Programming
Reader small image

You're reading from  Microsoft Office 365 Administration Cookbook

Product typeBook
Published inSep 2020
PublisherPackt
ISBN-139781838551230
Edition1st Edition
Tools
Office 365
Concepts
Business Process Management
Right arrow
Author (1)
Nate Chamberlain
Nate Chamberlain
author image
Nate Chamberlain

Nate Chamberlain is a technical content creator, solution architect, and trainer, recognized as a 5-year Microsoft MVP. With a background in business analysis and systems administration, Nate has authored seven books and manages his blog. He holds an array of certifications, including M365 Enterprise Administrator Expert and Microsoft Power Platform App Maker Associate, and is a frequent speaker at user groups and conferences.
Read more about Nate Chamberlain

Right arrow

Chapter 11: Understanding the Microsoft 365 Security & Compliance Center

This chapter focuses on the many different features and functions of the Microsoft 365 Security & Compliance Center as it relates to Office 365 apps and services. From audit log activities and working with Secure Score to configuring advanced threat protection features, we'll cover the essentials that every admin should know.

This chapter includes the following recipes:

  • Viewing a report on all users who have accessed a specific SharePoint file
  • Using Content Search to find content containing certain keywords
  • Creating a retention policy based on the discovery of certain keywords
  • Accessing the standard Microsoft BAA
  • Accessing and reviewing an organization's secure score
  • Complying with Secure Score security configuration recommendations
  • Assigning permissions for non-IT users to the Security & Compliance admin center
  • Using Communication Compliance to identify...

Technical requirements

In this chapter, it would be best to be registered as a Global Admin. If you are not, then many recipes in this chapter will still be accessible to you as a Security Admin. Check each recipe's Getting ready section for its specific requirements.

Viewing a report on all users who have accessed a specific SharePoint file

Sometimes, you will need to know who has accessed specific files and when, whether to verify receipt, investigate a potential data-loss risk, or for another reason. This can be accomplished via the Microsoft 365 Security & Compliance Center. In this recipe, we'll go through the steps of pulling the access report for a file named FirstDraft.docx.

Getting ready

You should be a global administrator to complete this recipe. You will also need audit logging turned on for your organization. You can do this from the Office 365 Security & Compliance Center (https://protection.office.com) by clicking Turn on auditing on the Audit log search page in the Security & Compliance Center. If you don't have that option, then auditing has already been turned on.

How to do it…

  1. Go to the Office 365 Security & Compliance Center at https://protection.office.com.
  2. Click Search ...

Using Content Search to find content containing certain keywords

It can be difficult to track where people copy and save content, or where they're discussing critically sensitive things, such as confidential projects. In this recipe, we'll perform a content search to look through our entire tenant for content containing DocID-7846. This would be helpful in ensuring the compliance and confidentiality of specific content.

Getting ready

You should be a global administrator to complete this recipe.

How to do it…

  1. Go to the Office 365 Security & Compliance Center at https://protection.office.com.
  2. Click Search | Content search from the left navigation menu:

    Figure 11.5 – Content search link on the left-hand navigation menu of the Office 365 Security & Compliance Center

  3. Click New search.
  4. Enter the keyword(s) to search for. In our example, we're entering DocID-7846:

    Figure 11.6 – Keyword search terms entry

  5. Select All...

Creating a retention policy based on the discovery of certain keywords

Retention policies can be created that are automatically applied to items containing specific keywords when found in the search index. In this recipe, we'll create a retention policy that applies to items that are found containing the word Contoso.

Getting ready

You should be a global administrator to complete this recipe.

How to do it…

  1. Go to the Office 365 Security & Compliance Center at https://protection.office.com.
  2. Click Information governance | Retention from the left navigation menu:

    Figure 11.8 – Retention link in the left-hand navigation menu of the Office 365 Security & Compliance Center

  3. Click Create.
  4. Name and describe your retention policy:

    Figure 11.9 – Name and description fields for the new policy

  5. Under Need more options?, select Use advanced retention settings and leave Detect content that contains specific words or phrases selected...

Accessing the standard Microsoft BAA

Your subscription agreement included Microsoft's HIPAA Business Associate Agreement (BAA), but finding it later for your compliance and audit needs can be tricky. In this recipe, you'll locate the BAA.

Getting ready

Most users can access the BAA. There are no prerequisites.

