[et_pb_section fb_built=”1″ _builder_version=”4.22.2″ _module_preset=”default” global_colors_info=”{}” theme_builder_area=”post_content”][et_pb_row column_structure=”1_2,1_2″ _builder_version=”4.22.2″ _module_preset=”default” background_image=”\/wp-content\/uploads\/2023\/11\/PCLock2.jpg” custom_padding=”||11px|||” border_radii=”on|20px|20px|20px|20px” global_colors_info=”{}” theme_builder_area=”post_content”][et_pb_column type=”1_2″ _builder_version=”4.22.2″ _module_preset=”default” global_colors_info=”{}” theme_builder_area=”post_content”][et_pb_text _builder_version=”4.22.2″ _module_preset=”default” custom_padding=”20px|20px|20px|20px|false|false” border_radii=”on|10px|10px|10px|10px” global_colors_info=”{}” theme_builder_area=”post_content”]<\/p>\n
These are in accordance with the continued work by Microsoft to protect 365 users.\u00a0 This will keep your configuration current with their latest advisories but may have some (limited) impact on your IT experience.\u00a0 It is all about keeping your configuration cyber-safe and responding to new capabilities and tools.<\/span><\/p>\n \u00a0<\/span><\/p>\n [\/et_pb_text][\/et_pb_column][et_pb_column type=”1_2″ _builder_version=”4.22.2″ _module_preset=”default” global_colors_info=”{}” theme_builder_area=”post_content”][\/et_pb_column][\/et_pb_row][et_pb_row column_structure=”1_2,1_2″ _builder_version=”4.22.2″ _module_preset=”default” global_colors_info=”{}” theme_builder_area=”post_content”][et_pb_column type=”1_2″ _builder_version=”4.22.2″ _module_preset=”default” global_colors_info=”{}” theme_builder_area=”post_content”][et_pb_text _builder_version=”4.22.2″ _module_preset=”default” background_color=”rgba(33,0,0,0.1)” custom_padding=”20px|20px|20px|20px|false|false” border_radii=”on|10px|10px|10px|10px” global_colors_info=”{}” theme_builder_area=”post_content”]<\/p>\n Microsoft Conditional Access is a tool that helps keep important information safe. It\u2019s like a guard that checks who is allowed to enter a building. If someone is not allowed, the guard will not let them in. Similarly, Microsoft Conditional Access checks if someone is allowed to see important information and only lets them in if they are allowed – for example, where are they logging in from?<\/span><\/p>\n Kinetics will be ensuring customers are migrated from ‘Legacy MFA Policies’ over to the new “Manage” authentication methods for ‘Microsoft Entra ID’.\u00a0 <\/span>Kinetics will migrate customers over to new Conditional Access Policies that do the following.<\/span>\u00a0<\/span><\/p>\n 1.0 KARE MFA Enforcement <\/span><\/b>\u2013 All users will require MFA in All Locations<\/span><\/p>\n 2.0 KARE MFA Administrator Enforcement <\/span><\/b>\u2013 This is a fallback policy for Administrator accounts to ensure they have MFA (backup to the general KARE MFA Enforcement)<\/span>\u00a0<\/span><\/p>\n 3.0 KARE Service Account Sign in<\/span><\/b> \u2013 Excluded Service Accounts will be restricted to only sign in from the office.\u00a0<\/span>\u00a0<\/span><\/p>\n 4.0 KARE MFA Setup Restrictions <\/span><\/b>\u2013 This will require user to be in the office or already have an existing MFA Method setup to add\/modify\/remove existing MFA methods<\/span>\u00a0<\/span><\/p>\n \u00a0<\/span><\/p>\n To Ensure all accounts are Secure, and to help with continued requirements from Microsoft.\u00a0<\/span>\u00a0<\/span><\/p>\n \u00a0<\/span><\/p>\n Users or Service accounts that do not yet have MFA, will be required to setup MFA to sign in, we will mitigate this by forcing service accounts to only be able to sign in from one location such as the office.<\/span>\u00a0<\/span><\/p>\n [\/et_pb_text][\/et_pb_column][et_pb_column type=”1_2″ _builder_version=”4.22.2″ _module_preset=”default” global_colors_info=”{}” theme_builder_area=”post_content”][et_pb_text _builder_version=”4.22.2″ _module_preset=”default” background_color=”rgba(255,229,229,0.3)” custom_padding=”20px|20px|20px|20px|false|false” border_radii=”on|20px|20px|20px|20px” border_width_all=”1px” border_color_all=”#222222″ global_colors_info=”{}” theme_builder_area=”post_content”]<\/p>\n Ensuring the Global Quarantine Policy is set to once per day or more frequently if already set more frequently.<\/span>\u00a0<\/span><\/p>\n Ensuring the MDO Security Presets are configured for the customer for Safe Links, Safe Attachments, Anti-Phishing, Anti-Spam and Anti-Malware\u00a0\u00a0<\/span>\u00a0<\/span><\/p>\n \u00a0<\/span><\/p>\n This allows us a huge benefit of keeping up with the constantly evolving Microsoft Security Standards.\u00a0<\/span>\u00a0<\/span><\/p>\n \u00a0<\/span><\/p>\n User accounts, should see little to no impact but may get more quarantine emails as more true positives are caught.\u00a0<\/span>\u00a0<\/span><\/p>\n \u00a0<\/span><\/p>\n [\/et_pb_text][\/et_pb_column][\/et_pb_row][\/et_pb_section]<\/p>\n","protected":false},"excerpt":{"rendered":" We need to make some security changes. These are in accordance with the continued work by Microsoft to protect 365 users.\u00a0 This will keep your configuration current with their latest advisories but may have some (limited) impact on your IT experience.\u00a0 It is all about keeping your configuration cyber-safe and responding to new capabilities and […]<\/p>\n","protected":false},"author":5,"featured_media":11150,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_et_pb_use_builder":"on","_et_pb_old_content":"","_et_gb_content_width":"","footnotes":""},"categories":[4,5],"tags":[],"class_list":["post-11133","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news","category-security"],"_links":{"self":[{"href":"https:\/\/new.kinetics.co.nz\/index.php?rest_route=\/wp\/v2\/posts\/11133","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/new.kinetics.co.nz\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/new.kinetics.co.nz\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/new.kinetics.co.nz\/index.php?rest_route=\/wp\/v2\/users\/5"}],"replies":[{"embeddable":true,"href":"https:\/\/new.kinetics.co.nz\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=11133"}],"version-history":[{"count":0,"href":"https:\/\/new.kinetics.co.nz\/index.php?rest_route=\/wp\/v2\/posts\/11133\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/new.kinetics.co.nz\/index.php?rest_route=\/"}],"wp:attachment":[{"href":"https:\/\/new.kinetics.co.nz\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=11133"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/new.kinetics.co.nz\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=11133"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/new.kinetics.co.nz\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=11133"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}Here is what you can expect:<\/span><\/h3>\n
:Conditional Access (MFA) Changes <\/span>\u00a0<\/span><\/h2>\n
What are we doing:<\/span>\u00a0<\/span><\/h3>\n
Why are we doing this:<\/span>\u00a0<\/span><\/h3>\n
What could be impacted:<\/span>\u00a0<\/span><\/h3>\n
Microsoft Defender for Office 365\u00a0<\/span>\u00a0<\/span><\/h2>\n
What are we doing:<\/span>\u00a0<\/span><\/h3>\n
Why are we doing this:<\/span>\u00a0<\/span><\/h3>\n
What could be impacted:\u00a0<\/span>\u00a0<\/span><\/h3>\n