Skip to content

Commit

Permalink
Merge branch 'public' into patch-14
Browse files Browse the repository at this point in the history
  • Loading branch information
chuckedmonson authored Jul 31, 2024
2 parents c91bd5f + 17e4318 commit 773e09c
Show file tree
Hide file tree
Showing 19 changed files with 71 additions and 57 deletions.
9 changes: 5 additions & 4 deletions microsoft-365/enterprise/contoso-security-summary.md
Original file line number Diff line number Diff line change
Expand Up @@ -5,7 +5,7 @@ f1.keywords:
- NOCSH
ms.author: kvice
manager: scotv
ms.date: 10/02/2019
ms.date: 07/30/2024
audience: ITPro
ms.topic: article
ms.service: microsoft-365-enterprise
Expand All @@ -15,6 +15,7 @@ ms.collection:
- scotvorg
- M365-security-compliance
- Strat_O365_Enterprise
- must-keep
ms.custom:

description: How Contoso uses the security features of Microsoft 365 for enterprise.
Expand Down Expand Up @@ -50,7 +51,7 @@ Contoso followed these steps to prepare their security for their deployment of M

To follow security best practices and Microsoft 365 for enterprise deployment requirements, Contoso security administrators and its IT department deployed many security features and capabilities, as described in the following sections.

## Identity and access management
## Identity and access management

- Dedicated global administrator accounts with MFA and PIM

Expand All @@ -66,8 +67,8 @@ To follow security best practices and Microsoft 365 for enterprise deployment re

MFA adds an additional layer of protection to the sign-in process. It requires users to acknowledge a phone call, text message, or app notification on their smart phone after correctly entering their password. With MFA, Microsoft Entra user accounts are protected against unauthorized sign-in, even if an account password is compromised.

- To protect against compromise of the Microsoft 365 subscription, Contoso requires MFA on all **Microsoft Entra DC admin**, or **Global admin** accounts.
- To protect against phishing attacks, in which an attacker compromises the credentials of a trusted person in the organization and sends malicious emails, Contoso enabled MFA on all user accounts, including managers and executives.
- To protect against compromise of the Microsoft 365 subscription, Contoso requires MFA on all **Microsoft Entra DC admin**, or **Global admin** accounts.
- To protect against phishing attacks, in which an attacker compromises the credentials of a trusted person in the organization and sends malicious emails, Contoso enabled MFA on all user accounts, including managers and executives.

- Safer device and application access with Conditional Access policies

Expand Down
12 changes: 6 additions & 6 deletions microsoft-365/enterprise/hybrid-solutions.md
Original file line number Diff line number Diff line change
Expand Up @@ -3,7 +3,7 @@ title: "Hybrid solutions"
ms.author: kvice
author: kelleyvice-msft
manager: scotv
ms.date: 09/30/2020
ms.date: 07/31/2024
audience: ITPro
ms.topic: conceptual
ms.service: microsoft-365-enterprise
Expand All @@ -14,6 +14,7 @@ search.appverid:
ms.collection:
- scotvorg
- Ent_O365
- must-keep
f1.keywords:
- CSH
ms.custom:
Expand All @@ -34,18 +35,17 @@ For Microsoft 365 identity infrastructure in Azure:
- [Deploy Microsoft 365 Directory Synchronization in Microsoft Azure](deploy-microsoft-365-directory-synchronization-dirsync-in-microsoft-azure.md)

- [Connect an on-premises network to a Microsoft Azure virtual network](connect-an-on-premises-network-to-a-microsoft-azure-virtual-network.md)

- [Deploy high availability federated authentication for Microsoft 365 in Azure](deploy-high-availability-federated-authentication-for-microsoft-365-in-azure.md)

For SharePoint Server 2013 workloads in Azure:

- [Microsoft Azure Architectures for SharePoint 2013](microsoft-azure-architectures-for-sharepoint-2013.md)

- [SharePoint Server 2013 Disaster Recovery in Microsoft Azure](sharepoint-server-2013-disaster-recovery-in-microsoft-azure.md)

- [Internet Sites in Microsoft Azure using SharePoint Server 2013](internet-sites-in-microsoft-azure-using-sharepoint-server-2013.md)


