EWS is going away
๐ Secure Bits ๐ก ๐๐ ๐ฐ๐ต๐ฎ๐ป๐ด๐ฒ ๐ช๐ฒ๐ฏ ๐ฆ๐ฒ๐ฟ๐๐ถ๐ฐ๐ฒ๐ (๐๐ช๐ฆ) ๐ถ๐ป ๐๐ ๐ฐ๐ต๐ฎ๐ป๐ด๐ฒ ๐ข๐ป๐น๐ถ๐ป๐ฒ ๐ถ๐ ๐ผ๐ณ๐ณ๐ถ๐ฐ๐ถ๐ฎ๐น๐น๐ ๐ด๐ผ๐ถ๐ป๐ด ๐ฎ๐๐ฎ๐. Microsoft will start disabling EWS in Exchange Online from October 1, 2026, with ๐ณ๐๐น๐น ๐ฎ๐ป๐ฑ ๐ฝ๐ฒ๐ฟ๐บ๐ฎ๐ป๐ฒ๐ป๐ ๐ฟ๐ฒ๐๐ถ๐ฟ๐ฒ๐บ๐ฒ๐ป๐ ๐ผ๐ป ๐๐ฝ๐ฟ๐ถ๐น ๐ญ, ๐ฎ๐ฌ๐ฎ๐ณ. If any of your apps still rely on EWS, they ๐ค๐๐๐ break unless you act. This often goes unnoticed […]
SMTP AUTH is officially going away
๐ Secure Bits ๐ก ๐ฆ๐ ๐ง๐ฃ ๐๐จ๐ง๐ ๐ถ๐ป ๐๐ ๐ฐ๐ต๐ฎ๐ป๐ด๐ฒ ๐ข๐ป๐น๐ถ๐ป๐ฒ ๐ถ๐ ๐ผ๐ณ๐ณ๐ถ๐ฐ๐ถ๐ฎ๐น๐น๐ ๐ด๐ผ๐ถ๐ป๐ด ๐ฎ๐๐ฎ๐ โ ๐๐ต๐ฒ ๐๐ถ๐บ๐ฒ๐น๐ถ๐ป๐ฒ ๐ถ๐ ๐ป๐ผ๐ ๐๐ฝ๐ฑ๐ฎ๐๐ฒ๐ฑ. Microsoft has published an ๐๐ฝ๐ฑ๐ฎ๐๐ฒ๐ฑ ๐ฑ๐ฒ๐ฝ๐ฟ๐ฒ๐ฐ๐ฎ๐๐ถ๐ผ๐ป ๐๐ถ๐บ๐ฒ๐น๐ถ๐ป๐ฒ ๐ณ๐ผ๐ฟ ๐ฆ๐ ๐ง๐ฃ ๐๐จ๐ง๐ ๐๐๐ถ๐ป๐ด ๐๐ฎ๐๐ถ๐ฐ ๐๐๐๐ต๐ฒ๐ป๐๐ถ๐ฐ๐ฎ๐๐ถ๐ผ๐ป in Exchange Online – and it will end fairly soon. If you still rely on SMTP AUTH for: – Applications and scripts – […]
Deactive an app in Entra ID
๐ Secure Bits ๐ก ๐ฆ๐๐ผ๐ฝ๐ฝ๐ถ๐ป๐ด ๐ฎ๐ป ๐ฎ๐ฝ๐ฝ ๐ถ๐ป ๐๐ป๐๐ฟ๐ฎ ๐๐ ๐ป๐ผ ๐น๐ผ๐ป๐ด๐ฒ๐ฟ ๐บ๐ฒ๐ฎ๐ป๐ ๐ฑ๐ฒ๐น๐ฒ๐๐ถ๐ป๐ด ๐ถ๐. ๐๐ป๐ฑ ๐๐ต๐ฎ๐โ๐ ๐ฎ ๐ฏ๐ถ๐ด ๐ฑ๐ฒ๐ฎ๐น. A new feature is coming to Microsoft Entra ID that finally gives admins a safer option: ๐ฑ๐ฒ๐ฎ๐ฐ๐๐ถ๐๐ฎ๐๐ฒ ๐ฎ๐ป ๐ฒ๐ป๐๐ฒ๐ฟ๐ฝ๐ฟ๐ถ๐๐ฒ ๐ฎ๐ฝ๐ฝ๐น๐ถ๐ฐ๐ฎ๐๐ถ๐ผ๐ป ๐ถ๐ป๐๐๐ฒ๐ฎ๐ฑ ๐ผ๐ณ ๐ฑ๐ฒ๐น๐ฒ๐๐ถ๐ป๐ด ๐ถ๐. Until now, disabling an app usually meant deleting it entirely โ […]
Microsoft 365 Business 300-user limit
๐ Secure Bits ๐ก ๐ง๐ต๐ฒ ๐ ๐ถ๐ฐ๐ฟ๐ผ๐๐ผ๐ณ๐ ๐ฏ๐ฒ๐ฑ ๐๐๐๐ถ๐ป๐ฒ๐๐ ๐ฏ๐ฌ๐ฌ-๐๐๐ฒ๐ฟ ๐น๐ถ๐บ๐ถ๐ ๐ถ๐ ๐ผ๐ณ๐๐ฒ๐ป ๐บ๐ถ๐๐๐ป๐ฑ๐ฒ๐ฟ๐๐๐ผ๐ผ๐ฑ. I still hear this form admins all the time: โ๐๐ฆโ๐ญ๐ญ ๐ซ๐ถ๐ด๐ต ๐ฎ๐ช๐น ๐๐ถ๐ด๐ช๐ฏ๐ฆ๐ด๐ด ๐๐ข๐ด๐ช๐ค, ๐๐ต๐ข๐ฏ๐ฅ๐ข๐ณ๐ฅ, ๐ข๐ฏ๐ฅ ๐๐ณ๐ฆ๐ฎ๐ช๐ถ๐ฎ โ ๐ธ๐ฆ ๐ฉ๐ข๐ท๐ฆ ๐ญ๐ช๐ฌ๐ฆ 450 ๐ฐ๐ง ๐ต๐ฉ๐ฆ๐ฎ ๐ค๐ฐ๐ฎ๐ฃ๐ช๐ฏ๐ฆ๐ฅ.โ Feels relatable? But that is not how it should be. ๐ค ๐๐ฒ๐ฟ๐ฒโ๐ ๐๐ต๐ฒ ๐ฐ๐ฎ๐๐ฐ๐ต The 300-user limit […]
