Powershell Form – Send Encrypted PDF Form

Posted on March 16, 2019 by Idit Bnaya

Due to recent changes in global privacy and data protection laws ( GDPR & Israeli Privacy Law)

I had to find a quick and easy  way to send encrypted PDF files by email.
So, after 6 hours of searching and writing i finally managed to create a workaround

At first I found this Password Protect PDF document script:  https://efcomputer.net.au/blog/password-protect-pdf-document/ 
and i used a part of the code that responsible for encrypting the file (Thanks:) )

So the following PowerShell script will Encrypt PDF files and send them by Email.

There are two folders, one with an English based form and the other with an Hebrew based form.

It looks like this

English Form:

Hebrew Form:

Have fun 🙂

 

 

 

Posted in Cyber, PowerShell, Profile, Scripts, Security | Tagged , , , | Leave a comment

Fix – Unable to remove this domain” error when you try to remove a domain from Office 365”

Posted on January 5, 2018 by Idit Bnaya

לא פעם נתקלתי במצב בו יש צורך להסיר Domain מ- Tenant מסויים ב- Office365 , למשל כאשר ה- Domain שוייך ל- Tenant ויש צורך לשייך אותו ל-Tenant אחר.

*מאמר זה מדבר על דומיין שהוא לא Federated

כאשר מנסים להסיר את הדומיין על ידי Powershell  מתקבלת ההודעה הבאה:

Unable to remove this domain” error when you try to remove a domain from Office 365

לא ניתן להסיר את ה- Domain אם קיימים אובייקטים ב- Office365 עם הסיומת של ה-Domain

  • משתמשים
  • קבוצות,
  • כתובת מייל
  • Skype Sip Address

ניתן להתחבר לפורטל ולבצע את ההסרה על ידי עריכת המשתמשים וכו… כמתואר –  פה

במקרה שלי  רציתי להסיר את כל  המשתמשים המשוייכים לדומיין  על ידי סקריפט.

:מחיקת כלל המשתמשים

לפני שמסירים את הדומיין יש לבדוק שקיים לפחות משתמש Global admin אחד עם סיומת Onmicrosoft.com במידה ולא קיים יש לייצר אחד כזה

התחבר ל- Office365  – Microsoft Azure Active Directory

פתח PowerShell עם Azure Active Directory Module for Windows PowerShell

Connect-MsolService

(אני אוהבת לעבוד עם ISE)

הכנס את המשתמש עם הרשאות ה- Global Admin עם דומיין Onmicrosoft.com

clip_image001

לפני שנבצע את המחיקה נעשה בדיקה שהפקודה אכן מחזירה רק את המשתמשים הנמצאים בדומיין הרלוונטי

:הרץ

(get-MsolUser | Where {$_.userprincipalname -like '*@Domain.co.il'})

image[6]

* יש לשנות את – Domain.co.il לשם הדומיין אותו מעוניינים להסיר.

לאחר שקיבלנו רשימה ובדקנו שהיא אכן מכילה את המשתמשים  הנמצאים רק בדומיין אותו אנחנו מעוניינים להסיר ניתן להמשיך ולהסיר את כלל המשתמשים.

הפקודה הבאה מסירה את כלל המשתמשים בענן שה- User Principal name שלהם זהה לשם הדומיין אותו מעוניינים להסיר.

1
2
3
4
$DomainName = "*@[YOUR DOMAIN FQDN]"
(get-MsolUser | Where {$_.userprincipalname -like $DomainName})|
 ForEach-Object { Remove-MsolUser -ObjectId $_.objectid –force
 write-host $_.userprincipalname 'was removed'}

*הכנס את שם הדומיין במקום: [YOUR DOMAIN FQDN]

🙂   בהצלחה

Posted in Office365, Office365 -HE, PowerShell | Tagged , | Leave a comment

Microsoft Teams – Useful links

Posted on January 4, 2018 by Idit Bnaya

Teams Logo

Since its launch in March 2017, Microsoft Teams has evolved to become the ultimate hub for teamwork and has grown significantly in capabilities.
Teams delivers chat-based collaboration, meetings, calling, and enterprise voice features as we’re bringing all the Skype for Business Online capabilities into Teams.

