Office 365: Importante amenaza de seguridad en Azure AD Connect!

Si tienes sincronizado tu directorio activo corporativo con Office 365 por medio de Azure AD Connect, seguramente hayas recibido una notificación de que se ha detectado una vulnerabilidad de seguridad a la que tienes que prestar atención. En concreto el mensaje que recibiréis es como sigue:

You are currently using one of the synchronization tools that Microsoft offers to sync data from on premises to one of our cloud features, such as Office 365.
A security issue has been discovered that potentially exposes your Active Directory environment to a risk of elevated privilege by an unauthorized administrator.

Y para detectar y resolver el problema os dejo los enlaces que Microsoft incluye como parte del aviso:

+ Información: https://practical365.com/blog/microsoft-releases-advisory-for-azure-ad-connect-service-account-security-risk/

Anuncios

SharePoint: December 2017 cumulative updates are now available!

December 2017 Cumulative Updates (CU) for SharePoint 2010, SharePoint 2013 and SharePoint 2016 are now available.

Cumulative Updates for SharePoint 2010

There are not cumulative updates for SharePoint 2010. 

Cumulative Updates for SharePoint 2013

In order to install November CU for SharePoint 2013, it’s required Service Pack 1 for SharePoint 2013.

KB Articles:

  • KB 4011588 – SharePoint Foundation 2013 December 2017 CU
  • KB 4011593 – SharePoint Server 2013 December 2017 CU
  • KB 4011589 – Project Server 2013 December 2017 CU
  • KB 4011587 – Office Web Apps Server 2013 December 2017 CU

Installation Packages:

Cumulative Updates for SharePoint 2016

KB Articles:

  • KB 4011576 – December 2017 Update for SharePoint Server 2016 (language independent) – This is also a security update!
  • KB 4011578 – December 2017 Update for SharePoint Server 2016 (language dependent fixes)
  • KB 4011020 – December 2017 Update for Office Online Server 2016 – This is also a security update!

    Installation Packages

    References

    SharePoint: Disponibles las actualizaciones acumuladas de Diciembre de 2017!

    Como cada mes, ya tenemos disponibles las actualizaciones acumuladas (CUs) para SharePoint 2010 y 2013 correspondientes a diciembre de 2017. Además, también tenemos la correspondiente CU de diciembre de 2017 para SharePoint 2016.

    Actualizaciones acumuladas para SharePoint 2010

    No hay actualizaciones acumuladas para SharePoint 2010.

    Actualizaciones acumuladas para SharePoint 2013

    En este caso, es necesario tener aplicado el SP 1 de SharePoint 2013:

    Artículos de KB:

    • KB 4011588 – SharePoint Foundation 2013 December 2017 CU
    • KB 4011593 – SharePoint Server 2013 December 2017 CU
    • KB 4011589 – Project Server 2013 December 2017 CU
    • KB 4011587 – Office Web Apps Server 2013 December 2017 CU

    Paquetes de instalación:

    Actualizaciones acumuladas para SharePoint 2016

    Artículos de KB:

    • KB 4011576 – December 2017 Update for SharePoint Server 2016 (language independent) – This is also a security update!
    • KB 4011578 – December 2017 Update for SharePoint Server 2016 (language dependent fixes)
    • KB 4011020 – December 2017 Update for Office Online Server 2016 – This is also a security update!

    Paquetes de instalación:

    Referencias:

    Office 365: How to add a new e-mail alias to several Office 365 users in bulk using PowerShell!

    This time I’m sharing a PowerShell script that allows to add a new e-mail alias to existing Office 365 users in buk. The users to be updated are read from a CSV file. You can download the script from the following URL:  How to a new e-mail alias to several existing O365 users in bulk

    ############################################################################################################################################
    # Script that allows to do a add users to add e-mail addresses to Office 365 users in bulk using the same UPN. The users are read from a CSV file. 
    # The csv file only needs a column that stores the account principal name for each user to be added to Office 365
    # Required Parameters:
    #  -> $sUserName: User Name to connect to the SharePoint Admin Center.
    #  -> $NewDomain: Domain of the new e-mail to be added to the user.
    #  -> $sMessage: Message to show in the user credentials prompt.
    #  -> $sInputFile: Message to show in the user credentials prompt.
    ############################################################################################################################################
    
    $host.Runspace.ThreadOptions = "ReuseThread"
    