Microsoft Entra Connect
๐Secure Bits๐ก Do you use ๐ ๐ถ๐ฐ๐ฟ๐ผ๐๐ผ๐ณ๐ ๐๐ป๐๐ฟ๐ฎ ๐๐ผ๐ป๐ป๐ฒ๐ฐ๐ /๐๐๐๐ฟ๐ฒ ๐๐ ๐๐ผ๐ป๐ป๐ฒ๐ฐ๐? There are some best practices you should follow. ๐ก๏ธSynchronize only what you need in Entra ID – No need to synchronize service accounts and nonpresonal accounts – No need to synchronize on-premise privileged accounts – No need to synchronize on-premise groups, if for AD […]
Microsoft 365 Admin Portals MFA
๐ Secure Bits ๐ก ๐ ๐ถ๐ฐ๐ฟ๐ผ๐๐ผ๐ณ๐ ๐๐ถ๐น๐น ๐ฏ๐น๐ผ๐ฐ๐ธ ๐ฎ๐ฐ๐ฐ๐ฒ๐๐ ๐ ๐ถ๐ฐ๐ฟ๐ผ๐๐ผ๐ณ๐ ๐ฏ๐ฒ๐ฑ ๐ฎ๐ฑ๐บ๐ถ๐ป ๐ฝ๐ผ๐ฟ๐๐ฎ๐น๐ ๐๐ถ๐๐ต๐ผ๐๐ ๐ ๐๐. Are you ready? Microsoft announced that sign-ins to the Microsoft 365 Admin Center ๐๐ถ๐น๐น ๐ฟ๐ฒ๐พ๐๐ถ๐ฟ๐ฒ ๐ ๐๐ โ ๐ rollout startedย Feb 3, 2025, andย from Feb 9, 2026ย password-only sign-ins will be blocked. Accounts without MFA will simply ๐ฏ๐ฒ ๐ฑ๐ฒ๐ป๐ถ๐ฒ๐ฑ ๐ฎ๐ฐ๐ฐ๐ฒ๐๐. โ ๏ธ This may […]
Azure AD Connect Server
๐Secure Bits๐ก Ever wondered if your Azure AD Connect server is truly secure? If this server isnโt restricted to Domain Administrators and protected as a Tier 0 asset, youโre at risk. Attackers can exploit this server to compromise both your on-premise AD and Azure AD environments. From this server, plaintext passwords of MSOL* and Sync_* […]
Disable Entra Connect Seamless SSO
๐ Secure Bits ๐ก ๐ฌ๐ผ๐ ๐บ๐ถ๐ด๐ต๐ ๐๐ฎ๐ป๐ ๐๐ผ ๐๐๐ฟ๐ป ๐ผ๐ณ๐ณ ๐๐ป๐๐ฟ๐ฎ ๐๐ผ๐ป๐ป๐ฒ๐ฐ๐ ๐ฆ๐ฒ๐ฎ๐บ๐น๐ฒ๐๐ ๐ฆ๐ฆ๐ข. ๐๐ฒ๐ฟ๐ฒ’๐ ๐๐ต๐. In many hybrid Microsoft 365 tenants, Seamless SSO is still enabled โ even though itโs no longer needed in modern Entra ID environments. Nothing looks broken. Users sign in just fine. And thatโs exactly why this often goes unnoticed. […]