This site covers basically all you need to know about Microsoft Teams – practical guidance,trainings,videos and more…

Teams for Education (which replaces the Microsoft Classroom app that was in public preview the “one stop shop” for students and educators.

A post by “Tom Morgan” which covers thee newest features from Microsoft Roadmap

A very friendly step by step guide written by “Matt Soseman

How to build great integrations with Microsoft Teams with bots, connectors, and dedicated tabs using a simple set of APIs

This video covers some of the most useful teams capabilities –  Apps, Connectors, Extensions and Bots

An overview of security and compliance in Microsoft Teams.

One of many good posts by Matt Soseman about PowerShell support for Microsoft Teams

Posted in Office365, Teams, Teams | Tagged | Leave a comment

Microsoft Teams eDiscovery

Posted on December 28, 2017 by Idit Bnaya

eDiscovery הוא תהליך של זיהוי והעברת מידע אלקטרוני שנועד בין השאר לשמש ראיה במקרים משפטיים. 

הוא נמצא ב- Security & Compliance center של Office 365

ניתן להשתמש ב- eDiscovery ב- Office 365 על מנת לחפש תוכן במקומות הבאים:

  1. Exchange Online Mailboxes
  2. Microsoft Teams
  3. SharePoint Online
  4. Skype For Business

כאשר נוצר Team חדש ב- Microsoft Teams, הוא יוצר באופן אוטומטי Office 365 Group וכיוון ש Office 365 Group קיימות בתוך Office 365, הן עשויות להיות כפופות למדיניות אבטחה ותאימות ב- Office 365.

על כן תוכן שפורסם ב- Microsoft Teams, כפוף למדיניות זו ומאפשר לארגונים לבצע חיפושים , eDiscovery ו- Hold לתוכן.

Hold – מאפשר לנו לשים על Hold מידע הנמצא ב- Teams

הטבלה הבאה מתארת את אופן השמירה של מידע בכל רכיב:

image

 
Search – מאפשר לנו לבצע חיפוש של המידע הנמצא ב-Teams
 
במאמר זה אדגים כיצד לבצע eDiscovery case על תוכן בתוך Microsoft Teams ועליו לבצע Hold ו – Search
 

יצירת eDiscovery

1. על מנת שמשתמש יוכל לבצע כל פעולה הקשורה ל eDiscovery יש לשייך אותו לקבוצת ההרשאות המתאימה ב- Office365.

קיימות 2 קבוצות:

  • eDiscovery Reviewer – יכול רק לראות ולפתוח את רשימת ה- Cases בדף ה- eDiscoevry שנמצא ב- Security & Compliance center
  • eDiscovery Manager – יכול ליצור Case חדש, להוסיף ולהסיר משתמשים מה-case, לשים Content location ב- Hold, ליצור ולערוך Content search הקשורים ל- Case ולבצע ייצוא ל- Content search

על מנת לשייך לקבוצה יש לגשת ל-Permissions תחת Security & Compliance center  ולבחור בהרשאות הרלוונטיות

image

2. יצירת Case חדש:

  •  Security & Compliance Center >  Search & investigation > eDiscovery > Create a case
  • הכנס שם ו-Description ולחץ על Save

