Documentos de Académico
Documentos de Profesional
Documentos de Cultura
Magazine
32
January ‘18 05 IT Trick: View Azure AD Sign In Activity
№
09 [Infographics] Cloud Security Report 2018
SysAdmin Magazine is a free 11 Complete Guide to Azure Active Directory Password Policy
source of knowledge for IT Pros
who are eager to keep a tight
13 [Quick Reference Guide] Exchange Online Auditing
grip on network security and do
the job faster.
15 [Recorded Webinar] Cloud Security: Who is Responsible for Your Critical Assets?
2
SysAdmin Magazine January 2018
One of the questions that we are most frequently asked 1. Install both programs.
Jonathan Hassell
following command to set a user’s password to
systems that had more lenient expiration requirements.
never expire:
Although I am not entirely convinced that setting
IT Pro, Entrepreneur passwords to never expire is smart, if you choose secure
Office 365: First off, set yourself up to connect to the service through also use “Get” to retrieve information or properties
Configuring User PowerShell remoting. If you have not done this yet, you
Passwords to Never Services Sign-In Assistant for IT Professionals RTW (yes, been configured to never expire; to do so, you use
Expire
that’s the official name) and the Azure Active Directory the following command, which selects the attribute
Module for Windows PowerShell. to display in response to our command:
3
SysAdmin Magazine January 2018
the new command from the pipeline) and leaving the 2. From the Settings menu, select “Security and
Get-MsolUser -UserPrincipalName <fullemailaddress@ attribute configuration the same: privacy,” and then click “Edit.”
yourdomain.com> | Select PasswordNeverExpires
3. Under “Password policy,” click the box hat says
“Set user passwords to never expire.”
Get-MsolUser | Set-MsolUser –
PasswordNeverExpires $true
You can extrapolate from this command to see the Follow these steps and you will not be annoyed by Office
password expiration statuses of all users in your 365 password expiration notification emails any more.
Configuring Using the Graphical should be helpful when ensure Office 365 password
policy security.
Get-MSOLUser | Select UserPrincipalName, User Interface
PasswordNeverExpires
If you’re afraid of the PowerShell command line, here In case you can’t change password policy to never
are two pieces of advice. First, do not fear it, for it is expire try Password Expiration Notifier, a free tool that
your friend. Second, know that there is also a way to automatically reminds users to change their passwords
You can also combine these commands to set the disable password expiration from the web-based Office before they expire.
passwords for all users in your tenant to never expire; 365 administration console. You will need to have
this is done using the pipelining feature of PowerShell. administrator credentials for this.
4
SysAdmin Magazine January 2018
Need to know who’s logging in to your cloud directory To follow the instructions below, you’ll need to have at
or Office 365? With this tip, I’ll show you where to find least one directory set up in your Azure subscription.
information about user sign in activity in the Azure If you use Office 365, you already have an Azure AD
management portal. directory associated with your Office 365 tenant. Simply
Until recently, there was no single log view for sign in in the instructions below, and enter credentials for an
Security Expert, IT consultant detailed auditing to the AAD admin experience preview Sign in to the new Azure management portal here
in the new Azure management portal, providing a with an account that has administrator access to AAD
convenient one-stop shop where all audit data is In the list of options on the left of the portal, click
available in one place. Contextual audit features also Azure Active Directory
offer access to audit logs relevant to the task you’re
In the Azure Active Directory PREVIEW panel, scroll
performing. For example, you can quickly view audit logs
down the list of options on the left and click Sign-ins
for the sign in activity of a specific user without leaving under ACTIVITY
the user management panel.
In the Filter Sign-In Events panel, leave the default
settings, and click Update
IT Trick:
There’s a catch, however: an Azure Premium AD or
View Azure AD Sign access the logs. If you don’t have an Azure Premium AD
In Activity
subscription, you can get a free 30-day trial here.
5
SysAdmin Magazine January 2018
6
SysAdmin Magazine January 2018
7
SysAdmin Magazine January 2018
and then use the graph to drill down for filtered event
information.
8
SysAdmin Magazine January 2018
of organizations consider
88 %
employees to be the biggest
risk to cyber security
Cloud Security
Report 2018 45%
This year’s Cloud Security Survey explores how far
data there, and how they protect data in the cloud. of surveyed IT teams have gained top
management’s support for security
initiatives in the cloud
66%
9
TOP CLOUD SECURIT Y CONCERNS PLANS SysAdmin Magazine January2017
September 2018
SECURIT Y INCIDENTS
75
69% Risk of unauthorized access IN THE CLOUD
71% 42%
50%
50 39% HAPPENED IN 9 % IN 42% OF CASES, SENSITIVE
OF ORGANIZATIONS DATA WAS COMPROMISED
Inability to monitor user
25
activity in the cloud 5 40 55 70 5 40 55 70
0
WHOSE FAULT WAS THAT?
88% of cloud users store sensitive data in the cloud 39 % 33 % 33 % 28 % 19 % Plan to move more sensitive
data to the cloud
Ready for a broader adoption
of the cloud
32 % 31% 31%
40 Improved 27 % 24 %
Worsened
Not
30 impacted 17%
Cloud Security
25 40 55 70 0 25 40 55 70
20 Not sure
10
0
Survey Results Plan to move their entire
approach infrastructures to the cloud within
SECURIT Y CONTROLS WHERE DO ORGANIZATIONS HAVE COMPLETE VISIBILIT Y INTO AC TIVIT Y IN THE CLOUD? HOW DO ORGANIZATIONS PLAN TO IMPROVE CLOUD SECURIT Y?
