@jonathanbourke.bsky.social
33% IT geek, 33% photographer, 33% cynic, 100% Munster fan! Love tech, defence, rugby, and pizza making. Founder @TarbhTech.
Whatโs this??
Whatโs this??
An actual usb key in the wild, dropped not far from my office??
@mrr3b00t.bsky.social what should I do?
I just want it back the way it was!!
My work today was for another partner who have oodles of license SKUโs, and I am frequently deploying 4-6 SKUโs per group.
Was a pain.
Will do @jeftek.com! Thanks for the suggestion.
My rant was prompted by spending two hours cleaning up a licensing mess, and I know this stuff!
Used to be great, going to the group in Entra and seeing which license had a conflict or issue.
Now it is license centric, and... not as clear.
@merill.net @nathanmcnulty.com Do either of you have the contacts within @microsoft.com to get this reversed?
It's an abomination now...if licenses are not assigning, I got to go through them 1 by 1, checking the groups, checking conflicts... I feel like I need 2-3 Admin portal windows open!
It seems to have made a difference so far this month.
Anyone else doing anything with EASM?
Remove expired SSL certs
Ignore Microsoft Sites
Ignore Microsoft Certs
So, you can add a Policy, which acts on a saved search to adjust the approved inventory; these are what I use:
09.02.2025 20:56 โ ๐ 0 ๐ 0 ๐ฌ 1 ๐ 0While I want to see an expirying Cert, I don't want to retain a long record of expired ones (I know that put an onus on me to make sure they are all set up to renew correctly).
Nor do I want to pay to track Microsoft infrastructure that I can't influence.
I don't know if it is a bug or a change, but it appears to be down to two things:
1) Much more common use of Lets Encrypt, expirying every 90 days, but still tracked by EASM
2) Downstream Microsoft services, hosts, IPs, and Certs behind Intune and other services
I like deploying @microsoft.com Defender for External Attack Surface Management (EASM) as an external observation layer for the clients I manage.
Originally a very reasonable cost, I noticed that the costs appeared to have trippled over the last couple of months:
And your regular reminder that this was the most annoying M365 decision ever made!
09.02.2025 18:18 โ ๐ 3 ๐ 0 ๐ฌ 0 ๐ 1
Setting up some new @microsoft365.microsoft.com tenants today, and there is so much to do to make them fit for purpose!
Why oh why do I need to go through these individually to disable them?? I must check out PowerShell...
One or twoโฆ
09.02.2025 14:43 โ ๐ 1 ๐ 0 ๐ฌ 0 ๐ 0
I am not a developer, and wouldn't know React from C++ but a few hours with @vscode.dev, Roo Code, @anthropic.com, Docker, and I have a AI enhanced document management solution (running locally for now, but soon for an
nVidia #Jetson... when it arrives!
#StopMeNow #loadin4k
My plan is to unwind over the remainder of the Christmas holiday by making an effort to reduce the bedside pile of books (which โmagicallyโ grew again).
Reading โNotes from a Small Islandโ, and I see Bill Bryson channelling my sentiments exactly on sand!
Ha, I was only joking on the Copilot+ stuff.
For me, this is my first experience with a Pi like device; I have a Dell R720xd running some VMs and this would give it a run for its money.
I really want to try/learn some python and vision AI stuff; defect detection, document intelligence, etc.
Image of nVidia Jetson Nano developer board.
Soโฆ is this a Copilot+ PC (as I wait for mine to arrive)
25.12.2024 09:32 โ ๐ 2 ๐ 0 ๐ฌ 1 ๐ 0Absolutely!
23.12.2024 18:34 โ ๐ 2 ๐ 0 ๐ฌ 0 ๐ 0
Yeah, you should use fail2ban when setting up webservers
23.12.2024 10:06 โ ๐ 2 ๐ 0 ๐ฌ 0 ๐ 0Ok, now that's super!
18.12.2024 09:33 โ ๐ 0 ๐ 0 ๐ฌ 0 ๐ 0
I wonder, I wonderโฆ I have mine on fairly heavy duty armsโฆ it may work!
15.12.2024 19:25 โ ๐ 1 ๐ 0 ๐ฌ 0 ๐ 0Feck!
Reason I go 4k is the vertical resolution; try doing a logic app or long doc on 1440 - not for me!
Ok! Thats a very different scenario! Does Google do much in the way of device management?
15.12.2024 16:23 โ ๐ 1 ๐ 0 ๐ฌ 1 ๐ 0Itโs not perfect, but itโs sufficiently functional for my needs on MacOS and improving all the time.
15.12.2024 16:12 โ ๐ 1 ๐ 0 ๐ฌ 0 ๐ 0Thanks for this!
15.12.2024 16:07 โ ๐ 0 ๐ 0 ๐ฌ 0 ๐ 0I am Intune all the way
15.12.2024 16:07 โ ๐ 1 ๐ 0 ๐ฌ 2 ๐ 0I had a similar project recently for a few more peopleโฆ just rolling out MFA though. Despite multiple rounds of comms, even using Terms of Use CA policy with custom instructions, youโd be amazed how many were shocked when they were locked out from their BYODs as they didnโt have MFAโฆ
15.12.2024 16:05 โ ๐ 1 ๐ 0 ๐ฌ 2 ๐ 0I think I am having a weird issue where I am protecting security registration using TAP on BYOD, but for some reason I am not prompted for the TAP when registering for passkey.
15.12.2024 16:02 โ ๐ 0 ๐ 0 ๐ฌ 0 ๐ 0While I would love my clients to go with Passkeys, I still struggle in two areas:
- a useful set of CA policies to allow passkey registration on BYOD mobile devices for remote workers
- the windows interface is still a bit of a dogs breakfast if you have Fido/whfb/multiple accounts.
Am interested in the monitor setup; I use 2x32โ 4Ks side by side, I need the pixels but the layout is not ideal.
15.12.2024 13:25 โ ๐ 1 ๐ 0 ๐ฌ 1 ๐ 0
