Disable MySite “Let’s get social” dialog

By default, when you open the MySite SC for the first time, you will receive this dialog:

image_thumb[3].png

So, probably under your unknow of SharePoint, you will press “Okay”, but what you don’t know is that pressing that “Okay”, changes the privacy of all your social activities to “everyone”, and also send you an email. So probably, most of users don’t want to share their activities, but what we can do to solve this? PowerShell of course:

$web = get-SPWeb http://urlmysitehost
$web.Properties[“urn:schemas-microsoft-com:sharepoint:portal:profile:SPS-O15FirstRunExperience”]=”OFF”
$web.Update()

Hope that helps!

Azure AD Premium vs. Azure AD

Many of my customers ask me that, and most of the cases I answer with the following: “If you have an Office 365 subscription, then you already have Azure Active Directory”

In addition to that, if they have Azure AD Connect enabled, will mean that their OnPremises users, passwords and groups are being synchronized to Azure Active Directory.

This is the standard case, but then many of my customers want to enable more features, but many of them are only available on Premium version, and yes it incurs an extra cost

Moreover, nowdays we have different types of Azure Active Directory licensing like:

  • Azure Active Directory Basic
  • Azure Active Directory Premium P1
  • Azure Active Directory Premium P2

But, which features has each one of the licenses?

With Azure Active Directory Basic

  • Manage users & group memberships in the cloud, and assign licensing
  • Sync your on-premises directory using Azure AD Connect
  • Cloud Users can reset their own passwords online
  • Company branding for the SSO access panel, etc.
  • 99.9% uptime SLA

Azure Active Directory Premium P1

  • MFA for cloud and OnPremises
  • Monitor AD synchronization health in the cloud
  • Cloud and OnPremise Users can change their own passwords online
  • Advanced security & usage reports
  • Self-service group & app management (dynamic groups)
  • Run Cloud App Discovery to uncover unmanaged cloud applications running in your environment

Azure Active Directory Premium P2

  • Azure Identity Protection
  • Privileged Identity Management

So, if you want to more about the Azure Active Directory, you can visit the following link, where you can find more info about it.

Till next time!

S4B not able to connect on Mac devices

Hi all!

This is an incedent that a customer reported me, the problem was that he has a number of Mac devices that were not able to connect to the S4B OnPremise installation, each time they tried to connect to the client, the received an error.

So, we started to troubleshoot the problem, we revised the logs and then we realized that in one of the trace logs, there was a message related with the certificate, so probably the error was in that direction.

How it was a Mac device, it was not possible to add the device to the domain, so the domain certificates were not included in the chain certificate root, and for that reason the devices does not trust the discovery url from the S4B. So, we donwloaded the certificate from the discovery url, and we installed the certificate in the chain root of each one of the Mac devices that the customer has.

Once it has been done, we were able to connect to S4B trhough the different devices. Could be a silly thing, but we get stuck into that problem for several days.

Hope that helps!

 

Skype Meeting Broadcast

One of the best kept secret of Skype is Skype Meeting Broadcast, which is a large scale meeting service that can host up to 10,000 attendees on any device, Mac, PC, Windows, Mobile, and even Linux devices through a web browser broadcast. Behind the scenes, this kind of service is based on Azure media services, and for example users located in the same geographical area will be connected to the same CDN.

In which plan is included the Skype Meeting Broadcast? In the followings

  • Enterprise E1, E3, and E5
  • Skype for Business Online Standalone Plan 2 (or 3)

And who can attend to the meeting? You can select through the following options:

  1. Anonymous: Anybody with the broadcast URL can attend
  2. Secure: Only specific people can attend based off their email address
  3. All Company: Only people within your company can attend, they will need a username and password.

So, your last question will be, how I can start planning a Skype Broadcast? You will need to access to the following link: http://portal.broadcast.skype.com and then select the day you will host the meeting, and then customize the meeting to fit your preferences.

I think that will be a great tool to my customers to host their online meetings or product presentations 🙂

References: https://support.office.com/en-us/article/What-is-a-Skype-Meeting-Broadcast-c472c76b-21f1-4e4b-ab58-329a6c33757d?ui=en-US&rs=en-US&ad=US

https://blogs.msdn.microsoft.com/mvpawardprogram/2015/08/10/exploring-skype-meeting-broadcast/

https://support.microsoft.com/en-us/help/3122742/bandwidth-requirements-for-skype-meeting-broadcast

 

 

Synchronizing ProxyAddress to O365

Recently, due to client requirements we’re doing a series of tests about how to migrate a bunch of attributes to O365. But we found a simple (and silly) problem that stuck us for a couple of hours.

At first glance, we were able to migrate some users from OnPrem to Office 365, but then we started playing with some other AD attributes, one of them, was ProxyAddress.

We were trying to set the following proxyaddress onprem and try to synchronize it in O365: user@tenant.onmicrosoft.com. At first glance, everything seems ok, because we were able to see in the ADConnect client that this attribute was exported to O365, but when we tried to examine this attribute in O365, was impossible to sync it.

We did a lot of things, and we run a lot of tests, including full syncs, delta, etc… and finally we discovered that it is not possible to sync a proxyaddress from onprem to o365, which contains *.onmicrosoft.com.

So, sometimes we have to follow KISS procedure and try to no rebuild the wheel…

Hope that helps!

Office 365 URLs and IP address ranges

When I start a project with a customer, they ask me to asses them in order to evaluate which ports and IP’s are necessary to be opened in order to work with Office 365 services.

Whenever I can, I try to give them a complete solution, but in other cases I heard from them how complicated is to configure the firewalls due to the number of IP ranges and ports required for Office 365.

How customers are not sure which services will be used I give them the following URL: IP’s and Ports

So, by using the following link, will be very easy for them to configure the services and to use them in a proper way.

till next time!

Recommendations using Skype For Business meetings

Currently, I am using more and more S4B to Schedule Skype meetings to communicate with other people that are not located in my office or even in my region.

By default, everyone that is invited to a Skype meeting is considered as a “presenter” and has full control over the meeting, but sometimes this configuration is not the appropriate for large meetings. Probably you want more control over the audio, video or the content presented over the meeting, so the intention of this post is to give some recommendations about using S4B for this situations.

To do this, the first thing that we have to take into account is that all this configurations are controlled over the Outlook client, so you need to create a new Skype meeting and then select meeting options in Outlook ribbon:

s4b

You will have a series of possible configurations:

Where do you want to meet online?

  • Select “a new meeting space”. This setting is required if you wish to change any of the default meeting settings.

These people do not have to wait in the lobby:

  • You will want to change this setting unless you want to manually let each person in and have an announcement as each person enters and exits.
  • Suggested options are to allow “People I invite from my company” and “Callers get in directly”.

Who’s a presenter?

  • By default, everyone from our organization is a “presenter”, which means they can control audio, video and screen sharing options.
  • Change this setting to “Only me, the meeting organizer”. This ensures that only the meeting organizer is a presenter. You can choose additional presenters as required.  For example, the person that schedules the meeting is automatically a presenter.  You can also “promote” the individual presiding at the meeting to a presenter to give them full capabilities.

Do you want to limit participation?

  • Presenters always have the ability to chat and share audio and video as well as presentations.
  • In a large meeting, it might be beneficial to mute participants audio and block video in order to provide better control over the environment and ensure a better experience for participants.
  • As a presenter you can un-mute participant’s audio on a case-by-case basis as needed.
  • Participants can also be elevated to presenters at any time to provide full access.

Once you are done making the changes you require, select the “ok” button or press the button to save your preferences for future meetings.

That’s all!