## Related topics

[Microsoft 365 solution and architecture center](../solutions/index.yml)
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -3,7 +3,7 @@ title: "Manage Microsoft 365 with Windows PowerShell for DAP partners"
ms.author: kvice
author: kelleyvice-msft
manager: scotv
ms.date: 08/10/2020
ms.date: 07/31/2024
audience: Admin
ms.topic: conceptual
ms.service: microsoft-365-enterprise
Expand All @@ -15,6 +15,7 @@ ms.collection:
- scotvorg
- Ent_O365
- M365-subscription-management
- must-keep
f1.keywords:
- NOCSH
ms.custom: seo-marvel-apr2020
Expand All @@ -27,17 +28,19 @@ description: "How Syndication and Cloud Solution Provider (CSP) partners can use
*This article applies to both Microsoft 365 Enterprise and Office 365 Enterprise.*

Delegated Access Permission (DAP) partners are Syndication and Cloud Solution Providers (CSP) Partners. Many are network or telecom providers. They bundle Microsoft 365 subscriptions into their service offerings. When they sell a Microsoft 365 subscription, they're automatically granted Administer On Behalf Of (AOBO) permissions to the customer's tenancies so they can administer and report on those tenancies. These tasks are difficult to do in the Microsoft 365 admin center. It's much easier to use PowerShell for Microsoft 365 to do administrative tasks such as:
- List all the customer **TenantIds** and their domains

- List all the customer **TenantIds** and their domains
- Identify all users in a customer tenancy and their assigned licenses

> [!NOTE]
> Some administrative tasks can only be done in PowerShell.
The following articles show how Syndication and CSP partners use PowerShell to administer their customer tenancies:

- [Manage Microsoft 365 tenants with Windows PowerShell for Delegated Access Permissions (DAP) partners](manage-microsoft-365-tenants-with-windows-powershell-for-delegated-access-permissio.md)

- [Add a domain to a client tenancy with Windows PowerShell for Delegated Access Permission (DAP) partners](add-a-domain-to-a-client-tenancy-with-windows-powershell-for-delegated-access-pe.md)

- [Connect to Exchange Online PowerShell](/powershell/exchange/connect-to-exchange-online-powershell)


- [Retrieve customer tenant reporting data with Windows PowerShell for Delegated Access Permissions (DAP) partners](retrieve-customer-tenant-reporting-data-with-windows-powershell-for-delegated-ac.md)

- [Connect to Exchange Online PowerShell](/powershell/exchange/connect-to-exchange-online-powershell)
5 changes: 3 additions & 2 deletions microsoft-365/enterprise/microsoft-365-apps-monitoring.md
Original file line number Diff line number Diff line change
Expand Up @@ -3,7 +3,7 @@ title: "Microsoft 365 Apps monitoring"
ms.author: kvice
author: kelleyvice-msft
manager: scotv
ms.date: 03/25/2023
ms.date: 07/31/2024
audience: Admin
ms.topic: article
ms.service: microsoft-365-enterprise
Expand All @@ -15,6 +15,7 @@ ms.collection:
- scotvorg
- Ent_O365
- Strat_O365_Enterprise
- must-keep
ms.custom: admindeeplinkMAC
f1.keywords:
- NOCSH
Expand All @@ -37,7 +38,7 @@ Microsoft 365 Apps monitoring supports the following organizational-level scenar

- **Long SharePoint File Load Time**. The average file load time from SharePoint has exceeded the recommended threshold over the last 24 hours.

Here's an example of the Apps monitoring dashboard
Here's an example of the Apps monitoring dashboard:

![Organization-level scenarios for Microsoft 365 Apps monitoring.](../media/microsoft-365-exchange-monitoring/M365AppsMonitoring1.png)

Expand Down
2 changes: 1 addition & 1 deletion microsoft-365/enterprise/microsoft-365-networking-china.md
Original file line number Diff line number Diff line change
Expand Up @@ -105,7 +105,7 @@ However, data from other Microsoft 365 services — and other traffic in Teams,

### Identifying Teams real-time media network traffic

For configuring a network device or a VPN/SDWAN setup, you need to exclude only the Teams real-time media audio and video traffic. The traffic details can be found for ID 11 on the official list of [Office 365 URLs and IP address ranges](urls-and-ip-address-ranges.md#skype-for-business-online-and-microsoft-teams). All other network configurations should remain as-is.
For configuring a network device or a VPN/SDWAN setup, you need to exclude only the Teams real-time media audio and video traffic. The traffic details can be found for ID 11 on the official list of [Office 365 URLs and IP address ranges](urls-and-ip-address-ranges.md). All other network configurations should remain as-is.