3. הוספת משתמש ל- Case

  • Security & Compliance Center >  Search & investigation > eDiscovery
  • עמוד על ה- Case הרלוונטי, וכשיופיע דף ה- Manage this case, לחץ על Add תחת  Add Mambers בחר במשתמש הרלוונטי

image

יצירת Hold לתוכן

כאמור, ניתן להשתמש ב- eDiscovery לבצע Hold ובכך לשמור על התוכן הקשור ל- case

1.   Security & Compliance Center >  Search & investigation > eDiscovery

2. לחץ על Open ליד ה-Case הרלוונטי מהרשימה

image

3 בעמוד ה- Hold לחץ על New (+)

image

4. תן ל- Hold  שם חד ערכי לארגון

image

5. בחר את מיקום התוכן אותו תרצה לשים ב- Hold , זה יכול להיות תיבת דואר, אתר SP ו Public folders

6. לחץ על Next

7. עכשיו מגיע החלק החשוב – יצירת שאילתה ל-  Hold

ניתן לחפש לפי מילים ו\או לפי תנאים מרשימה

image

Conditions

image

8. לחץ על Finish 

image

יצירת חיפוש לתוכן (Content Search)

לאחר שיצרנו eDsicovery  ניתן לבצע חיפושי תוכן הקשורים ל- Case

*שים לב – חיפושי תוכן הקשורים ל-Case יכולים להתבצע רק על ידי מי שנמצא בקבוצת eDiscovery Manager

1.  Security & Compliance Center > Search & investigation > eDiscovery > Open > Search

לחץ על +

 image

2. תן שם לחיפוש

image

3. בחר את המיקום בו נמצא התוכן שאותו תרצה לחפש:

image

4. לחץ על Next על מנת לבחור keywords ותנאים:

לאחר שה-Search רץ בהצלחה, ניתן לייצא את התוצאות לדוח.

לסיכום – eDiscovery הוא עוד כלי נהדר של מיקרוסופט העוזר לנו לשמור על אבטחת המידע הארגוני בעזרת Content Search ו- Hold. 

בהצלחה Smile

Related posts:

What is Microsoft Teams

Teams & Flow– Send the team RSS Feed

Set up Microsoft Teams in your Office 365 organization

Teams Powershell – Create new Team and add users from CSV

Office 365 Teams – Audio Conferencing and Calling Plans

 

Posted in Office365, Teams, Teams | Tagged , , , , | Leave a comment

Set up Microsoft Teams in your Office 365 organization

Posted on December 26, 2017 by Idit Bnaya
By default, Teams is turned on for all organizations.Teams has multiple settings that can be turned on or turned off at the Office 365 tenant level.  As an administrator for your organization, you can assign user licenses to control individual access to Teams, and you can allow or block what content sources can be used in Teams.

*Note – After Teams is disabled, access from the Teams client is blocked, but data available through other clients and services is still available, such as files via SharePoint and OneDrive. All data remains in place unless the teams are explicitly deleted.

Microsoft Teams features in your Office 365 organization Overview

Enable/Disable Teams for the your entire organization

Sign in to the Office 365 Admin center with an account that has Global Administrator privileges.

  1. Go to Settings > Services & add-ins.

    Screenshot of the Settings section in the Office 365 admin center with Services & add-ins selected.

  2. On the Services & add-ins page, click Microsoft Teams.

    Screenshot of the Services & add-ins page with Microsoft Teams selected.

  3. To turn on Teams for the organization use the license picker and select each license then set the toggle to On and then click Save.

    Screenshot of the Microsoft Teams settings page showing the toggle set to On to enable Microsoft Teams.

Features  Overview:

General

The General section lets you configure the following settings for your organization:

Screenshot of the General section in Tenant-wide settings.

  • Show organizational chart in personal profile: When this setting is enabled, it shows the organizational chart icon in the user’s contact card and when clicked, it displays the detailed organizational chart.

    Screenshot of the organizational chart icon in a user's contact card.

    Screenshot of an organization chart.

  • Use Skype for Business for recipients who don’t have Teams: When this setting is enabled, it allows Teams users to contact other users in the organization that are not enabled for Teams via Skype for Business.

  • Allow T-bot proactive help messages: When this setting is enabled, T-bot will initiate a private chat session with users to guide them in using Teams.

    Screenshot of T-Bot section in Teams interface.