    #Definition of the function that allows to add to Office 365 the list of users contained in the CSV file.
    function Add-NewEMailAddressToUsers
    {
        param ($sInputFile,$sNewDomain)
        try
        {   
            # Reading the Users CSV file
            $bFileExists = (Test-Path $sInputFile -PathType Leaf) 
            if ($bFileExists) { 
                "Loading $sInputFile for processing..." 
                $tblUsers = Import-CSV $sInputFile            
            } else { 
                Write-Host "$sInputFile file not found. Stopping the import process!" -ForegroundColor Red
                exit 
            }         
            
            # Deleting the users
            Write-Host "Adding new E-Mails to Office 365 Users ..." -ForegroundColor Green    
            foreach ($user in $tblUsers) 
            {             
                $sUPNPart=$user.UserPrincipalName.Split("@")[0]            
                $sNewEMailToAdd=$sUPNPart + $sNewDomain
                 "Adding new E-Mail $sNewEMailToAdd to User " + $user.UserPrincipalName.ToString()  	
                Set-Mailbox -Identity $user.UserPrincipalName -EmailAddresses @{add=$sNewEMailToAdd}            
            } 
    
            Write-Host "-----------------------------------------------------------"  -ForegroundColor Green
            Write-Host "All the e-mails have been added. The processs is completed." -ForegroundColor Green
            Write-Host "-----------------------------------------------------------"  -ForegroundColor Green
        }
        catch [System.Exception]
        {
            Write-Host -ForegroundColor Red $_.Exception.ToString()   
        } 
    }
    
    #Connection to Office 365
    $sUserName="<O365_Admin>"
    $sMessage="Introduce your Office 365 Credentials"
    #Connection to Office 365
    
    
    $O365cred = Get-Credential -UserName $sUserName -Message $sMessage
    $PSSession = New-PSSession -ConfigurationName Microsoft.Exchange -ConnectionUri https://outlook.office365.com/powershell-liveid/ -Credential $O365cred -Authentication Basic -AllowRedirection
    Import-PSSession $PSSession
    
    $ScriptDir = Split-Path -parent $MyInvocation.MyCommand.Path
    #$sInputFile=$ScriptDir+ "\O365UsersToUpdate.csv"
    
    $sNewDomain="@<YourDomain>.onmicrosoft.com"
    
    Add-NewEMailAddressToUsers -sInputFile $sInputFile -sNewDomain $sNewDomain
    

    Office 365: Como añadir un alias de correo de forma masiva con PowerShell!

    En esta ocasión os comparto un Script PowerShell que permite añadir alias de correo de forma masiva en Office 365. La información de los usuarios a los que se va a añadir un alias se recoge de un archivo CSV. Podéis descargaros el script desde el siguiente enlace:  How to a new e-mail alias to several existing O365 users in bulk

    ############################################################################################################################################
    # Script that allows to do a add users to add e-mail addresses to Office 365 users in bulk using the same UPN. The users are read from a CSV file. 
    # The csv file only needs a column that stores the account principal name for each user to be added to Office 365
    # Required Parameters:
    #  -> $sUserName: User Name to connect to the SharePoint Admin Center.
    #  -> $NewDomain: Domain of the new e-mail to be added to the user.
    #  -> $sMessage: Message to show in the user credentials prompt.
    #  -> $sInputFile: Message to show in the user credentials prompt.
    ############################################################################################################################################
    
    $host.Runspace.ThreadOptions = "ReuseThread"
    
    #Definition of the function that allows to add to Office 365 the list of users contained in the CSV file.
    function Add-NewEMailAddressToUsers
    {
        param ($sInputFile,$sNewDomain)
        try
        {   
            # Reading the Users CSV file
            $bFileExists = (Test-Path $sInputFile -PathType Leaf) 
            if ($bFileExists) { 
                "Loading $sInputFile for processing..." 
                $tblUsers = Import-CSV $sInputFile            
            } else { 
                Write-Host "$sInputFile file not found. Stopping the import process!" -ForegroundColor Red
                exit 
            }         
            
            # Deleting the users
            Write-Host "Adding new E-Mails to Office 365 Users ..." -ForegroundColor Green    
            foreach ($user in $tblUsers) 
            {             
                $sUPNPart=$user.UserPrincipalName.Split("@")[0]            
                $sNewEMailToAdd=$sUPNPart + $sNewDomain
                 "Adding new E-Mail $sNewEMailToAdd to User " + $user.UserPrincipalName.ToString()  	
                Set-Mailbox -Identity $user.UserPrincipalName -EmailAddresses @{add=$sNewEMailToAdd}            
            } 
    
            Write-Host "-----------------------------------------------------------"  -ForegroundColor Green
            Write-Host "All the e-mails have been added. The processs is completed." -ForegroundColor Green
            Write-Host "-----------------------------------------------------------"  -ForegroundColor Green
        }
        catch [System.Exception]
        {
            Write-Host -ForegroundColor Red $_.Exception.ToString()   
        } 
    }
    