Microsoft is continually working to improve the Microsoft 365 user experience and the performance of clients over the widest possible range of network architectures and characteristics. Visit the [Office 365 Networking Tech Community](https://techcommunity.microsoft.com/t5/office-365-networking/bd-p/Office365Networking) to start or join a conversation, find resources, and submit feature requests and suggestions

Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -3,7 +3,7 @@ title: "Microsoft 365 community resources for PowerShell"
ms.author: kvice
author: kelleyvice-msft
manager: scotv
ms.date: 07/17/2020
ms.date: 07/31/2024
audience: ITPro
ms.topic: conceptual
ms.service: microsoft-365-enterprise
Expand All @@ -12,6 +12,7 @@ ms.localizationpriority: medium
ms.collection:
- scotvorg
- Ent_O365
- must-keep
f1.keywords:
- CSH
ms.custom:
Expand Down
2 changes: 1 addition & 1 deletion microsoft-365/enterprise/microsoft-365-teams-monitoring.md
Original file line number Diff line number Diff line change
Expand Up @@ -36,7 +36,7 @@ Microsoft Teams monitoring supports the following organizational scenarios with

- **Quality of Experience**. The percentage of audio streams for which Quality of Experience (QoE) telemetry was received by the Teams service. Data can be received up to 3 days after call completion. If the rate drops, investigate your network configuration to ensure that the Microsoft Teams telemetry URLs are not being blocked. The telemetry URLs can be found here: [Office 365 URLs and IP address ranges - Microsoft 365 Common and Office Online](urls-and-ip-address-ranges.md#microsoft-365-common-and-office-online)

- **UDP Stream Establishment**. The percentage of audio streams established over UDP (User Datagram Protocol). Real-time media established over UDP is more efficient and provides better call quality. If the rate drops, investigate your network configuration to ensure that the ports and protocols required by Microsoft Teams are not being blocked. The required IP addresses, hostnames, ports, and protocols can be found here: [Office 365 URLs and IP address ranges - Skype for Business Online and Microsoft Teams](urls-and-ip-address-ranges.md#skype-for-business-online-and-microsoft-teams)
- **UDP Stream Establishment**. The percentage of audio streams established over UDP (User Datagram Protocol). Real-time media established over UDP is more efficient and provides better call quality. If the rate drops, investigate your network configuration to ensure that the ports and protocols required by Microsoft Teams are not being blocked. The required IP addresses, hostnames, ports, and protocols can be found here: [Office 365 URLs and IP address ranges - Skype for Business Online and Microsoft Teams](urls-and-ip-address-ranges.md)

Admins can use the information to correlate any Microsoft-reported issues with the usage data to confirm any actual impact to their organization. Also, admins can view any usage from the last two weeks of usage data to identify any anomalies.

Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -3,7 +3,7 @@ title: Microsoft 365 US Government DOD endpoints
ms.author: kvice
author: kelleyvice-msft
manager: scotv
ms.date: 06/28/2024
ms.date: 07/31/2024
audience: ITPro
ms.topic: conceptual
ms.service: microsoft-365-enterprise
Expand Down Expand Up @@ -39,7 +39,7 @@ Microsoft 365 requires connectivity to the Internet. The endpoints below should

|Notes|Download|
|---|---|
|**Last updated:** 06/28/2024 - ![RSS.](../media/5dc6bb29-25db-4f44-9580-77c735492c4b.png) [Change Log subscription](https://endpoints.office.com/version/USGOVDoD?allversions=true&format=rss&clientrequestid=b10c5ed1-bad1-445f-b386-b919946339a7)|**Download:** the full list in [JSON format](https://endpoints.office.com/endpoints/USGOVDoD?clientrequestid=b10c5ed1-bad1-445f-b386-b919946339a7)|
|**Last updated:** 07/31/2024 - ![RSS.](../media/5dc6bb29-25db-4f44-9580-77c735492c4b.png) [Change Log subscription](https://endpoints.office.com/version/USGOVDoD?allversions=true&format=rss&clientrequestid=b10c5ed1-bad1-445f-b386-b919946339a7)|**Download:** the full list in [JSON format](https://endpoints.office.com/endpoints/USGOVDoD?clientrequestid=b10c5ed1-bad1-445f-b386-b919946339a7)|
|