Email integration

Turn on this feature so users can send email to a channel in Teams, using the channel email address. Users can do this for any channel belonging to a team they own. Users can also send emails to any channel in a team that has adding connectors enabled for team members. And, even if a user doesn’t have permission to create a channel email address, if someone who does have permission creates that address, the user can access it from the <more icon> menu for that channel.

The Email integration section lets you configure the following settings for your organization:

Screenshot of the Email integration section in Tenant-wide settings.

  • Allow users to send emails to channels: When enabled, mail hooks are enabled, and users can post messages to a channel by sending an email to the email address of Teams channel.

To find the channel’s e-mail address, click More options next to the channel name and then select Get email address.

  • Restricted Senders List: Senders domains can be further restricted to ensure that only allowed SMTP domains can send emails to the Teams channels.

Apps

Apps in Teams are a terrific way to integrate the tools and services your team cares about, right into any channel or chat.

The Apps section lets you configure the following settings for your organization:

Screenshot of the Apps section.

  • Allow external apps in Microsoft Teams: When enabled, users can add tabs and bots that are available to the Office 365 tenant. Screenshot of the Allow external apps control in the Apps section.

  • Allow sideloading of external apps: When enabled, users can install and enable custom bots and tabs.

Custom cloud storage

Cloud storage options in Teams currently include Box, Dropbox, Google Drive, and ShareFile. Users can upload and share files from cloud storage services in Teams channels and chats. Click or tap the toggle switch next to the cloud storage providers that your organization wants to use.

Screenshot of the Custom cloud storage section.

User settings by license

In User settings by license, you can turn on or turn off options in Teams and channels, Calls and meetings, and Messaging.

Teams and channels

As an admin, you can manage team owners and members by using the Groups dashboard in the Office 365 admin center portal. In the Teams and channels section, click the link for Use the Groups dashboard in the Office 365 admin center to manage teams.

You can control which users in your organization can create teams in Teams. .

By default, every user can create a team or group. Choose Teams on the left side in the Teams client (desktop client or web app), then choose Create and join team at the bottom of the client, below the team list.

The default maximum number of teams that an Office 365 tenant can have is currently 500,000. A global admin can create an unlimited number of teams. A user can create 250 teams. A team owner can add 2500 members to a team.

Screenshot of the User settings by license section.

Channels are subcategories of teams. Anyone on the team can add a channel and participate in the conversations in a channel. You might create a channel for an activity or for a department. Conversations, files, and wikis are specific to each channel, but all members of the team can see them.

Calls and meetings

The Calls and meetings section lets you configure the following settings for your organization:

Screenshot of the Calls and meetings section.

  • Allow scheduling for private meetings: When enabled, users can schedule private meetings that are not listed in any channel.

  • Allow ad-hoc channel meetup:

  • Allow scheduling for channel meetings: When enabled, users can schedule a meeting for a channel that all channel members can easily join with a single click.

  • Allow videos in meetings: Specifies whether the use of video is allowed within the meetings.

  • Allow screen sharing in meetings: Specifies whether screen sharing is allowed within the meetings.

  • Allow private calling: When enabled, users can make private calls.

The maximum number of people in a meeting is 80. There can be 20 members in a private chat, including the user who created the chat.

Messaging

The Messaging section lets you configure the following settings for your organization:

Screenshot of the Messaging section.

  • Enable Giphy so users can add gifs to conversations: When enabled, users can use animated pictures within the conversations.

    • Content Rating: When animated images are turned on, content rating can be applied to restrict the type of animated images that can be displayed in conversations. Available content rating options are:

      • No restriction

      • Moderate (the default value)

      • Strict

  • Enable memes that users can edit and add to conversations: When enabled, users can use internet memes to make humorous posts.

  • Enable stickers that users can edit and add to conversations: When enabled, users can post images with editable text to get channel members attention.

  • Allow owners to delete all messages: When enabled, channel owners can remove all messages in a channel.

