Updates from: 07/07/2021 03:09:41
Category Microsoft Docs article Related commit history on GitHub Change details
admin Add Another Email Alias For A User https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/admin/email/add-another-email-alias-for-a-user.md
If you purchased your subscription from GoDaddy or another Partner, to set the n
## Sending email from the proxy address easily
-A new feature is rolling out in April 2021 that allows users to send from their aliases easily when using Outlook on the web. When the feature rolls out to a tenancy where the tenant admin uses the `Set-OrganizationConfig -SendFromAliasEnabled $true` cmdlet, users within the tenancy will get access to a list of checkboxes where each entry corresponds to an alias in their Outlook settings. Selecting an alias will make it appear in the From dropdown in the Compose form.
+A new feature is rolling out in July 2021 that allows users to send from their aliases easily when using Outlook on the web. When the feature rolls out to a tenancy where the tenant admin uses the `Set-OrganizationConfig -SendFromAliasEnabled $true` cmdlet, users within the tenancy will get access to a list of checkboxes where each entry corresponds to an alias in their Outlook settings. Selecting an alias will make it appear in the From dropdown in the Compose form.
## Related content
admin Manage Addins In The Admin Center https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/admin/manage/manage-addins-in-the-admin-center.md
Support for turning off the Office Store is available in the following versions:
- The web - Currently available. This does not prevent an administrator from using Centralized Deployment to assign an add-in from the Office Store.+
+> [!NOTE]
+> Add-ins such as Visio Data Visualizer, Bing Maps, and People Graph will still show up in the ribbon, even if an admin has disabled the Store. To remove these links, administrators must disable the Store through Group Policy Object (GPO).
To prevent a user from signing in with a Microsoft account, you can restrict logon to use only the organizational account. For more information, see [Identity, authentication, and authorization in Office 2016](/DeployOffice/security/identity-authentication-and-authorization-in-office).
If the deployed add-in doesn't support add-in commands or if you want to view al
Learn more about creating and building [Office Add-ins](/office/dev/add-ins/overview/office-add-ins) (article)\ [Use Centralized Deployment PowerShell cmdlets to manage add-ins](../../enterprise/use-the-centralized-deployment-powershell-cmdlets-to-manage-add-ins.md) (article)\ [Troubleshoot: User not seeing add-ins](/office365/troubleshoot/access-management/user-not-seeing-add-ins) (article)\
-[Minors and acquiring add-ins from the Microsoft Store](./minors-and-acquiring-addins-from-the-store.md) (article)
+[Minors and acquiring add-ins from the Microsoft Store](./minors-and-acquiring-addins-from-the-store.md) (article)
admin Content Collaboration https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/admin/productivity/content-collaboration.md
We also provide you with information that helps you gain visibility into how you
### Use of attachments in email
+**Use of attachments in email**
+Understand how many users are attaching physical files in email rather than links to content in the cloud, and monitor the reduction of this number over time.
+ :::image type="content" source="../../media/emailattachments.png" alt-text="Use of email attachments."::: 1. **Header:** Highlights the percentage of people who use attachments in emails that were not saved to OneDrive or SharePoint.
We also provide you with information that helps you gain visibility into how you
- **Links to online files:** The blue (colored) portion of the bar and the fraction (numerator/denominator) on the bar represent the percentage of people using attachments and attaching links to files in emails. - Numerator: The number of people attaching links to online files (saved to OneDrive or SharePoint) to emails within the last 28 days. - Denominator: The number of people who have access to Exchange and OneDrive, SharePoint, or both within the last 28 days.
- - **Embed links in email:** The blue (colored) portion of the bar and the fraction on the bar represent the percentage of people who embed links in body of the emails.
- - Numerator: The number of people embedding links in body of emails to online files (saved to OneDrive or SharePoint) within the last 28 days.
- - Denominator: The number of people who have access to Exchange and OneDrive, SharePoint, or both within the last 28 days.
4. **Link to resources:** Select this link to view help content. ### Sharing of online files
commerce Cancel Your Subscription https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/commerce/subscriptions/cancel-your-subscription.md
Your subscription now appears in a **Disabled** state, and has reduced functiona
If you cancel a subscription before the end of your term, the subscription status moves directly into a disabled state. For most subscriptions, in most countries and regions, the disabled state lasts 90 days. Admins can still access and back up data for their organization while the subscription is in the disabled state, but we recommend that admins [back up their data](back-up-data-before-switching-plans.md) before they cancel a subscription, especially if it's their only subscription. Admins can also reactivate the subscription while it's in the disabled state.
