Microsoft Teams: Custom Background Images
KB ID 0001669 Problem With the current lockdown and everyone working from home, I’m using Teams a lot. I use one of the images that I use here at PNL as one of the background images that ‘appear’ behind me when I’m using the webcam in Teams. I was asked today how I did that, so I thought I’d write it up here. Solution I’m using Teams on my MacBook but the procedure it pretty much the same in...
PowerShell: Disable MFA For All O365 Users
KB ID 0001655 Problem If you have something boring/repetitive to do then Powershell is your friend! I needed to do this for a client that’s replacing their Office365/Azure AD MFA (Multi Factor Authentication) with Duo. Solution Connect to your Microsoft Services Online, i.e. Office365/Azure, using your administrative credentials with the following command; Connect-MsolService Then (Note: I’ve got more than 1000 users so I...
Outlook: ADFS Error 0xCAA70010
KB ID 0001652 Problem While trying to connect Outlook (2016) to an Office 365 email account; We can’t connect you It looks like we can’t connect you to one of our services the moment. Please try again later, or contact your helpdesk if the issue persists. 0xCAA70010 {ADFS-URL} Solution This was happening because my ADFS server was using a ‘self-signed’ certificate (i.e. not a purchased one). This should NEVER...
Azure AD Connector: Disable ADFS Authentication
KB ID 0001643 Problem Why would you want to disable ADFS authentication? Well what if ADFS is down, or you want to revert to some other authentication method? I was in a position a few weeks ago where I needed to disable ADFS on a clients Azure AD Sync. At that time the Microsoft Tech on the phone steered us towards doing what I can only describe as a ‘forced de-federation’. This involved using Powershell and it resets the...
Azure Pass-through Authentication
KB ID 0001642 Problem I’ve never really taken the time to look at pass-through authentication, I set up Azure AAD sync, then I either use ADFS or I don’t. It was only when looking at removing ADFS, that I even looked at it as an option. How does Pass-through Authentication Work? Remote client attempts to authenticate to Office 365 (Azure Active Directory). Azure queues the request and sends it to an Azure Authentication...
Password Sync: No Recent Syncronization
KB ID 0001640 Problem I recently migrated the server that was running my Azure AD Connector. It was showing no errors post migration so I thought no more about it. A few days later I logged in to Office 365 and saw this; AAD Connect Status Azure AD Connect Password sync: no recent synchronization Solution Apparently this can suddenly happen if you are running an old version of AAD Connect. But I checked and mine was brand new,...
AAD Contains Another Object With The Same DN
KB ID 0001638 Problem I’ve seen this a few times now, I’ve had users that will not sync from Active Directory to Azure Active Directory (Office 365). When you look to see why, you will see something like; The Connector {Your-Domain}.onmicrosoft.com – AAD contains another object with the same DN which is already connected to the MV. Note: For the uninitiated, DN is Distinguished Name, and MV is MetaVerse. If you...
No Mail Flow On-Premises To/From Office 365
KB ID 0001631 Problem I upgraded my On-Premises Hybrid Exchange server recently, from Exchange 2016 to Exchange 2019. I remembered to add the new server onto the Office 365 send connector, but there was no mail flow between an on premises mailbox and an office365 mailbox? Solution This happens because, (even if you are using the same certificate on the new and old servers) the certificate that is used for TLS security between your...
Office 365 Retention Policies
KB ID 0001620 Problem Most things in Office 365 operate on a 30 day retention principle, but what if you are governed by restrictions that require you to retain your data for 5 years or 7 years in some cases? We have had Retention policies in Exchange for years, and I knew you could create a policy in exchange online, but what about OneDrive or SharePoint data? Well with O365 you can specify a ‘top level’ retention policy...
Hybrid Exchange: ‘Mailbox Delegation’ Missing?
KB ID 0001607 Problem This was asked on EE this morning, if you are on a Hybrid Exchange environment then you cannot allocate Mailbox Delegation to an Office365 mailbox; However you can add ‘Mailbox Delegation’ to a ‘local mailbox’. This is completely normal behaviour, to allocate mailbox delegation permissions to your Office 365 mailboxes, you need to use PowerShell. Managing Mailbox Delegation Permissions in...