Start with [Managing Microsoft 365 endpoints](managing-office-365-endpoints.md) to understand our recommendations for managing network connectivity using this data. Endpoints data is updated as needed at the beginning of each month with new IP Addresses and URLs published 30 days in advance of being active. This lets customers who don't yet have automated updates to complete their processes before new connectivity is required. Endpoints may also be updated during the month if needed to address support escalations, security incidents, or other immediate operational requirements. The data shown on this page below is all generated from the REST-based web services. If you're using a script or a network device to access this data, you should go to the [Web service](microsoft-365-ip-web-service.md) directly.
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -3,7 +3,7 @@ title: "Microsoft 365 U.S. Government GCC High endpoints"
ms.author: kvice
author: kelleyvice-msft
manager: scotv
ms.date: 06/28/2024
ms.date: 07/31/2024
audience: ITPro
ms.topic: conceptual
ms.service: microsoft-365-enterprise
Expand Down Expand Up @@ -38,7 +38,7 @@ Microsoft 365 requires connectivity to the Internet. The endpoints below should

|Notes|Download|
|---|---|
|**Last updated:** 06/28/2024 - ![RSS.](../media/5dc6bb29-25db-4f44-9580-77c735492c4b.png) [Change Log subscription](https://endpoints.office.com/version/USGOVGCCHigh?allversions=true&format=rss&clientrequestid=b10c5ed1-bad1-445f-b386-b919946339a7)|**Download:** the full list in [JSON format](https://endpoints.office.com/endpoints/USGOVGCCHigh?clientrequestid=b10c5ed1-bad1-445f-b386-b919946339a7)|
|**Last updated:** 07/31/2024 - ![RSS.](../media/5dc6bb29-25db-4f44-9580-77c735492c4b.png) [Change Log subscription](https://endpoints.office.com/version/USGOVGCCHigh?allversions=true&format=rss&clientrequestid=b10c5ed1-bad1-445f-b386-b919946339a7)|**Download:** the full list in [JSON format](https://endpoints.office.com/endpoints/USGOVGCCHigh?clientrequestid=b10c5ed1-bad1-445f-b386-b919946339a7)|
|

Start with [Managing Microsoft 365 endpoints](managing-office-365-endpoints.md) to understand our recommendations for managing network connectivity using this data. Endpoints data is updated as needed at the beginning of each month with new IP Addresses and URLs published 30 days in advance of being active. This lets customers who don't yet have automated updates to complete their processes before new connectivity is required. Endpoints may also be updated during the month if needed to address support escalations, security incidents, or other immediate operational requirements. The data shown on this page below is all generated from the REST-based web services. If you're using a script or a network device to access this data, you should go to the [Web service](microsoft-365-ip-web-service.md) directly.
Expand Down
9 changes: 7 additions & 2 deletions microsoft-365/enterprise/migrate-data-to-office-365.md
Original file line number Diff line number Diff line change
Expand Up @@ -3,7 +3,7 @@ title: "Migrate your organization data to Microsoft 365 Enterprise"
ms.author: kvice
author: kelleyvice-msft
manager: scotv
ms.date: 08/10/2020
ms.date: 07/30/2024
audience: ITPro
ms.topic: conceptual
ms.service: microsoft-365-enterprise
Expand All @@ -12,6 +12,7 @@ ms.localizationpriority: medium
ms.collection:
- scotvorg
- Ent_O365
- must-keep
search.appverid:
- MET150
- MOE150
Expand All @@ -27,22 +28,26 @@ description: "In this article, you'll find the resources to help you migrate you

## Ready to migrate your data to Microsoft 365?

Our [basic set up instructions](https://support.office.com/article/Set-up-Office-365-for-business-6a3a29a0-e616-4713-99d1-15eda62d04fa) help you get everyone using your Microsoft 365 services and applications in the shortest time possible. This skips the hybrid scenarios and the more advanced methods for migrating to Microsoft 365.
Our [basic set up instructions](https://support.office.com/article/Set-up-Office-365-for-business-6a3a29a0-e616-4713-99d1-15eda62d04fa) help you get everyone using your Microsoft 365 services and applications in the shortest time possible. This skips the hybrid scenarios and the more advanced methods for migrating to Microsoft 365.

If you want help with getting Microsoft 365 setup, [FastTrack](https://fasttrack.microsoft.com/office) is the easiest way to deploy Microsoft 365, you can also sign in and use the [Setup guides for Microsoft 365 services](setup-guides-for-microsoft-365.md).