-After 90 days, the subscription moves into the deleted state. Any data that you leave behind may be deleted after those 90 days is deleted no later than 180 days after cancellation. You can't remove a payment method from a canceled subscription until after it reaches the deleted state.
+After 90 days, the subscription moves into the deleted state. Any data you leave behind may be deleted after those 90 days but is deleted no later than 180 days after cancellation. You can't remove a payment method from a canceled subscription until after it reaches the deleted state.
### What to expect for you and your users if you cancel a subscription
compliance Create A Custom Sensitive Information Type https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/compliance/create-a-custom-sensitive-information-type.md
Here are the definitions and some examples for the available additional checks.
> [!TIP] > To detect patterns containing Chinese/Japanese characters and single byte characters or to detect patterns containing Chinese/Japanese and English, define two variants of the keyword or regex.
+>
> For example, to detect a keyword like "机密的document", use two variants of the keyword; one with a space between the Japanese and English text and another without a space between the Japanese and English text. So, the keywords to be added in the SIT should be "机密的 document" and "机密的document". Similarly, to detect a phrase "東京オリンピック2020", two variants should be used; "東京オリンピック 2020" and "東京オリンピック2020".
- > While creating a regex using a double byte hyphen or a double byte period, make sure to escape both the characters like one would escape a hyphen or period in a regex. Here is a sample regex for reference:
- - (?<!\d)([4][0-9]{3}[\-?\-\t]*[0-9]{4}
+>
+> While creating a regex using a double byte hyphen or a double byte period, make sure to escape both the characters like one would escape a hyphen or period in a regex. Here is a sample regex for reference:
+>
+> - (?<!\d)([4][0-9]{3}[\-?\-\t]*[0-9]{4}
+>
> We recommend using a string match instead of a word match in a keyword list.
compliance Create A Keyword Dictionary https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/compliance/create-a-keyword-dictionary.md
Paste the identity into your custom sensitive information type's XML and upload
> [!TIP] > To detect patterns containing Chinese/Japanese characters and single byte characters or to detect patterns containing Chinese/Japanese and English, define two variants of the keyword or regex.
+>
> For example, to detect a keyword like "机密的document", use two variants of the keyword; one with a space between the Japanese and English text and another without a space between the Japanese and English text. So, the keywords to be added in the SIT should be "机密的 document" and "机密的document". Similarly, to detect a phrase "東京オリンピック2020", two variants should be used; "東京オリンピック 2020" and "東京オリンピック2020".
- > While creating a regex using a double byte hyphen or a double byte period, make sure to escape both the characters like one would escape a hyphen or period in a regex. Here is a sample regex for reference:
- - (?<!\d)([4][0-9]{3}[\-?\-\t]*[0-9]{4}
+>
+> While creating a regex using a double byte hyphen or a double byte period, make sure to escape both the characters like one would escape a hyphen or period in a regex. Here is a sample regex for reference:
+>
+> - (?<!\d)([4][0-9]{3}[\-?\-\t]*[0-9]{4}
+>
> We recommend using a string match instead of a word match in a keyword list.
compliance Dlp Use Policies Non Microsoft Cloud Apps https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/compliance/dlp-use-policies-non-microsoft-cloud-apps.md
Title: "Use Data loss prevention policies for non-Microsoft cloud apps (preview)"
+ Title: "Use Data loss prevention policies for non-Microsoft cloud apps"
f1.keywords: - CSH
Before you start using DLP policies to non-Microsoft cloud apps, confirm your [M
- Microsoft 365 E5 Compliance - Microsoft 365 E5 Security
+### Permissions
+The user who creates the DLP policy should be a:
+- Global administrator
+- Compliance administrator
+- Compliance data administrator
+ ### Prepare your Cloud App Security environment DLP policies to non-Microsoft cloud apps use Cloud App Security DLP capabilities. To use it, you should prepare your Cloud App Security environment. For instructions, see [Set instant visibility, protection, and governance actions for your apps](/cloud-app-security/getting-started-with-cloud-app-security#step-1-set-instant-visibility-protection-and-governance-actions-for-your-apps).
