsoft Teams for personal use can get access to these same Essentials features and extended meeting limits with a Microsoft 365 Family and Microsoft 365 Personal subscription.

Stepping up to Microsoft 365 Business basic, for only $1 more per user, adds a whole bunch of functionality

  • Team meetings recordings with transcripts
  • Web and mobile versions of Office apps 2
  • Expanded cloud storage of 1 TB per user
  • Business-class email

As I understand it, Business Essentials should also be getting PSTN conferencing included, but I’m trying to get that clarified.

 

Reference:

Microsoft blog: New Microsoft Teams Essentials is built for small businesses

Posted in Skype for Business

December 1st, 2021 by Tom Arbuthnot

image

Interesting news today, Microsoft launched a new Teams only SKU, Microsoft Teams Essentials.

While Microsoft has generally moved away from single product SKU’s towards various Office 366 bundle plans, they must feel there is a demand for customers who are not ready for/don’t want full Office 365 but are specifically shopping for a chat and meetings solution. Possibly overwhelmed by moving up to Microsoft 365 Business Basic? Or maybe they are happily using Gmail or consumer email but need a meeting platform. They could also be using classic on-premises Office or Exchange from a third-party hosting provider.

Microsoft is also making direct comparisons to Zoom Pro, the SKU that unlocks their meeting limits and costs $14.99 vs $4 for Microsoft Teams Essentials

Microsoft Teams Essentials will be available directly from Microsoft web-direct) and select Microsoft Cloud Solution Providers (CSP).

Microsoft Teams (free) offers:

  • Group meetings for up to 60 minutes, limited to 100 participants
  • Direct user to user calls, limited to 60 minutes per call
  • Up to 100 participants per meeting
  • 5 GB of cloud storage per user
  • chat
  • File sharing, tasks, and polling
  • Support is self-help online and forum

Microsoft Teams Essentials includes everything in Free and adds:

  • group meetings for up to 30 hours
  • Up to 300 participants per meeting
  • Up to 30-hour time limit on any single user to user call (so effectively no limit)
  • 10 GB of cloud storage per user
  • Anytime phone and web support

Note, Free, Essentials and Teams personal all drop the SharePoint backed Channels feature in favour of just basic Chat.

People using Microsoft Teams for personal use can get access to these same Essentials features and extended meeting limits with a Microsoft 365 Family and Microsoft 365 Personal subscription.

Stepping up to Microsoft 365 Business basic, for only $1 more per user, adds a whole bunch of functionality

  • Team meetings recordings with transcripts
  • Web and mobile versions of Office apps 2
  • Expanded cloud storage of 1 TB per user
  • Business-class email

As I understand it, Business Essentials should also be getting PSTN conferencing included, but I’m trying to get that clarified.

 

Reference:

Microsoft blog: New Microsoft Teams Essentials is built for small businesses

Posted in Skype for Business

December 1st, 2021 by Martin Boam

I noticed that on the M365 roadmap Restart live events has launched ! Interesting !

Its something I’ve seen requested many times from when live events was launched and every live event i produce its always the thought of once its started you cant restart are you sure moment! Well not anymore lets take a look. I did find locating the restart event button a bit hidden at first.

From looking it seems you can restart an event thats live and also end an event and then restart it again. The restarting a live event seems to mean the attendees wont see an event has ended message and have to re join again whereas ending an event and then restarting it show a message then the event has ended and required attendees rejoin with the same link. Perhaps restarting an event thats live is best from an attendee point of view so be careful of this. In both case restarting an event warns that any recording, transcripts is lost and producers and presenters are forced to rejoin.

Schedule Live Event

So in the Teams Desktop Client i scheduled a live event

Used default settings and hit schedule

Join Live Event

I joined as producer added some content and my video

Set the Stage

I turned on video and shared a powerpoint and added the content to the stage in the queue and pressed Send live

Once ready i pressed Start and i first noticed the message that you cant restart the live events has gone.

Were Live

I pressed continue to start and were Live!

End Event then restart – option 1

I pressed End and it mentions i can restart an events after it has ended by pressing the restart button 🙂 so i continue to end the event

Hmmmmm where is the restart button!