  • Allow users to edit their own messages: When enabled, users can edit their own messages.

  • Allow users to delete their own messages: When enabled, users can delete their own messages.

  • Allow users to chat privately: When enabled, users can engage in private chats that are visible only to the people in the chat, instead of everyone on the team.

Posted in Office365, Teams, Teams | Tagged , , | Leave a comment

What is Microsoft Teams

Posted on December 26, 2017 by Idit Bnaya

 

Overview:

Microsoft Teams is a chat-based collaboration tool that provides global, remote, and dispersed teams with the ability to work together and share information via a common space.

Teams   provides a true chat-based hub for teamwork and give customers the opportunity to create a more open, fluid, and digital environment.

A team is designed to bring together a group of people who work closely to get things done. Teams can be dynamic for project-based work (for example, launching a product or creating a digital war room). Or, teams can be ongoing, to reflect the internal structure of your organization.

A team created in Teams will create an Office 365 Group, a SharePoint Online site  and an Exchange Online group mailbox.

overview_of_security_and_compliance_in_microsoft_teams_image1

Teams also provides a calling and meetings experience that is built on the next generation cloud-based infrastructure that is also used by Skype and Skype for Business.

common use cases for each application in Office 365.

Microsoft Teams icon.

  • Leveraged by users and teams who are looking to collaborate in real-time with the same group of people.
  • Helps teams looking to iterate quickly on a project while sharing files and collaborating on shared deliverables.
  • Allows Users looking to connect a wide range of tools into their workspace (such as Planner, Power BI, GitHub, etc.).

Microsoft Outlook icon.

  • Leveraged by users who prefer to collaborate in the familiar environment of email and/or a more formal, structured manner.
  • Provides specific business processes that require email usage to transmit documents and information inside and outside corporate boundaries.
  • Communicates and connects with users who are outside of immediate workgroups or organizations.

Yammer icon.

  • Leveraged to help connect users across the organization to organize around communities of practice and share best practices.
  • Improves cross-functional workflows through an open and transparent feed-based platform
  • Fosters executive-employee engagement with two-way conversations between leadership and the wider employee base
  • Ignites your frontline workforce to share and receive knowledge and expertise

Skype for Business icon.

  • Leveraged for real-time communication and collaboration both internally and externally with customers/partners.
  • Provides meetings with audio, video and content with small or large teams (including Town Halls with up to 10,000 participants).
  • Offers enterprise telephony functionality.

Microsoft SharePoint icon.

  • Leveraged for sites and portals (e.g. company news & announcements, search, and document collaboration).
  • Implements business process automation on document libraries and lists of information by integrating Microsoft Flow and PowerApps.
  • Full-powered SharePoint team site automatically provisioned for every Microsoft Team for file storage, team news, pages, lists and more.

Location of data in Microsoft Teams

 Data in Teams resides in the region based on tenant affinity. Currently, Teams supports the Americas, EMEA, and APAC regions.

* As of November 1, 2017, Teams offers data residency in the United Kingdom for new tenants only. A new tenant is defined as any tenant that hasn’t had a single user from the tenant sign in to Microsoft Teams.

Security and compliance

Microsoft Teams delivering  advanced security and compliance capabilitie such as:File encryption.Auditing and Reporting,Compliance Content Search,eDiscovery,Legal Hold,two-factor authentication, single sign-on through Active Directory, and encryption of data in transit and at rest.

Teams is Tier C-compliant at launch. This includes the following standards: ISO 27001, ISO 27018, SSAE16 SOC 1 and SOC 2, HIPAA, and EU Model Clauses (EUMC)

More Details: Overview of security and compliance in Microsoft Teams

licensing for Microsoft Teams

The following Office 365 subscriptions enable users for Teams:

image

By default, the Teams license is enabled for all users with eligible Office 365 subscriptions.

more details about licensing for Microsoft Teams

Turn Teams on or off for your entire organization

By default, Teams is turned on for all organizations.

