#Microsoft #Ignite Day 2 summary #Azure #Office365 #MSIgnite #Microsoft365

October 5, 2017 at 6:39 pm | Posted in Functionality, Information | Comments Off on #Microsoft #Ignite Day 2 summary #Azure #Office365 #MSIgnite #Microsoft365
Tags: , , ,

******************** This is a guest blog post by Lee Mather ********************

Day Two

After recharging the batteries, we had another early start for day and had as many sessions packed in as possible. I will try to provide a summary of key takeaways for each session. Please let me know if you would like any further detail as I’m happy to discuss.

Session 1: Overview: Modern Windows 10 and Office ProPlus management with Enterprise Mobility + Security

This session focused on moving to a modern management for Windows and went into more detail than the session I attended on day 1. The main highlights were:

· Simplify deployment and device management with Intune and Windows Autopilot. Microsoft’s vision is for laptops and PCs to be as easy to setup as mobile phones. Microsoft 365 powered devices will benefit from the following

o Intelligent Security

o Easy deployment

o Always up to date

o Proactive insights with Windows Analytics

clip_image002

· A couple of slides which highlight the difference between traditional IT and modern IT

clip_image004

clip_image006

· There are a few paths to transition to modern management which has been expanded by the introduction of co-management. Co-management should be released by the end of the 2017 calendar year

clip_image008

Session 2: Simplify hybrid cloud protection with Microsoft Azure Security Centre

The second session of the day focused on hybrid cloud protection with Microsoft Azure Security Centre. As I mentioned this in the summary of day one, I will only highlight the features.

· Hybrid Cloud Support – This allows a unified security centre for Azure workloads as well as workloads running on-premises and in other clouds. Additional information can be found here https://azure.microsoft.com/en-us/blog/azure-security-center-extends-advanced-threat-protection-to-hybrid-cloud-workloads/

· Just In Time Access – This allows administrators to lock down ports such as RDP and to allow access when required. Additional information can be found here https://docs.microsoft.com/en-us/azure/security-center/security-center-just-in-time

· Adaptive Application Controls – This allows you to define a set of applications which can run on your VMs which helps in the fight against malware. Additional information can be found here https://docs.microsoft.com/en-us/azure/security-center/security-center-adaptive-application

· Azure Security Centre will soon include Windows Defender ATP detections. Additional information can be found here https://azure.microsoft.com/en-us/blog/azure-security-center-extends-advanced-threat-protection-to-hybrid-cloud-workloads/

· An interactive threat intelligence map has been added to the Azure Security Centre for visualisations. Additional information can be found here https://docs.microsoft.com/en-us/azure/security-center/security-center-threat-intel

· An investigation dashboard is currently in preview which will correlate all relevant data with any involved entities. You will be able to navigate between entities by clicking through the graph and providing information. Additional information is available here https://docs.microsoft.com/en-us/azure/security-center/security-center-investigation

Session 3: What’s new with Microsoft Exchange Online Public Folders

This was a 30-minute session to highlight some of the new features in Exchange Online Public folders. The main takeaway for me was the migration of public folders to Office 365 Groups. This migration approach is supported for Exchange 2010, 2013, 2016 and Exchange Online. Additional information can be found here https://blogs.technet.microsoft.com/exchange/2017/09/25/migrate-your-public-folders-to-office-365-groups/

Session 4: Office 365 Security and Compliance Overview

The session focused on the following key areas of Office 365 security:

· Threat Protection

· Information Protection

· Security Management

· Compliance Management

clip_image010

The main takeaways and areas of interest for this session were:

· ATP has expanded to SharePoint, OneDrive for Business and Microsoft Teams

clip_image012

clip_image014

· Safe Links will now show the original URL when a user hovers over the link

· Safe Links will now apply to internal and external email

· Safe Attachments now have a preview feature enabled to allow a user to view a document online whilst it’s being scanned. Scanning time has also been greatly reduced over the last year

· SharePoint malware will be reported in the Threat Management portal

· New updates being rolled out to Office 365 Threat Intelligence

o Threat Tracker

o Threat Explorer

o Remediation capabilities

o Attack Simulator – Admins will have the ability to simulate different threat scenarios to gain an understanding of how users behave in the event of a real attack

clip_image016

clip_image018

· Single interface for creating protection labels is on the way

clip_image020

· New reporting capabilities being rolled out to the Office 365 Security and Compliance Centre