My video & content has gone and it has “The live event has ended” but i cant find restart button.

Restart Event – Found it !

Found it ! its under the … of course it is

i press restart event and get this message

So restarting the end will mean that any on demand, recording, captions or transcripts that had taken place wont be saved and producers and presenters will need to join again.

I click restart

and i see a checking if we can restart your event message. Then the windows closes and im back to my calendar in Teams so i join the live event again. So your kicked out. producers and presenters must rejoin again.

Re join my restarted event and start again!

Its as if the first event i started, went live, ended and restarted never existed i mean i have restarted the event and i want to start again.

I checked the live event urls and they seem to be the same as well so you can restart a live event now but you wont be able to get anything back from before you restarted the event including recordings etc. You have to start the event again which is the point but dont think you can get recording or data before you hit end and restart.

You can restart event during a live event – option 2 it seems

I also tested restarting an event that’s live and i didnt end the event and both scenarios worked.

This way looks better for attendees as they dont need to rejoin it says.

Audience View of a restarted event thats been ended and restarted – option 1

View Event live here in browser

Ended the Event and audience see the normal end message

Restart Event

Audience member seem to have to also join back into the event but using the same url which is good and i see the message the live event hasnt start. i started it and all was good.

Option 2 – Audience view of a restart event that’s live

I did try a audience member viewing event whilst is was stopped then restarted the event to see if the event would restart without the audience member having to re join but that didn’t seem to work and so i had to re join the event again so that’s one thing to remember for your viewers.

Microsoft Live Event guide – Which mentions restarting as well now

This mention that only producers and presenters would need to rejoin not attendees. listed here

Teams will then verify that the event can be restarted. If Teams can successfully restart your live event, the producers and presenters will be disconnected, while attendees watching the event will see a waiting screen informing them that the event will begin shortly. Producers and presenters will need to rejoin and start the event again.

The behaviour was different when i restarted a live event and didnt end its technical i restarted a live one and didnt end it so makes sense but i didnt see the exact message but ill keep testing.

https://support.microsoft.com/en-gb/office/produce-a-live-event-using-teams-591bd694-121d-405c-b26d-730315e45a22#:~:text=%20Restart%20your%20live%20event%20%201%20Select,pop%20up%2C%20select%20Restart%20to%20confirm.%20More%20

Posted in Skype for Business

December 1st, 2021 by Ankita Kirti

Over the last year, we’ve been making improvements to OneDrive to ensure you have the tools you need to do your job, so you can get more done in the most efficient way. One thing we’ve heard directly from you is that you’d love a way to work on your photos in OneDrive without having to open another app. 

Today we’re excited to announce new photo editing features in in OneDrive on the web that will enable you to crop photos, adjust light and color, add creative filters, and mark up photos for editing, all in one place, so you can quickly add them to presentations, share them on social media, or use in meetings to enhance discussions about product development or marketing. 

 

Crop a photo to hone in on your subject 

 

When you want to focus on a specific part of a larger image, you can easily use the Crop feature to trim out the parts you don’t need. You can crop your photos manually to get the exact effect you want. You can also use preset aspect ratios to crop images to standard sizes for social media, helping you share images and stories more in the moment, or enhance your landing pages with new profile images or banners.  

 

Crop your imagesCrop your images

 

 

 

Turn it or flip it to gain new perspective 

 

With the rotation feature, you can rotate your photos left and right by 90 degrees or flip an image by 180 degrees for easy viewing. You can also rotate by incremental degrees to help straighten out images that may have looked straight enough in the camera but came out just slightly tilted in the end—or you can take a level image and make it look off-kilter for artistic effect.  

 

Rotate and flip your imagesRotate and flip your images

 

 

 

Use light and color for greater effect 

 

Adjusting light and color can help set the mood of your photos. With Adjustments you can calibrate photo elements like brightness, exposure, contrast, highlights, shadows, and color saturation. Mute light and color to soften glares or cold lighting, or amp up the contrast to sharpen product images. 