How to do it…

  1. Go to https://portal.office.com/commerce/supplements.aspx.
  2. Click Online Services Terms:

    Figure 11.13 – Online Service Terms in the blurb about supplements

  3. You can find a lot of valuable documentation and information on this screen. Spend some time checking out all that's available. Then scroll down to Hot topics and select HIPAA-BAA:

    Figure 11.14 – HIPAA-BAA link under Hot topics at the bottom of the page

  4. Scroll down to find the available BAA documents. Note the dates for each one:

Figure 11.15 – Available HIPAA documents listed in a table

Before you complete step...

Accessing and reviewing an organization's secure score

Your secure score gives you an idea of how well protected your organization is based on your administrative setting configurations, policies, and activities. In this recipe, you'll learn how to find and analyze your organization's secure score.

Getting ready

You should be a global, security, Exchange, SharePoint, or account administrator to access Secure Score.

How to do it…

  1. Go directly to your secure score overview at https://securescore.microsoft.com/. You can also go to the Microsoft 365 Security Center (https://security.microsoft.com/) and click Secure Score from the left navigation menu.
  2. Check your secure score breakdown in the leftmost column of the Overview tab. You'll notice the categories for each of the following making up your score:

    --Identity: Accounts and roles in Azure AD

    --Data: Microsoft Information Protection

    --Device: Microsoft Defender Advanced Threat Protection ...

Complying with Secure Score security configuration recommendations

In the previous recipe, you accessed and toured Secure Score. In this recipe, we'll dive deeper into improvement actions and resolve one, complying with a recommendation that will boost our secure score.

Getting ready

You should be a global, security, Exchange, SharePoint, or account administrator to access Secure Score.

How to do it…

  1. Go directly to your Secure Score overview at https://securescore.microsoft.com/. You can also go to the Microsoft 365 Security Center (https://security.microsoft.com/) and click Secure Score in the left navigation menu.
  2. Click Improvement actions:

    Figure 11.21 – Improvement actions link on the Microsoft Secure Score page

  3. Choose an improvement action to complete. For this recipe, we'll click Enable self-service password reset:

    Figure 11.22 – An improvement action being selected

  4. See the recipe titled Enabling self-service password...

Assigning permissions for non-IT users to the Security & Compliance admin center

Sometimes, you'll want additional eyes on the Security & Compliance admin center, but they won't usually belong to a global admin. In this recipe, we'll set a non-IT user's role to Security Reader so that they can access, but not administer, the Office 365 Security & Compliance admin center.

Getting ready

You should be a global administrator to complete this recipe (and whenever assigning admin roles).

How to do it…

  1. Go to the Office 365 Security & Compliance Center at https://protection.office.com.
  2. Select Permissions from the left navigation menu:

    Figure 11.25 – Permissions link in the left-hand navigation menu of the Office 365 Security & Compliance Center

  3. Select the role that you're assigning, then click Edit in the Members section:

    Figure 11.26 – Edit button in the Members section for the selected security role

    4. ...

Using Communication Compliance to identify potential policy violations in messages

With so many different avenues for communication in Office 365, it can be difficult to monitor inappropriate messages or those that could potentially be in violation of organization policies. Communication Compliance allows you to monitor, capture, and alert assigned reviewers of messages in email, Teams, Yammer, and more for predefined or specified risky content.

In this recipe, we'll add the predefined policy from Microsoft that monitors messages for offensive language.

Getting ready

You should be assigned the Supervisory Review Administrator, Case Management, and Review roles from the Office 365 Security & Compliance admin center to access and utilize the Communication Compliance solution. You can do this by creating a new role group from the Permissions pane of the Office 365 Security & Compliance admin center with these three roles included.

How to do it…

    ...
lock icon
The rest of the chapter is locked
Previous Chapter
Chapter 12 of 16
Next Chapter
You have been reading a chapter from
Microsoft Office 365 Administration Cookbook
Published in: Sep 2020Publisher: PacktISBN-13: 9781838551230
© 2020 Packt Publishing Limited All Rights Reserved
Register for a free Packt account to unlock a world of extra content!
A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.
Sign up now
undefined
Unlock this book and the full library FREE for 7 days
Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of
Start free trial
Renews at $15.99/month. Cancel anytime

Author (1)

author image
Nate Chamberlain

Nate Chamberlain is a technical content creator, solution architect, and trainer, recognized as a 5-year Microsoft MVP. With a background in business analysis and systems administration, Nate has authored seven books and manages his blog. He holds an array of certifications, including M365 Enterprise Administrator Expert and Microsoft Power Platform App Maker Associate, and is a frequent speaker at user groups and conferences.
Read more about Nate Chamberlain

Other recommended products

Related to this chapter

Managing Microsoft Teams: MS-700 Exam Guide

Managing Microsoft Teams: MS-700 Exam Guide

Managing Microsoft Teams: MS-700 Exam Guide offers complete, up-to-date coverage of the exam course content to help you pass with confidence. With this book, you will learn the steps of how to plan for a Microsoft Teams deployment within a business environment and manage Teams administrative functions on a day-to-day basis.