## Migrate email to Microsoft 365

- Migrate with Exchange Hybrid using the [Exchange Deployment Assistant](https://technet.microsoft.com/exdeploy2013). (Administrator)
- Learn more about the different [ways to migrate email to Microsoft 365](https://support.office.com/article/Ways-to-migrate-multiple-email-accounts-to-Office-365-0a4913fe-60fb-498f-9155-a86516418842).
- Find alternative ways [people in your organization can migrate their own email, contacts, and calendars](https://support.office.com/article/Migrate-email-and-contacts-to-Office-365-for-business-a3e3bddb-582e-4133-8670-e61b9f58627e).

## Migrate files and folders

- [Migrate to SharePoint and OneDrive](/sharepointmigration/migrate-to-sharepoint-online). (Administrator)
- [SharePoint Server hybrid configuration roadmaps](/SharePoint/hybrid/configuration-roadmaps). (Administrator)

## Migrate Skype for Business users

- [Migrate to Skype for Business Online](/SkypeForBusiness/hybrid/move-users-between-on-premises-and-cloud?bc=%2fSkypeForBusiness%2fbreadcrumb%2ftoc.json&toc=%2fSkypeForBusiness%2ftoc.json). (Administrator)
- Download the [Skype for Business meeting update tool](https://www.microsoft.com/download/details.aspx?id=51659) and [run it on each workstation](https://support.office.com/article/Meeting-Update-Tool-for-Skype-for-Business-and-Lync-2b525fe6-ed0f-4331-b533-c31546fcf4d4). (Administrator and/or end user)

## Need to talk to Support?

[Contact support](https://support.office.com/article/32a17ca7-6fa0-4870-8a8d-e25ba4ccfd4b) for business products.
9 changes: 5 additions & 4 deletions microsoft-365/enterprise/modern-iframe-optimization.md
Original file line number Diff line number Diff line change
Expand Up @@ -3,7 +3,7 @@ title: "Optimize iFrames in SharePoint modern and classic publishing site pages"
ms.author: kvice
author: kelleyvice-msft
manager: scotv
ms.date: 03/11/2020
ms.date: 07/31/2024
audience: ITPro
ms.topic: conceptual
ms.service: microsoft-365-enterprise
Expand All @@ -14,6 +14,7 @@ ms.collection:
- Ent_O365
- Strat_O365_Enterprise
- SPO_Content
- must-keep
f1.keywords:
- CSH
ms.custom: Adm_O365
Expand All @@ -32,10 +33,10 @@ iFrames can be useful for previewing rich content such as videos or other media.
## Use the Page Diagnostics for SharePoint tool to analyze web parts using iFrames

The Page Diagnostics for SharePoint tool is a browser extension for the new Microsoft Edge (https://www.microsoft.com/edge) and Chrome browsers that analyzes both SharePoint modern portal and classic publishing site pages. The tool provides a report for each analyzed page showing how the page performs against a defined set of performance criteria. To install and learn about the Page Diagnostics for SharePoint tool, visit [Use the Page Diagnostics tool for SharePoint](page-diagnostics-for-spo.md).
The Page Diagnostics for SharePoint tool is a browser extension for the new [Microsoft Edge](https://www.microsoft.com/edge) and Chrome browsers that analyzes both SharePoint in Microsoft 365 modern portal and classic publishing site pages. The tool provides a report for each analyzed page showing how the page performs against a defined set of performance criteria. To install and learn about the Page Diagnostics for SharePoint tool, visit [Use the Page Diagnostics tool for SharePoint](page-diagnostics-for-spo.md).

>[!NOTE]
>The Page Diagnostics tool only works for SharePoint, and cannot be used on a SharePoint system page.
>The Page Diagnostics tool only works for SharePoint in Microsoft 365, and cannot be used on a SharePoint system page.
When you analyze a SharePoint site page with the Page Diagnostics for SharePoint tool, you can see information about web parts containing iFrames in the _Diagnostic tests_ pane. The baseline metric is the same for modern and classic pages.

Expand Down Expand Up @@ -77,4 +78,4 @@ Before you make page revisions to remediate performance issues, make a note of t

[Tune Office 365 performance](tune-microsoft-365-performance.md)

[Performance in the modern SharePoint experience](/sharepoint/modern-experience-performance)
[Performance in the modern SharePoint experience](/sharepoint/modern-experience-performance)
Loading

0 comments on commit 773e09c

Please sign in to comment.