When you create a rule in the DLP policy, you can select an action for non-Micro
![Restrict third-party apps](../media/4-dlp-non-microsoft-cloud-app-restrict-third-party-apps.png)
-> [NOTE]
+> [!NOTE]
> DLP policies applied to non-Microsoft apps use Microsoft Cloud App Security. When the DLP policy for a non-Microsoft app is created, the same policy will be automatically created in Microsoft Cloud App Security. For information about creating and configuring DLP policies, see [Create test and tune a DLP policy](./create-test-tune-dlp-policy.md).
compliance Endpoint Dlp Learn About https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/compliance/endpoint-dlp-learn-about.md
You can use Microsoft 365 data loss prevention (DLP) to monitor the actions that
**Endpoint data loss prevention** (Endpoint DLP) extends the activity monitoring and protection capabilities of DLP to sensitive items that are on Windows 10 devices. Once devices are onboarded into the Microsoft 365 compliance solutions, the information about what users are doing with sensitive items is made visible in [activity explorer](data-classification-activity-explorer.md) and you can enforce protective actions on those items via [DLP policies](create-test-tune-dlp-policy.md).
+> [!TIP]
+> If you are looking for device control for removable storage, see [Microsoft Defender for Endpoint Device Control Removable Storage Access Control](../security/defender-endpoint/device-control-removable-storage-access-control.md#microsoft-defender-for-endpoint-device-control-removable-storage-access-control).
+ ## Endpoint activities you can monitor and take action on Microsoft Endpoint DLP enables you to audit and manage the following types of activities users take on sensitive items on devices running Windows 10.
compliance How Dlp Works Between Admin Centers https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/compliance/how-dlp-works-between-admin-centers.md
This means that:
- Messages that are blocked by Exchange mail flow rules won't get scanned by DLP rules created in the Security & Compliance Center. -- Messages that are quarantined by Exchange mail flow rules or any other filters run before DLP will not be scanned by DLP
+- Messages that are quarantined by Exchange mail flow rules or any other filters run before DLP will not be scanned by DLP.
- If an Exchange mail flow rule modifies a message in a way that causes it to match a DLP policy in the Security & Compliance Center - such as adding external users - then the DLP rules will detect this and enforce the policy as needed.
compliance Search The Audit Log In Security And Compliance https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/compliance/search-the-audit-log-in-security-and-compliance.md
Where noted below in the descriptions, some operations contain additional activi
|Friendly name|Operation|Description| |:--|:--|:--| |Created comment|CreateComment|Form owner adds comment or score to a quiz.|
-|Created form|CreateForm|Form owner creates a new form.|
-|Edited form|EditForm|Form owner edits a form such, as creating, removing, or editing a question. The property *EditOperation:string* indicates the edit operation name. The possible operations are:<br/>- CreateQuestion<br/>- CreateQuestionChoice <br/>- DeleteQuestion <br/>- DeleteQuestionChoice <br/>- DeleteFormImage <br/>- DeleteQuestionImage <br/>- UpdateQuestion <br/>- UpdateQuestionChoice <br/>- UploadFormImage/Bing/Onedrive <br/>- UploadQuestionImage <br/>- ChangeTheme <br><br>FormImage includes any place within Forms that user can upload an image, such as in a query or as a background theme.|
-|Moved form|MoveForm|Form owner moves a form. <br><br>Property DestinationUserId:string indicates the user ID of the person who moved the form. Property NewFormId:string is the new ID for the newly copied form.|
+|Created form|CreateForm|Form owner creates a new form. <br><br>Property DataMode:string indicates the current form is set to sync with a new or existing Excel workbook if the property value equals DataSync. Property ExcelWorkbookLink:string indicates the associated Excel workbook ID of the current form.|
+|Edited form|EditForm|Form owner edits a form such as creating, removing, or editing a question. The property *EditOperation:string* indicates the edit operation name. The possible operations are:<br/>- CreateQuestion<br/>- CreateQuestionChoice <br/>- DeleteQuestion <br/>- DeleteQuestionChoice <br/>- DeleteFormImage <br/>- DeleteQuestionImage <br/>- UpdateQuestion <br/>- UpdateQuestionChoice <br/>- UploadFormImage/Bing/Onedrive <br/>- UploadQuestionImage <br/>- ChangeTheme <br><br>FormImage includes any place within Forms that user can upload an image, such as in a query or as a background theme.|
