Exchange Online – Are your mailboxes encrypted?

For some organisations, encryption of data at rest is considered an important security control, especially in the context of cloud solutions. With core Office 365 services (SharePoint Online and Exchange Online) you have the option of controlling your own keys through the method known as Customer Key. But is there anything built-in that provides encryption… Read More »

Microsoft 365 Roadmap

One of the hardest things to deal with when working with Microsoft’s cloud services is the avalanche of information published daily. What’s relevant and interesting compared to the chaff that is not meaningful for you? Microsoft employees refer to it as “drinking from the firehose”. Well, one of the most helpful sources I’ve come across… Read More »

PTA, AADJ and the “User must change password at next log on” flag

OK, the title has a whole bunch of acronyms which may not be entirely familiar. Actually…if we’re being really picky I should probably say a whole bunch of initialisms, but that would digress into a whole different article when a perfectly good Wikipedia article already exists for that. 🙂 Anyway, PTA is the accepted short form… Read More »

How to change the token lifetime for a SAML 2.0 application with Azure Active Directory

Configurable token lifetimes for Azure Active Directory (AAD) have been available for while now, although the feature is still in public preview.  This article provides details of how to create an access token lifetime policy and how to apply it to an application federated with AAD using SAML 2.0. Before we get started with this, we need to ensure… Read More »