· New Compliance Manager should be in Public preview later this year. Additional information can be found here https://techcommunity.microsoft.com/t5/Security-Privacy-and-Compliance/Manage-Your-Compliance-from-One-Place-Announcing-Compliance/ba-p/106493

clip_image022

Additional information can be found here: https://techcommunity.microsoft.com/t5/Security-Privacy-and-Compliance/Bringing-deeper-integration-and-new-capabilities-to-Office-365/ba-p/109409

Session 5: Learn about the Microsoft global network and best practices for optimizing Office 365 connectivity

This was a great session that looked at the Microsoft network and as the title suggests, provided best practise tips. The main takeaways for the sessions were as follows:

· Avoid proxy servers when connecting to Office 365

· Review Office 365 IPs regularly and update firewalls if required

· Ensure your traffic is routing to the Microsoft network in as few hops as possible

clip_image024

· Network performance requirements for Skype for Business and how to test your network using the Skype for Business tool – https://www.microsoft.com/en-us/download/details.aspx?id=53885

clip_image026

clip_image028

· Skype for Business is the most sensitive to network performance and requires additional ports for best user experience

clip_image030

· Some interesting facts regarding the Microsoft network

clip_image032

Session 6: Yammer’s roadmap for enhanced integration, security and compliance

This was a breakout session that only last 45 minutes. The main takeaways were:

· Local data residency preview Q4 2017

o Existing customer H2 2018

· GDPR compliance by Q1 2018

· Yammer will soon be added to eDiscovery in the Office 365 Security and Compliance Centre

· DLP policy tips will be rolling out to Yammer in 2018

· SharePoint Group integration

clip_image034

That concluded another busy day at Ignite!

Advertisements

#Microsoft #Ignite Day 1 summary #Azure #Office365 #MSIgnite #Microsoft365

October 5, 2017 at 6:18 pm | Posted in Functionality, Information | Comments Off on #Microsoft #Ignite Day 1 summary #Azure #Office365 #MSIgnite #Microsoft365
Tags: , , ,

******************** This is a guest blog post by Lee Mather ********************

So, after an eventful week in Orlando at Microsoft Ignite I thought I would share with you a summary of my first day! With over 26,000 attendees it was always going to be a busy event with lots going on, we would need a team here to take in all of the information being presented to us. I am hoping to have a chance to share the other days ASAP.

Day One

During the first day I attended several sessions and would like to share the following takeaways.

Keynote

The mission statement from Microsoft is to “Empower every person and every organisation to achieve more

clip_image002

The keynote focused on digital transformation which is aligned to the four key areas below:

· Modern Workplace

· Business Applications

· Application & Infrastructure

· Data & AI

clip_image004

Following on from the keynote session, I had a day packed of sessions mainly focusing on creating a modern workplace.

Session 1: Create a modern workplace with Microsoft 365

The session focused on the following key areas:

· Flexibility to work on any device, anywhere

· Improvements to Office application including PowerPoint Designer using AI.

· Teamwork

o Microsoft Teams will be the hub for teamwork including chat, calls and meetings.

o Microsoft Teams will replace the Skype for Business client over the next year

Other worthwhile mentions from the session included Cortana Calendars. Cortana Calendars is a new feature that is currently in “Exclusive” preview but essentially this service will help intelligently schedule meetings on your behalf, simply by adding Cortana in the CC field. The service will support Office 365, Outlook.com or Google calendar. Additional information can be found here https://calendar.help/

“With the speed of artificial intelligence and the personal touch of a human assistant, Calendar.help takes care of business.”

The session also focused on the modern device management and deployment. Windows Autopilot will allow new device deployment in a few simple steps, straight from the vendor to your desk without involving IT. Working with Windows Autopilot and a device management solution such as Intune, the device will be deployed, Azure AD joined or Offline domain join to Active Directory, configured with all policies defined by IT and app deployment. More on this over the coming days.

