𝐇𝐨𝐰 𝐭𝐨 𝐜𝐫𝐞𝐚𝐭𝐞 𝐚 𝐖𝐏𝐀3 𝐖𝐢-𝐅𝐢 𝐩𝐫𝐨𝐟𝐢𝐥𝐞 𝐟𝐨𝐫 𝐖𝐢𝐧𝐝𝐨𝐰𝐬 𝐢𝐧 𝐌𝐢𝐜𝐫𝐨𝐬𝐨𝐟𝐭 𝐈𝐧𝐭𝐮𝐧𝐞

Microsoft Intune still cannot natively create a Wi-Fi profile with WPA3-Personal security at this time. Within the configuration templates, there is only Wi-Fi with WPA/WPA2 security, but WPA3 is missing.

If you have a Wi-Fi where WPA3 is enforced without hybrid mode with WPA2, then if you create a profile as WPA2, the device will not connect to it. So, if you have WPA3 enforced, you need to configure Wi-Fi using a custom profile and OMA-URI.

https://www.cswrld.com/2026/03/how-to-create-a-wpa3-wi-fi-profile-for-windows-in-microsoft-intune/

#cswrld #microsoft #intune #wifi #wpa3

𝐇𝐨𝐰 𝐂𝐨𝐧𝐝𝐢𝐭𝐢𝐨𝐧𝐚𝐥 𝐀𝐜𝐜𝐞𝐬𝐬 𝐏𝐨𝐥𝐢𝐜𝐢𝐞𝐬 𝐀𝐫𝐞 𝐄𝐯𝐚𝐥𝐮𝐚𝐭𝐞𝐝 𝐢𝐧 𝐌𝐢𝐜𝐫𝐨𝐬𝐨𝐟𝐭 𝐄𝐧𝐭𝐫𝐚 𝐈𝐃

Understanding how Conditional Access policies are evaluated in Microsoft Entra ID is absolutely essential if you are involved in their creation or management.

I often encounter fundamental misunderstandings regarding how the evaluation of Conditional Access policies takes place. Many administrators are accustomed to systems like firewalls, where there is an order or priority for evaluating created rules. However, it does not work this way with Conditional Access policies in Microsoft Entra ID. Applying the same principle to Conditional Access policies will very likely lead to significant security risks.

Read my blog post bellow 👇 👇
https://www.cswrld.com/2026/02/how-conditional-access-policies-are-evaluated-in-microsoft-entra-id/

#cswrld #entraid #securitytips #conditionalaccess

𝐇𝐨𝐰 𝐭𝐨 𝐮𝐬𝐞 𝐚𝐜𝐜𝐞𝐬𝐬 𝐩𝐚𝐜𝐤𝐚𝐠𝐞𝐬 𝐭𝐨 𝐦𝐚𝐧𝐚𝐠𝐞 𝐠𝐫𝐨𝐮𝐩 𝐦𝐞𝐦𝐛𝐞𝐫𝐬𝐡𝐢𝐩𝐬

Access packages allow you to dynamically manage group, Teams, application, and SharePoint site membership based on user requests.

It works by creating an access package and then publishing it to users – either all users or a select group of users. Users can then activate the package from the My Access portal after meeting defined conditions.

https://www.cswrld.com/2026/02/how-to-use-access-packages-to-manage-group-memberships/

#cswrld #entraid #entitlementmanagement #identitygovernance #accesspackage

𝐇𝐨𝐰 𝐭𝐨 𝐠𝐞𝐭 𝐮𝐧𝐥𝐢𝐦𝐢𝐭𝐞𝐝 𝐦𝐚𝐢𝐥𝐛𝐨𝐱 𝐬𝐢𝐳𝐞 𝐢𝐧 𝐄𝐱𝐜𝐡𝐚𝐧𝐠𝐞 𝐎𝐧𝐥𝐢𝐧𝐞

Exchange Online Plan 1 licenses generally have a primary mailbox capacity of 50 GB. Exchange Online Plan 2 licenses have a capacity of 100 GB. However, this capacity can be extended by using Online Archive. With Exchange Online Plan 2, this capacity is unlimited. Technically speaking, the capacity is limited to 1.5 TB.

An interesting fact is that Microsoft 365 Business Premium licenses, which by default include Exchange Online Plan 1, are also entitled to this feature.

https://www.cswrld.com/2026/01/how-to-enable-auto-expanding-archive-in-exchange-online-and-get-unlimited-mailbox-capacity/

#cswrld #exchangeonline #mailbox #archive

𝗛𝗼𝘄 𝘁𝗼 𝗮𝘂𝘁𝗼𝗺𝗮𝘁𝗶𝗰𝗮𝗹𝗹𝘆 𝘂𝗽𝗱𝗮𝘁𝗲 𝗮𝗽𝗽𝗹𝗶𝗰𝗮𝘁𝗶𝗼𝗻𝘀 𝗼𝗻 𝗰𝗼𝗺𝗽𝘂𝘁𝗲𝗿𝘀 𝗶𝗻 𝗠𝗶𝗰𝗿𝗼𝘀𝗼𝗳𝘁 𝗜𝗻𝘁𝘂𝗻𝗲

Microsoft Intune does not have any built-in options for updating installed applications on Windows computers.

If you want to update applications on managed computers, you must manually create a new version of the given application and deploy it to all computers. However, this is quite a lot of manual work, and you also have to monitor the availability of new versions of installed applications, which is another lot of manual work.