As an administrator for your organization, you can assign user licenses to control individual access to Teams, and you can allow or block what content sources can be used in Teams.

Sign in to the Office 365 Admin center with an account that has Global Administrator privileges.

  1. Go to Settings > Services & add-ins.

    Screenshot of the Settings section in the Office 365 admin center with Services & add-ins selected.

  2. On the Services & add-ins page, click Microsoft Teams.

    Screenshot of the Services & add-ins page with Microsoft Teams selected.

  3. To turn on Teams for the organization use the license picker and select each license then set the toggle to On and then click Save.

    Screenshot of the Microsoft Teams settings page showing the toggle set to On to enable Microsoft Teams.

 

More Details about Teams:

Visit the Teams product roadmap to stay on top of what’s coming next in Teams and decide the best time for your organization to move to Teams.

 

Related Posts:

https://www.itblog.co.il/microsoft-teams/

Posted in Office365, Teams, Teams | Tagged , , | Leave a comment

Office 365 Teams – Audio Conferencing and Calling Plans

Posted on December 25, 2017 by Idit Bnaya

Microsoft Teams,  now provides Audio Conferencing and Phone System with Calling Plans capabilities to meet additional business requirements by extending the Teams meeting and calling experience to include external parties connected via the Public Switched Telephone Network (PSTN).

The new calling capabilities providing call history, hold/resume, speed dial, transfer, forwarding, caller ID masking, extension dialing, multi-call handling, simultaneous ringing, voicemail, and text telephone (TTY) support.

Audio Conferencing

Audio Conferencing in Office 365 allows participants to join your Teams meetings from any telephone.

Licensing for Audio Conferencing

Audio Conferencing license is available as part of Office 365 E5 subscription plans, or as an add-on to Office 365 E1 or Office 365 E3 subscription plans.

Note -If you already use Skype for Business Online PSTN Conferencing today, you can immediately take advantage of Audio Conferencing in Teams.

To schedule meeting using outlook you can use the Teams meetings addin for outlook

image

More details: Set up Audio Conferencing for Skype for Business and Microsoft Teams

Calling Plans

Calling Plans is an Office 365 feature powered by Skype for Business

You can now use Teams to make and receive phone calls to or from land lines and mobile phones via PSTN

Note: Before you begin you need to Find out if Calling Plans  is available in your country/region. Country and region availability for Audio Conferencing and Calling Plans

To enable the Calls tab in Teams and allow your users to make and receive PSTN calls,the first thing you need is Phone System (formerly Cloud PBX), which is included with Office 365 E5 and available as an add-on to other Office 365 plans. From there, you can subscribe to a Calling Plan (formerly known as PSTN Calling) for any number of users in your organization. you will need provision users for Phone System and Calling Plans. To learn how to set this up, read Set up Calling Plans.

calling_in_teams

How To enable Teams to begin receiving calls

To enable Teams to begin receiving calls, you’ll need to update Teams interop policy, using a remote Windows PowerShell session with the Skype for Business

*-CsTeamsInteropPolicycmdlets, to redirect calls to Teams. For more information about Teams interop policy, see Microsoft Teams and Skype for Business Interoperability.

How to configure Teams to use the default policy

Grant-CsTeamsInteropPolicy -PolicyName Global -Identity user@domain.com

How to configure Teams to receive PSTN calls

Grant-CsTeamsInteropPolicy -PolicyName tag:DisallowOverrideCallingTeamsChatTeams -Identity user@contoso.com

Note -Users that have been provisioned with Phone System and Calling Plans licenses for use with Skype for Business Online, and configured with the default global Teams interop policy, will have the Calls tab enabled in Teams and can place outbound PSTN calls from Teams without administrators having to take any administrative action.