Device Co-Management was also announced as a new feature, this is the “Hybrid” device management that will support a transition from System Centre Configuration Manager (SCCM) to Intune. Co-Management will allow a device to be managed by both SCCM and Intune allowing a gradual migration to modern management whilst supporting legacy devices and applications.

clip_image006

Finally, a couple of new offerings from Microsoft, Microsoft 365 Education and Microsoft 365 F1. Additional details can be found here https://products.office.com/en-gb/business/office-365-f1 and https://products.office.com/en-gb/academic/compare-office-365-education-plans

Session 2: Use MDM migration tools to accelerate move from GPO to MDM

This session focused on accelerating a move to MDM and moving away from GPO to MDM policies. GPO has been around for years with many legacy policies in the workplace that may or may not be required today. Microsoft are continually releasing new device configuration policies to Intune. To support the migration away from GPO to MDM, the following PowerShell script can be executed that will output a report. https://github.com/WindowsDeviceManagement/MMAT

The tool is being regularly updated to align with new features available in Intune.

clip_image008

Session 3: Cloud infrastructure: Enabling new possibilities together

The Cloud Infrastructure session focused on using Azure for all workloads, big and small.

clip_image010

The session explained how you can setup a SAP HANA platform in minutes using Azure instead of weeks using on-premises hardware. Microsoft are continually providing more options for scaling in Azure, currently offering up to 20TB RAM for large SAP HANA deployments.

clip_image012

It was also recommended to use the DevTest labs to reduce costs for non-production workloads. For more information on DevTest lab please take a look here https://azure.microsoft.com/en-us/services/devtest-lab/

The Azure Security Centre is now Hybrid too, allowing for non-Azure machines to be onboarded to take full advantage of the security monitoring and recommendations built into Azure.

clip_image014

This is a great additional to Azure Security Centre for a single unified view of your servers, either on-premises or running in Azure.

Currently Azure have 42 regions with 100’s of data centres, 4500+ peering locations and 130+ edge sites making the Azure network one of the largest in the world.

clip_image016

Microsoft, in conjunction with Facebook, also completed the first transatlantic cable which is approx. 4000 miles long and can support 160TB/sec of data.

clip_image018

Other worthy mentions would include:

· Additional Express Route partners

clip_image020

· Azure Distributed Denial of Service (DDos) Protection has just been released to preview. Additional information on the DDos service from Microsoft can be found here https://azure.microsoft.com/en-us/blog/azure-ddos-protection-service-preview/

clip_image022

· Azure Data Box has been released in preview and would be used to support customer with large data imports to Azure. The device supports 100 TB and a customer can have multiple devices. Additional information can be found here https://azure.microsoft.com/en-us/blog/announcing-the-preview-for-the-azure-data-box-achievements-will-be-unlocked/

clip_image024

· Azure File Sync is another new preview release that allows Azure File Share to sync with on-premises file servers. Cloud tiering is implemented that allows storing a certain amount of data locally and store a larger amount of data in the cloud. Azure File Sync is also integrated into Azure Backup. Additional information can be found here https://azure.microsoft.com/en-us/blog/announcing-the-public-preview-for-azure-file-sync/

clip_image026

I could go on all day about updates from Ignite so will provide links to everything else announced during the session!

· Azure Policy – https://azure.microsoft.com/en-us/services/azure-policy/

· Azure Migrate – https://azure.microsoft.com/en-us/blog/announcing-azure-migrate/

· FastTrack for Azure – https://azure.microsoft.com/en-us/programs/azure-fasttrack/

· Cloudyn – (Cost Management for Azure) https://blogs.microsoft.com/blog/2017/06/29/microsofts-acquisition-cloudyn-will-help-azure-customers-manage-optimize-cloud-usage/

Session 4: What’s new and upcoming in AD FS to securely sign-in your users to Office 365 and other applications

The ADFS session focused on what’s new and what’s coming in the future for ADFS for Office 365. As this was a shorter session I would highlight the key takeaways only.

· Passwords could soon be a thing of the past. Password less options for ADFS 2016

clip_image028

· How to get to password less authentication

clip_image030

· Extranet lockout for ADFS with known locations is coming soon. This feature will help user accounts from being locked out from failed external logon attempts.

clip_image032

· Resolve ADFS authentication issues faster using the help site – https://adfshelp.microsoft.com/

· ADFS Rapid Restore tool – https://docs.microsoft.com/en-us/windows-server/identity/ad-fs/operations/ad-fs-rapid-restore-tool

That was enough for one day and it was time to leave the convention centre and head back to the hotel.

Create a free website or blog at WordPress.com.
Entries and comments feeds.