BookFeb 2021452 pages
Deploying Microsoft 365 Teamwork: Exam MS-300 Guide

Deploying Microsoft 365 Teamwork: Exam MS-300 Guide

This book offers complete, up-to-date coverage of the MS-300, written in a clear, succinct way with self-assessment questions, exam tips and mock exams with detailed answer explanations, this book covers configuration of SharePoint Online, OneDrive for Business, and Microsoft Teams and eventually earn the Microsoft certification.

BookJan 2020632 pages
PowerShell for Office 365

PowerShell for Office 365

Office 365 is a powerful tool to perform common administrative tasks. But there is more that it can do. PowerShell for Office365 helps in automation of repetitive and complex administrative tasks, which can greatly increase the speed and efficiency of your business. This book will walk you through all the aspects of PowerShell and will enable you to get a greater control and extract more from Office 365.

BookJul 2017222 pages
Microsoft 365 Security Administration: MS-500 Exam Guide

Microsoft 365 Security Administration: MS-500 Exam Guide

MS-500: Microsoft 365 Security Administration offers complete, up-to-date coverage of the MS-500 exam so you can take it with confidence, fully equipped to pass the first time.

BookJun 2020672 pages
Mastering Office 365 Administration

Mastering Office 365 Administration

Office 365 is Microsoft's cloud solution to create IT services for enterprises and academics which is way cheaper than an in house IT infrastructure. This book will teach you to implement enterprise-level services, no matter the size of your business.

BookMay 2018532 pages
Microsoft 365 Mobility and Security - Exam Guide MS-101

Microsoft 365 Mobility and Security - Exam Guide MS-101

The MS-101 exam is part of the Microsoft 365 Certified: Enterprise Administrator Expert certification path in which users learn to evaluate, plan, migrate, deploy, and manage Microsoft 365 services. This book offers complete, up-to-date coverage of the MS-101 exam so you can take them with confidence, fully equipped to pass the first time.

BookNov 2019312 pages
Office 365 Essentials

Office 365 Essentials

Office 365, one of the most powerful subscription applications, is renowned for its cost-effectiveness and has a powerful range of cost-effective services. This one-stop solution will help make your organization reliable, scalable, and fast. This book will help you realize this dream easily and effectively.

BookMay 2018394 pages
Microsoft 365 Certified Fundamentals MS-900 Exam Guide

Microsoft 365 Certified Fundamentals MS-900 Exam Guide

Microsoft? ?365? ?Certified? ?Fundamentals certification demonstrates your knowledge of cloud services in general and the SaaS cloud model. This MS-900 exam guide, filled with practice questions, exam patterns, and mock tests, will help help you pass the exam on the first go and get to grips with adopting core Microsoft 365 services and cloud concepts.

BookFeb 2020342 pages
Hands-On Microsoft Teams

Hands-On Microsoft Teams

Microsoft Teams is your entry point to the Modern Workplace. This beginner's guide is complete with hands-on tutorials and examples to teach you how to use or implement Microsoft Teams in your organization for unified communication. The book helps you to be a Microsoft Teams advocate and to improve the way people collaborate in your organization.

BookApr 2020324 pages
Microsoft 365 and SharePoint Online Cookbook

Microsoft 365 and SharePoint Online Cookbook

With a large collection of recipes to guide you through the Microsoft Office 365 integrated suite, this cookbook provides tools for streamlining your organizational tasks in content management. Starting with an overview of the MS 365 ecosystem, it covers the Power Platform using a step-by-step approach to make the most of the services available to you.

BookJun 2020810 pages
Office 365 User Guide

Office 365 User Guide

Office 365 is one of the most secure and easy-to-use apps for email exchange. To help you understand the details about office365, this book will explain you different settings of Office 365, along with its extensions such as SFB, OneDrive, Sharepoint and Team.

BookApr 2019462 pages
Deploying SharePoint Server Hybrid: Exam MS-301 Guide

Deploying SharePoint Server Hybrid: Exam MS-301 Guide

The Microsoft MS-301 exam demonstrates that administrators have a firm grasp of the knowledge and skills necessary to deploy, configure, and manage SharePoint. This book will focus on the material needed to pass the MS-301 exam and understand SharePoint deployment, though not a substitute for hands-on learning and exploring the product’s features.