    #Connection to Office 365
    $sUserName="<O365_Admin>"
    $sMessage="Introduce your Office 365 Credentials"
    #Connection to Office 365
    
    
    $O365cred = Get-Credential -UserName $sUserName -Message $sMessage
    $PSSession = New-PSSession -ConfigurationName Microsoft.Exchange -ConnectionUri https://outlook.office365.com/powershell-liveid/ -Credential $O365cred -Authentication Basic -AllowRedirection
    Import-PSSession $PSSession
    
    $ScriptDir = Split-Path -parent $MyInvocation.MyCommand.Path
    #$sInputFile=$ScriptDir+ "\O365UsersToUpdate.csv"
    
    $sNewDomain="@<YourDomain>.onmicrosoft.com"
    
    Add-NewEMailAddressToUsers -sInputFile $sInputFile -sNewDomain $sNewDomain
    

    Eventos: Disponible la grabación del Ask The Experts sobre desarrollo para Office 365!

    Como continuación del Global Office 365 Developer Bootcamp del 4 de noviembre, el pasado 29 de noviembre realizamos un Ask The Experts sobre desarrollo para Office 365 en el que tuvimos la oportunidad de debatir durante 1,5 horas sobre varios aspectos sobre desarrollo para Office 365 en general, y para SharePoint Online en particular sin olvidarnos de la importancia de Azure Smile. La sesión estuvo muy entretenida y aprovechando que Skype for Business nos permite grabar este tipo de reuniones por lo que aquellos que no pudisteis asistir al Ask The Experts podéis visualizarla desde el canal de YouTube de CompartiMOSS:

    Office 365: How to set a defaul password to several Office 365 users in bulk!

    This time I’m sharing a new PowerShell script that allows to set a default passowrd to several Office 365 users in bulk. The users to be updated are read from a CSV file. You can download the PowerShell Script from the following URL: How to set a default password to several Office 365 users in bulk

    ############################################################################################################################################
    # Script that allows to set a default password to serveral users in your Office 365 tenants. The users are read from a CSV file. 
    # The csv file only needs a column that stores the account principal name for each user to be added to Office 365.
    # Required Parameters:
    #  -> $sUserName: User Name to connect to the SharePoint Admin Center.
    #  -> $sDefaultPassword: Common password to be set for all the users in the CSV file.
    #  -> $sMessage: Message to show in the user credentials prompt.
    #  -> $sInputFile: Message to show in the user credentials prompt.
    ############################################################################################################################################
    
    $host.Runspace.ThreadOptions = "ReuseThread"
    
    #Definition of the function that allows to add to Office 365 the list of users contained in the CSV file.
    function Set-PasswordToUsers
    {
        param ($sInputFile,$sDefaultPassword)
        try
        {   
            # Reading the Users CSV file
            $bFileExists = (Test-Path $sInputFile -PathType Leaf) 
            if ($bFileExists) { 
                "Loading $sInputFile for processing..." 
                $tblUsers = Import-CSV $sInputFile            
            } else { 
                Write-Host "$sInputFile file not found. Stopping the import process!" -ForegroundColor Red
                exit 
            }         
            
            # Deleting the users
            Write-Host "Changing password for Office 365 user..." -ForegroundColor Green    
            foreach ($user in $tblUsers) 
            {   
                Write-Host "Changing password for user " $user.UserPrincipalName.ToString()  	          
                Set-MsolUserPassword -UserPrincipalName $user.UserPrincipalName -NewPassword $sDefaultPassword -ForceChangePassword $true           
            } 
    
            Write-Host "-----------------------------------------------------------"  -ForegroundColor Green
            Write-Host "All passwords have been updated. The processs is completed." -ForegroundColor Green
            Write-Host "-----------------------------------------------------------"  -ForegroundColor Green
        }
        catch [System.Exception]
        {
            Write-Host -ForegroundColor Red $_.Exception.ToString()   
        } 
    }
    
    #Connection to Office 365
    $sUserName="<O365_Admin>
    $sMessage="Introduce your Office 365 Credentials"
    #Connection to Office 365
    $O365Cred = Get-Credential -UserName $sUserName -Message $sMessage
    
    Connect-MsolService -Credential $O365Cred
    
    $ScriptDir = Split-Path -parent $MyInvocation.MyCommand.Path
    $sInputFile=$ScriptDir+ "\O365UsersToUpdate.csv"
    
    $sDefaultPassword="<Default_Password>"
    
    Set-PasswordToUsers -sInputFile $sInputFile -sDefaultPassword $sDefaultPassword