 

More details: Configuring Calling Plans in Microsoft Teams

 

Related Posts:

Teams & Flow– Send the team RSS Feed

Teams Powershell – Create new Team and add users from CSV

Posted in Office365, Skype for buiness, Teams | Tagged , , , | Leave a comment

Teams & Flow– Send the team RSS Feed

Posted on December 21, 2017 by Idit Bnaya

Microsoft Flow is a cloud-based software tool that allows employees to create and automate workflows across multiple applications and services without the need for developer help.
With Microsoft Flow, you can quickly and easily build custom automations  without needing to write a single line of code.

Microsoft Teams connector for Flow enables you to alert your team of any new activity by posting messages to an existing Teams channel.

Using the Teams connector in Flow, you can create workflows to automate complex processes while keeping your team in the loop about what’s happening.

A very cool and useful connector is “RSS feed news to Teams”
I use it as a KB to my IT team for professional sites like Microsoft TechNet,Blogs and more..

In this post I will demonstrates how to create the flow –  “RSS feed news to Teams”:

1. First you need to connect to FLOW – you can connect from Office365 portal and select from My apps page “Flow”

image_thumb36

Or you can go directly to Flow website –https://flow.microsoft.com and enter your Office365 Credentials

2.  Click on – “Create from Template”

image

2. Type “Teams” in the search pane

image

3. Select “RSS feed news to Teams “

image

4. There are two connection in this flow , RSS ans Teams , In my case it connects automatically with my Office365 credentials to both, Once connected, Press on continue image

5. Type the following (this is the default settings you can change it according to your needs)

I created a team for “Teams updates” and the RSS feed is for the Microsoft Teams blog  – When a new feed item appears it will notify my team about it.

RSS feed URL  – Add The RSS URL

Team id – Choose a team from the list

Chanel ID – General

Message – Write the message according to your needs.

image

6. Click on Save flow

7. If you finished you can click on “Done

image

Once done the new flow will show up in “My flows” from there you can edit,delete,export and see analytics about the flow. 

image

 

Another way  to add RSS to Teams is by using RSS connector as shown in this blog – https://community.spiceworks.com/how_to/139770-how-to-set-up-an-rss-feed-in-microsoft-teams

 

Good Luck Smile

Posted in Flow, Office365, Teams, Teams | Tagged , | Leave a comment

Teams Powershell – Create new Team and add users from CSV

Posted on December 19, 2017 by Idit Bnaya

לאחרונה מיקרוסופט הוציאה תמיכה  של פקודות המותאמות   ל-Teams דבר המאפשר  לאנשי ה-IT

לבצע פעולות יומיומיות פשוטות ביעילות על ידי שימוש באוטומציה.

בעזרת הפקודות נוכל לבצע פעולות כמו:

  • יצירת צוותים חדשים
  • ערוצים חדשים בקבוצה
  • הוספת  והסרה מספר רב של חברים
  • הגדרת הרשאות

ועוד..

רשימת הפקודות המלאה:

 

 התקנת ה-Module מתבצעת על ידי הרצת הפקודה:

    install-module MicrosoftTteams 

3

התחברות ל- Teams מתבצעת על ידי הפקודה:

          Connect-MicrosoftTeams

4

Office365   של   Credentialsבהופעת חלון ההתחברות יש להתחבר עם ה

5

לאחר התחברות מוצלחת יופיע בחלון ה-PowerShell ה-Account שלכם

6_thumb[1]

על מנת לראות את כל הפקודות האפשריות ל- Module מריצים את הפקודה : Get-Command -Module MicrosoftTeams

7_thumb[1]

יצירת Team חדש :

New-Team -DisplayName “Idit Bnaya New Team” -AccessType Private

על מנת לראות את רשימת ה- Teams יש להריץ Get-Team

* שימו לב, בתוצאה הדיפולטיבית יופיע רק ה- Group ID של ה-Teams, ערך חשוב מאוד כיוון שניתן ליצור Teams באותו שם אז ה-GroupID הוא הערך החד ערכי