BookJul 2020540 pages

Personalised recommendations for you

Based on your interests and search pattern

C++ Programming for Linux Systems

C++ Programming for Linux Systems

This book covers the essential system programming tools and helps you explore the features of C++20. It emphasizes important details to maintain code quality and tackle everyday challenges of developing software for high performance, optimization, and more.

BookSep 2023288 pages
Expert C++

Expert C++

Discover advanced programming techniques, the latest features of C++17 and C++20, and best practices for memory management, debugging, testing, and large-scale application design with Expert C++. Ideal for experienced developers advancing to proficient programmers and building professional-grade C++ applications.

BookAug 2023604 pages
iOS 17 Programming for Beginners

iOS 17 Programming for Beginners

iOS 17 Programming for Beginners, Eighth Edition is your comprehensive guide to learning the art of iOS app development. Whether you dream of creating the next chart-topping app or simply want to enhance your programming skills, this book is your trusted companion on this exciting journey.

BookOct 2023604 pages4
Developer Career Masterplan

Developer Career Masterplan

Written by industry experts that have spent the last 20+ years helping developers grow their career path towards senior developer positions and beyond. This book provides a comprehensive guide, sharing examples and stories from their global careers. By the end, you’ll have the knowledge to create a clear career progression plan as a technical professional.

BookSep 2023310 pages
Refactoring with C#

Refactoring with C#

In Refactoring with C#, you’ll explore the process of safely refactoring modern .NET code using Visual Studio features, advanced unit tests, AI assistance, and custom Roslyn analyzers.

BookNov 2023434 pages
Python Real-World Projects

Python Real-World Projects

Amplify your developer journey by curating a dynamic project portfolio that outshines traditional resumes. Delve into the Python realm through immersive projects, mastering core concepts while constructing comprehensive modules and applications. From data acquisition prowess to impactful data visualization, Python Real-World Projects arms you with essential skills to beat the competition.

BookSep 2023478 pages5
The MVVM Pattern in .NET MAUI

The MVVM Pattern in .NET MAUI

The MVVM Pattern in .NET MAUI enables developers to master MVVM principles and effectively apply them to .NET MAUI. This book uses real-life examples and covers complex problems to help you successfully apply MVVM with .NET MAUI to confidently develop robust and high-performing cross-platform apps.

BookNov 2023386 pages
Extending Microsoft Business Central with Power Platform

Extending Microsoft Business Central with Power Platform

Extending Business Central with the Power Platform is a step-by-step guide for Business Central professionals to create solutions that automate business processes, explain complex workflow approvals, and integrate with hundreds of other systems, without traditional development. It’ll guide you in customizing Business Central with Power Platform.

BookAug 2023458 pages5
Extending Microsoft Business Central with Power Platform

Extending Microsoft Business Central with Power Platform

Extending Business Central with the Power Platform is a step-by-step guide for Business Central professionals to create solutions that automate business processes, explain complex workflow approvals, and integrate with hundreds of other systems, without traditional development. It’ll guide you in customizing Business Central with Power Platform.

BookAug 2023458 pages5
Quantum Computing Algorithms

Quantum Computing Algorithms

The book emphasizes intuitive ideas behind quantum algorithms in ways that other books don’t cover, striking a careful balance between no math and too much math. To get the most from this book, you should be comfortable with basic algebra and writing simple computer code. No prior understanding of quantum physics is needed to get started.

BookSep 2023342 pages
Python – Complete Python, Django, Data Science and ML Guide

Python – Complete Python, Django, Data Science and ML Guide

Unlock Python's full potential with this 50+ hour course! From programming to web and game development, data manipulation, and machine learning, gain the skills required to succeed in various Python-related careers. With practical tasks, hands-on experience, and a strong foundation in Python, you'll be ready to tackle real-world challenges and take advantage of the many opportunities this versatile language offers.

VideoNov 202350 hours 30 minutes5
Python – Complete Python, Django, Data Science and ML Guide

Python – Complete Python, Django, Data Science and ML Guide

Unlock Python's full potential with this 50+ hour course! From programming to web and game development, data manipulation, and machine learning, gain the skills required to succeed in various Python-related careers. With practical tasks, hands-on experience, and a strong foundation in Python, you'll be ready to tackle real-world challenges and take advantage of the many opportunities this versatile language offers.

VideoNov 202350 hours 30 minutes5