User Profile
VasilMichev
MVP
Joined 9 years ago
User Widgets
Recent Discussions
Re: Mismatch between exchange recipients list and mailboxes set up in 365 Admin?
Did you check under Resources in the Exchange Admin Center? Not all mailbox types are shown under the Mailboxes page, and there can be some scenarios in which assigning a license to a user does not result in provisioning a mailbox. But if you are seeing mailbox usage data in the M365 Admin center, likely there is a mailbox indeed, which we can confirm via PowerShell. Connect to ExO PowerShell first, then run the following cmdlet: Get-Recipient email address removed for privacy reasons | select DisplayName,PrimarySmtpAddress,RecipientTypeDetails This should find any matching objects in Exchange Online, and also give you the type of mailbox/recipient. If you are not getting any results, try running the cmdlet again, this time providing the UserPrincipalName as input. If not getting any matches again, we might have to check your permissions.Re: Exchange changes not propagating back to 365, but only for one account
A bit hard to follow with all the "helpful" redactions from the forum software, but let's give it a try. First thing that comes to mind is to check the UPN of the user - there is a "hidden" email address policy in ExO that requires at least one email address to match the UPN value, be it primary or secondary one. Apart from that, check for any sync errors in AAD Connect/Cloud Sync, and verify that the deletion is correctly reflected on the object in the Metaverse. If everything seems fine therein, the issue might be on MS side, a support case won't hurt.Re: Purview retention policy question
Microsoft recommends using the ProgiID keyword for this scneario, as detailed in this article: https://learn.microsoft.com/en-us/purview/apply-retention-labels-automatically#microsoft-teams-meeting-recordings-and-transcripts TL;DR, you need a retention policy of the auto-apply variety, with the following KQL query as criteria: ProgID:Media AND ProgID:Meeting You should also be able to target specific folders via a documentlink:<path to the folder> query.Re: How do you make a Shared Mailbox the default Send From account? (New Outlook)
This functionality is not currently available for new Outlook, as it does not yet allow us to (properly) add a Shared mailbox as additional account. It's on the Roadmap and should be coming in March or so: https://www.microsoft.com/en-us/microsoft-365/roadmap?filters=&searchterms=375635Re: Grey headings
Can you clarify what you mean by "grey headings", perhaps add a screenshot? And also which version/build of Outlook you are on? In general, you should have no problem replicating the view shown on the screenshot above with Windows 11 and "classic" Outlook. If you are referring to the "Today"/"Yesterday"/"Last week" groupings, you can turn those off via View settings. On the Ribbon, choose View > View Settings > Other settings and remove the checkbox from Show items in Groups.Re: Dynamic group based on custom security attribute
No, you cannot use custom security attributes for that. As for extension attributes, they are exposed via the onpremisesextensionattributes blob: https://learn.microsoft.com/en-us/graph/api/resources/onpremisesextensionattributes?view=graph-rest-1.0Re: Allow specific user to release their own quarantined messages
Create a new quarantine policy with the release option enabled and assign it to said users. The assignment part is the tricky one, as you have to do so via the corresponding anti-spam, anti-phish and additional policies, depending on which types of quarantine messages you want them to be able to release. For each of those, you will have to create a separate policy (i.e. a new anti-spam policy), assign the newly created Quarantine policy to the corresponding actions, then make sure the anti-spam policy only applies to the users in question. Rinse and repeat for any other policy types needed. All the steps should be covered here: https://learn.microsoft.com/en-us/defender-office-365/quarantine-policiesRe: 365 App sign in and editing issues
The desktop Office apps require a valid M365 license in order to edit documents, this is not related to the permissions on the document or your OneDrive. Make sure you have a valid Office license. Or just use the web apps, they allow editing without additional licensing.Re: M365 email license & access management
Depends where you are looking. The signInActivity > lastSuccessfulSignInDateTime gives you the last time the user logged in, but doesn't necessarily indicate email activity. You might want to combine this with the Exchange usage logs. There is no license requirement for sending messages. Take a look at this script Tony has prepared for measuring user's activity: https://office365itpros.com/2022/08/08/microsoft-365-user-activity-2022/Re: Error viewing disposition reviews as a records management administrator
Well there's not much you can do in terms of troubleshooting on this one, apart from adding/removing yourself from the group, or removing/readding the group in the settings (only doable via PowerShell). Opening a support ticket is the next logical step.Re: User app registration - exploitable for BEC?
Yes, you should disable App registrations, regular user have no need for this functionality. And you should also restrict consent to third-party apps, the steps on that are here: https://learn.microsoft.com/en-us/entra/identity/enterprise-apps/configure-user-consent?pivots=portal I'd even argue that you should block consent altogether, but that depends on how much third-party apps are in use in your tenant. Regardless, app registrations should be disabled.