סקריפט ליצירת Team  חדש והוספת משתמשים מקובץ CSV

תנאים להרצת הסקריפט

1.  יש להריץ את ה-Module של Teams ולהכניס משתמש עם הרשאות מתאימות

2. יש ליצור קובץ CSV עם כותרת בשם User ומתחתיה UserPrincopalName של המשתמשים אותם רוצים להכניס ל-Team

לדוגמא:

8_thumb

3 יש לשמור את הסקריפט לקובץ Ps1 או להריץ עם ISE

4. הסקריפט מקפיץ Inputbox שבו מכניסים את שם ה-Team

בהצלחה wlEmoticon-smile[2]

_________________________________________________________

<#Beginning#>

<#########################################################################

.DESCRIPTION

Create A new team and add members from CSV file

.INPUTS

Team Name

.OUTPUTS

Create a csv file with a list of the users (for log)

.NOTES

Written By: Idit Bnaya

Personal Blog (English): https://www.itblog.co.il

Microsoft Blog (Hebrew): https://blogs.microsoft.co.il/iditbna

############################################################################>

#InputBox

[System.Reflection.Assembly]::LoadWithPartialName(‘Microsoft.VisualBasic’) | Out-Null $TeamName = [Microsoft.VisualBasic.Interaction]::InputBox(‘Enter the team name’, ‘Team name’)

#create New Team

New-Team -DisplayName $TeamName -AccessType Private

#get-team | Select-Object DisplayName,GroupId (for test)

#Import Users from CSV file

$TeamsUsers = Get-Content -Path c:\temp\TeamsUsersinput.csv

#Save The GroupID of the New Team in a varaiable

$groupID = Get-Team | ?{$_.DisplayName -eq $TeamName} |select GroupId

# Add the Users from the CSV file to the new Team we created

ForEach ($user in $TeamsUsers) {

add-teamuser -user $user -GroupId $groupID.GroupId}

#Export The Result to a CSV File

Get-TeamUser -groupid $groupID.GroupId |export-csv -Path c:\temp\”teamusers-$($TeamName)”.csv –NoTypeInformation

<#End#>

 9_thumb[198]

 

Posted in Office365, PowerShell, Scripts, Teams, Teams | Tagged , , , , | Leave a comment

Error After Renew certificate ADFS 3.0–This page cannot be displayed

Posted on July 2, 2017 by Idit Bnaya

image

First lets go over the correct steps to renew the Certificate

Step1: Check the current signing certificates:

  • Open ADFS  PowerShell command window, and run the following command:

Get-ADFSCertificate –CertificateType token-signing

  • If you only see one certificate, and the NotAfter date is within 5 days, you need to generate a new certificate.

Srep:2 Renew the token signing certificate manually:

  • To generate a new certificate, execute the following command

Update-ADFSCertificate –CertificateType token-signing

  • Verify the update by running the following command again:

Get-ADFSCertificate –CertificateType token-signing

Step 3: Update the new token signing certificates for the Office 365 trust

  • Run:

Connect-MsolService

  • Enter the Office 365 Global Admin credentials
  • Run:

Update-MSOLFederatedDomain –DomainName “Domain.com”

STEP 4:Check if the certificate is updated correctly

  • Open ADFS  PowerShell command window, and run the following command:

Get-AdfsSslCertificate

  • Look at the value: CertifiacteHash
  • Check that the CertifiacteHash is the same as the thumbprint of the new certificate and not the old one

image

  • If the thumbprint is not the same or you see only one cert and not two run the following:

Set-AdfsSslCertificate  -thumbprint “the new thumbprint”

image

  • Run:

Get-AdfsSslCertificate

Check that the CertifiacteHash is correct.

Go over step 3 again (Update-MSOLFederatedDomain –DomainName “Domain.com”)

 

Good luck Smile

Posted in ADFS | Tagged , , , | 1 Comment
Follow

Get every new post delivered to your Inbox

Join other followers