 

Adjust light and color in your photosAdjust light and color in your photos

 

 

 

Get creative with filters 

 

Using the Filter feature, you can refine the tone of your images or add special effects to transform your photos. Quickly give a photo of your company headquarters a golden glow, or set color photos to black and white or warm tone for a cool vintage effect.  

 

Add filter to your photosAdd filter to your photos

 

 

Mark up photos for editing 

 

You can use the Markup feature tools (coming in late December 2021) to mark photos for editing. Circle images you want to enhance, strike lines through areas you want to cut, or use color to show where you want to soften or enhance part of an image. 

 

Markup your photosMarkup your photos

 

 

When you edit photos in OneDrive, you also have the flexibility of saving your edited photo as a new image or overwriting the original image. And don’t worry—if you accidentally select to overwrite an image (or if you change your mind later), you can use version history to recover it.  

 

Visit and follow the Microsoft OneDrive Blog to stay up to date on all the latest features. 

 

Thanks for your time reading all about OneDrive,

Ankita Kirti | OneDrive

Posted in Skype for Business

December 1st, 2021 by skwan

This public preview of Microsoft Azure Active Directory (Azure AD) custom security attributes and user attributes in ABAC (Attribute Based Access Control) conditions builds on the previous public preview of ABAC conditions for Azure Storage. Azure AD custom security attributes (custom attributes, here after) are key-value pairs that can be defined in Azure AD and assigned to Azure AD objects, such as users, service principals (Enterprise Applications) and Azure managed identities. Using custom attributes, you can add business-specific information, such as the user’s cost center or the business unit that owns an enterprise application, and allow specific users to manage those attributes. User attributes can be used in ABAC conditions in Azure Role Assignments to achieve even more fine-grained access control than resource attributes alone. Azure AD custom security attributes require Azure AD Premium licenses.

 

We created the custom attributes feature based on the feedback we received for managing attributes in Azure AD and ABAC conditions in Azure Role Assignments:

  • In some scenarios, you need to store sensitive information about users in Azure AD, and make sure only authorized users can read or manage this information. For example, store each employee’s job level and allow only specific users in human resources to read and manage the attribute.
  • You need to categorize and report on enterprise applications with attributes such as the business unit or sensitivity level. For example, track each enterprise application based on the business unit that owns the application.
  • You need to improve your security posture by migrating from API access keys and SAS tokens to a centralized and consistent access control (Azure RBAC + ABAC) for your Azure storage resources. API access keys and SAS tokens are not tied to an identity; meaning, anyone who possesses them can access your resources.  To enhance your security posture in a scalable manner, you need user attributes along with resource attributes to manage access to millions of Azure storage blobs with few role assignments.

Let’s take a quick look at how you can manage attributes, use them to filter Azure AD objects, and scale access control in Azure.

 

Step 1: Define attributes in Azure AD

The first step is to create an attribute set, which is a collection of related attributes. For example, you can create an attribute set called “marketing” to refer to the attributes related to the marketing department. The second step is to define the attributes inside the attribute set and the characteristics of the attribute set. For example, only pre-defined values are allowed for an attribute and whether an attribute can be assigned a single value or multiple values. In this example, there are three values for the project attribute—Cascade, Baker, and Skagit—and a user can be assigned only one of the three values. The picture below illustrates the above example.

 

Step 1.png

 

Step 2: Assign attributes to users or enterprise applications

Once attributes are defined, they can be assigned to users, enterprise applications, and Azure managed identities.

 

Step 2.png

 

Once you assign attributes, users or applications can be filtered using attributes. For example, you can query all enterprise applications with a sensitivity level equal to high.

 

Enterprise applications.png

 

Step 3: Delegate attribute management

There are four Azure AD built-in roles that are available to manage attributes.

 

ABAC.png

 

By default, Global Administrators and Global Readers are not able to create, read, or update the attributes. Global Administrators or Privileged Role Administrators need to assign the attribute management roles to other users, or to themselves, to manage attributes. You can assign these four roles at the tenant or attribute set scope. Assigning the roles at tenant scope allows you to delegate the management of all attribute sets. Assigning the roles at the attribute set scope allows you to delegate the management of the specific attribute set. Let me explain with an example.