Read more in the article on my blog 👇 👇
https://www.cswrld.com/2025/08/how-to-update-applications-using-patch-my-pc/

#cswrld #cybersecurityworld #blog #intune #applicationmanagement #appupdates #patchmypc

𝗛𝗼𝘄 𝘁𝗼 𝗰𝗼𝗹𝗹𝗲𝗰𝘁 𝗰𝘂𝘀𝘁𝗼𝗺 𝗲𝘃𝗲𝗻𝘁 𝗜𝗗𝘀 𝘁𝗼 𝗠𝗶𝗰𝗿𝗼𝘀𝗼𝗳𝘁 𝗦𝗲𝗻𝘁𝗶𝗻𝗲𝗹

Microsoft Sentinel is Microsoft's SIEM/SOAR. It is used to collect and evaluate logs.

If you choose to collect security logs from Windows Server, Microsoft Sentinel can collect predefined log sets using the built-in settings. By default, you have the option to select from the predefined sets All Security Events, Common, or Minimal.

However, if you need to collect some custom Event IDs that do not belong to the above built-in categories, or simply want your own set of Event IDs to collect, you can define your own Event IDs using XPath queries.

XPath (XML Path Language) is a query language used for selecting nodes from an XML document. It allows you to navigate through elements and attributes in XML documents, making it a powerful tool for extracting specific pieces of information. XPath is commonly used in combination with XML parsers to filter and locate data based on complex conditions.

Read my blog post bellow 👇 👇
https://www.cswrld.com/2025/06/how-to-collect-custom-event-ids-to-microsoft-sentinel/

#cswrld #sentinel #eventid #logcollection #custom

𝗛𝗼𝘄 𝘁𝗼 𝗱𝗶𝘀𝗮𝗯𝗹𝗲 𝗦𝗲𝗹𝗳-𝗦𝗲𝗿𝘃𝗶𝗰𝗲 𝗣𝗮𝘀𝘀𝘄𝗼𝗿𝗱 𝗥𝗲𝘀𝗲𝘁 𝗳𝗼𝗿 𝗮𝗱𝗺𝗶𝗻𝗶𝘀𝘁𝗿𝗮𝘁𝗼𝗿𝘀 𝗶𝗻 𝗠𝗶𝗰𝗿𝗼𝘀𝗼𝗳𝘁 𝗘𝗻𝘁𝗿𝗮 𝗜𝗗

Self-service password reset can be a useful feature that allows users to access their account in case they forget their password.

On the other hand, it is potentially risky, as a potential attacker may target the self-service password reset feature to gain access to the account. Especially for privileged accounts, this is very risky and therefore I would generally recommend disabling self-service password resets for privileged accounts.

📺 Watch my YouTube video bellow 👇 👇
https://youtu.be/KIlRPx_9XRA

#cswrld #videotutorial #sspr #passwordreset #entraid #administrators

𝗛𝗼𝘄 𝘁𝗼 𝗯𝗹𝗼𝗰𝗸 𝗮𝘂𝘁𝗼𝗺𝗮𝘁𝗶𝗰 𝗲𝗺𝗮𝗶𝗹 𝗳𝗼𝗿𝘄𝗮𝗿𝗱𝗶𝗻𝗴 𝗶𝗻 𝗢𝗳𝗳𝗶𝗰𝗲 𝟯𝟲𝟱

Automatic email forwarding is very risky. First, it can lead to exfiltration of sensitive internal information outside the corporate environment. But it can also cause account compromise, for example through password reset whose code arrives at some external address that may be under the control of an attacker.

📺 Watch my YouTube video bellow 👇 👇
https://youtu.be/sdjG-gl6Xxs

#cswrld #videotutorial #email #forwarding #office365 #exchangeonline

𝗛𝗼𝘄 𝘁𝗼 𝗯𝗮𝗰𝗸𝘂𝗽 𝗢𝗳𝗳𝗶𝗰𝗲 𝟯𝟲𝟱 𝗱𝗮𝘁𝗮

Right off the bat, you might be wondering why I should back up data from Office 365 when it's a cloud service. Microsoft assures you of high data availability, but the service itself has no built-in backup mechanisms. And that's something to keep in mind.

Office 365 has two levels of recycle bins in it. The first level is user level, and data from this recycle bin can be restored directly by the user. The second level is admin and only an administrator can restore data from this level. You can have litigation hold and in-place hold set up, but that is not available in all plans, and you probably won't activate it on all mailboxes, SharePoint sites and teams in Teams.

📺 Learn more how to backup Office 365 data in my today's video 👇 👇
https://youtu.be/BBEjAKeaRCQ

#videotutorial #cswrld #backup #office365

𝗛𝗼𝘄 𝘁𝗼 𝗯𝗹𝗼𝗰𝗸 𝘀𝗽𝗲𝗰𝗶𝗳𝗶𝗰 𝗳𝗶𝗹𝗲 𝘁𝘆𝗽𝗲𝘀 𝗶𝗻 𝗲𝗺𝗮𝗶𝗹 𝗮𝘁𝘁𝗮𝗰𝗵𝗺𝗲𝗻𝘁𝘀

A very common source of infection is email. Everyone uses email and threat actors take advantage of it. Either in the form of phishing or in the form of malicious attachments.

There are very advanced protection options within Office 365. Whether it be within Exchange Online Protection, which is included in all Office 365 / Exchange Online plans, or within Safe Attachments, which is an extension within Microsoft Defender for Office 365.

But a very effective protection is the very simple blocking of unwanted file types within email attachments. You simply block what is unwanted, making it very easy and effective to block many potentially malicious files.

📺 Watch my YouTube video bellow 👇 👇
https://youtu.be/dFlD_CH5Kp8

#cswrld #videotutorial #email #attachments #filter #office365 #exchangeonline