40
50 % 40 % 30
28 %
20 17%
12%
9%
0 10 20 30 40 50 0 10 20 30 40 50 10
One of the benefits of using Azure Active Directory ] { } | \ : ‘ , . ? / ` ~ “ ( ) ;). You are not allowed to use
(Azure AD) is the flexibility it gives you when it comes to Unicode characters or spaces in your password. The
managing passwords. Most companies choose to deploy password length is set to 8 characters minimum and
Active Directory. They do so to add single sign on and the password must not have a dot (.) immediately
federation capabilities for online apps like Salesforce preceding the at sign (@) and also contain any three
IT Pro, Entrepreneur contacting the help desk. passwords expire every 90 days, and users are
What are the basics of Azure password policy, and how that expiration. From a password history point of
do you get this all set up? That’s what I’ll tackle in this view, the system restricts the last password that was
rather than just cycling the same one over and over
The most basic of password policies for Microsoft MsolPasswordPolicy cmdlet, which you can find
Complete Guide to
Azure AD include simple complexity and history within the Azure AD Module.
Azure Active Directory characters (A to Z), including both upper- and If users enter their password incorrectly 10 times
Password Policy
lowercase letters; the numerals 0 through 9; and in a row, Azure AD will lock the account for one
standard keyboard symbols (@ # $ % ^ & * – _ ! + = [ minute. If incorrect password entries continue, the
11
SysAdmin Magazine January 2018
system again will lock the user out and then increase 1. Open the Azure classic portal, which can be found at you will need to edit users either on the Azure portal,
the duration of each lockout period as a method of https://manage.windowsazure.com, and then click on within Office 365, or through PowerShell to edit
deflecting and mitigating brute force attacks. Active Directory on the left side of the screen properties for users. You will want to add alternate e-mail
interested in single sign on) or if you have synchronized Next, you will need to specify the contact information
A big piece of making this work is having Azure AD
your Azure AD tenant to an on-premises Active Directory, for all of your users so that it can be used for password
Connect set up properly and your firewall configured,
which makes the solution especially attractive. resets. If you have directory synchronization enabled
which we will tackle in another piece.
through Azure AD Connect, and your users’ properties
There are a few steps to implementing the policy required on your on-premise’s active directory with deployment
to activate these self-service password management configured correctly, then those contact details will
features. To get started: automatically write into the Azure AD tenant. Otherwise,
12
SysAdmin Magazine January 2018
This quick reference guide shows how to enable logging Search Audit Logs using Exchange
of important changes in Exchange Online.
Management Shell or PowerShell Console
Exchange Online
the cmdlet. The “Parameters” field provides
cmdlets for management
detailed information, such as which permissions
13
SysAdmin Magazine January 2018
Mount(Dismount)-Database – Mounts or
You can specify search dates by adding “–
dismounts an existing mailbox database
Parameters –StartDate MM/DD/YYYY –EndDate
MM/DD/YYYY” Set-MailboxDatabase – Configures a variety of
properties for a mailbox
You can also use other cmdlets and parameters.
Run “get-help Search-AdminAuditLog” for more
New-SendConnector - Creates a new Send
information.
connector
New-ReceiveConnector - Creates a
new Receive connector
14
SysAdmin Magazine January 2018
[ Recorded Webinar ]
Cloud Security:
Who is Responsible
for Your Critical Assets?
Jeff Melnick
About this webinar
IT Security Expert, Blogger
Although cloud providers may ensure your data is secure, How can you increase your cloud data integrity?
this doesn’t guarantee it’s absolutely safe from breaches. Which human-related risks should you keep an eye on?
According to the Verizon 2016 Data Breach Investigations How can you gain visibility into what’s going on across
Report, 77% of data breaches are caused by insider your cloud environment?
activities. In fact, 50% of the cases stay undiscovered for How do you share responsibility for IT security with
cloud providers?
What do you need
months.
And more!
to keep in mind when Watch the recorded webinar ‘Cloud Security: Who’s
your data resides in Responsible for Your Critical Assets?’! In this session you
the cloud? will get answers to the following questions: Watch Now
15
SysAdmin Magazine January 2018
Freeware service monitoring tool that enables you to Ensure steady performance of your servers
monitor Windows services on your critical servers Recover from service outages faste
Eliminate unnecessary manual work
Free Tool Monitor multiple servers at the same time Configure in minutes
of the Month
Report example
Netwrix
Service
Monitor
Download Free Tool
16
SysAdmin Magazine January 2018
$UserCredential = Get-Credential
$Session = New-PSSession -ConfigurationName To check what mailboxes have auditing enabled run:
2. To enable mailbox auditing run: 3. Open Exchange Administration Center > Navigate
17
Netwrix Auditor 9.5
netwrix.com/auditor9.5html
Corporate Headquarters: Phone: 1-949-407-5125 Copyright © Netwrix Corporation. All rights reserved. Netwrix is trademark of Netwrix Corporation and/or
300 Spectrum Center Drive, Toll-free: 888-638-9749 one or more of its subsidiaries and may be registered in the U.S. Patent and Trademark Office and in other
Suite 200 Irvine, CA 92618 EMEA: +44 (0) 203-318-02 countries. All other trademarks and registered trademarks are the property of their respective owners.