 

Xia.png

 

  1. Xia is a privileged role administrator; so, Xia assigns herself Attribute Definition Administrator role at the tenant level. This allows her to create attribute sets.
  2. In the engineering department, Alice is responsible for defining attributes and Chandra is responsible for assigning attributes. Xia creates the engineering attribute set, assigns Alice the Attribute Definition Administrator role and Chandra the Attribute Assignment Administrator role for the engineering attribute set; so that Alice and Chandra have the least privilege needed.
  3. In the marketing department, Bob is responsible for defining and assigning attributes. Xia creates the marketing attribute set and assigns the Attribute Definition Administrator and Attribute Assignment Administrator roles to Bob.

 

Step 4: Achieve fine-grained access control with fewer Azure role assignments

Let’s build on our fictional example from the previous blog post on ABAC conditions in Azure Role Assignments. Bob is an Azure subscription owner for the sales team at Contoso Corporation, a home improvement chain that sells items across lighting, appliances, and thousands of other categories. Daily sales reports across these categories are stored in an Azure storage container for that day (2021-03-24, for example); so, the central finance team members can more easily access the reports. Charlie is the sales manager for the lighting category and needs to be able to read the sales reports for the lighting category in any storage container, but not other categories.

 

With resource attributes (for example, blob index tags) alone, Bob needs to create one role assignment for Charlie and add a condition to restrict read access to blobs with a blob index tag “category = lighting”. Bob needs to create as many role assignments as there are users like Charlie. With user attributes along with resource attributes, Bob can create one role assignment, with all users in an Azure AD group, and add an ABAC condition that requires a user’s category attribute value to match the blob’s category tag value. Xia, Azure AD Admin, creates an attribute set “contosocentralfinance” and assigns Bob the Azure AD Attribute Definition Administrator and Attribute Assignment Administrator roles for the attribute set; giving Bob the least privilege he needs to do his job. The picture below illustrates the scenario.

 

RBAC.png

 

 

Bob writes the following condition in ABAC condition builder using user and resource attributes:

 

Role assignment condition.png

 

To summarize, user attributes, resource attributes, and ABAC conditions allow you to manage access to millions of Azure storage blobs with as few as one role assignment!

 

Auditing and tools

Since attributes can contain sensitive information and allow or deny access, activity related to defining, assigning, and unassigning attributes is recorded in Azure AD Audit logs. You can use PowerShell or Microsoft Graph APIs in addition to the portal to manage and automate tasks related to attributes. You can use Azure CLI, PowerShell, or Azure Resource Manager templates and Azure REST APIs to manage ABAC conditions in Azure Role Assignments.

 

Resources

We have several examples with sample conditions to help you get started. The Contoso corporation example demonstrates how ABAC conditions can scale access control for scenarios related to Azure storage blobs. You can read the Azure AD docs, how-to’s, and troubleshooting guides to get started.

 

We look forward to hearing your feedback on Azure AD custom security attributes and ABAC conditions for Azure storage. Stay tuned to this blog to learn about how you can use custom security attributes in Azure AD Conditional Access. We welcome your input and ideas for future scenarios.

 

 

 

Learn more about Microsoft identity:

Posted in Skype for Business

December 1st, 2021 by Pieter Veenstra
When you present in Microsoft Teams and you share your screen you might not be visible. Presenter modes make it easier to interact with your audience. Presenter modes When you … Read More

Posted in Skype for Business

December 1st, 2021 by Jared Spataro, Corporate Vice President for Microsoft 365

Perhaps no one has been hit harder over the past 20 months than small businesses. To adapt and thrive in this new normal, small businesses need comprehensive solutions that are designed specifically for them and their unique needs.

The post New Microsoft Teams Essentials is built for small businesses appeared first on Microsoft 365 Blog.

Posted in Skype for Business

December 1st, 2021 by Dux Raymond Sy
Click here to hear about some of Dux’s favorite tools and how they can make Microsoft Teams use easier and more productive.

Posted in Skype for Business