+|Moved form|MoveForm|Form owner moves a form. <br><br>Property DestinationUserId:string indicates the user ID of the person who moved the form. Property NewFormId:string is the new ID for the newly copied form. Property IsDelegateAccess:boolean indicates the current form move action is performed through the admin delegate page.|
|Deleted form|DeleteForm|Form owner deletes a form. This includes SoftDelete (delete option used and form moved to recycle bin) and HardDelete (Recycle bin is emptied).|
-|Viewed form (design time)|ViewForm|Form owner opens an existing form for editing.|
+|Viewed form (design time)|ViewForm|Form owner opens an existing form for editing. <br><br>Property AccessDenied:boolean indicates access of current form is denied due to permission check. Property FromSummaryLink:boolean indicates current request comes from the summary link page.|
|Previewed form|PreviewForm|Form owner previews a form using the Preview function.| |Exported form|ExportForm|Form owner exports results to Excel. <br><br>Property ExportFormat:string indicates if the Excel file is Download or Online.| |Allowed share form for copy|AllowShareFormForCopy|Form owner creates a template link to share the form with other users. This event is logged when the form owner clicks to generate template URL.|
Where noted below in the descriptions, some operations contain additional activi
|Updated form phishing status|UpdatePhishingStatus|This event is logged whenever the detailed value for the internal security status was changed, regardless of whether this changed the final security state (for example, form is now Closed or Opened). This means you may see duplicate events without a final security state change. The possible status values for this event are:<br/>- Take Down <br/>- Take Down by Admin <br/>- Admin Unblocked <br/>- Auto Blocked <br/>- Auto Unblocked <br/>- Customer Reported <br/>- Reset Customer Reported| |Updated user phishing status|UpdateUserPhishingStatus|This event is logged whenever the value for the user security status was changed. The value of the user status in the audit record is **Confirmed as Phisher** when the user created a phishing form that was taken down by the Microsoft Online safety team. If an admin unblocks the user, the value of the user's status is set to **Reset as Normal User**.| |Sent Forms Pro invitation|ProInvitation|User clicks to activate a Pro trial.|
-|Updated form setting|UpdateFormSetting|Form owner updates a form setting. <br><br>Property FormSettingName:string indicates the setting's name and new value.|
+|Updated form setting|UpdateFormSetting|Form owner updates one or multiple form settings. <br><br>Property FormSettingName:string indicates updated sensitive settings' name. Property NewFormSettings:string indicates updated settings' name and new value. Property thankYouMessageContainsLink:boolean indicates updated thankyou message contains a URL link.|
|Updated user setting|UpdateUserSetting|Form owner updates a user setting. <br><br>Property UserSettingName:string indicates the setting's name and new value| |Listed forms|ListForms|Form owner is viewing a list of forms. <br><br>Property ViewType:string indicates which view the form owner is looking at: All Forms, Shared with Me, or Group Forms| |Submitted response|SubmitResponse|A user submits a response to a form. <br><br>Property IsInternalForm:boolean indicates if the responder is within the same organization as the form owner.|
+|Enabled anyone can respond setting|AllowAnonymousResponse|Form owner turns on the setting allowing any one to respond to the form.|
+|Disabled anyone can respond setting|DisallowAnonymousResponse|Form owner turns off the setting allowing any one to respond to the form.|
+|Enabled specific people can respond setting|EnableSpecificResponse|Form owner turns on the setting allowing only specific people or specific groups in the current organization to respond to the form.|
+|Disabled specific people can respond setting|DisableSpecificResponse|Form owner turns off the setting allowing only specific people or specific groups in the current organization to respond to the form.|
+|Added specific responder|AddSpecificResponder|Form owner adds a new user or group to the specific responders list.|
+|Removed specific responder|RemoveSpecificResponder|Form owner removes a user or group from the specific responders list.|
+|Disabled collaboration|DisableCollaboration|Form owner turns off the setting of collaboration on the form.|
+|Enabled Office 365 work or school account collaboration|EnableWorkOrSchoolCollaboration|Form owner turns on the setting allowing users with an Office 365 work or school account to view and edit the form.|
+|Enabled people in my organization collaboration|EnableSameOrgCollaboration|Form owner turns on the setting allowing users in the current organization to view and edit the form.|
+|Enabled specific people collaboration|EnableSpecificCollaboaration|Form owner turns on the setting allowing only specific people or specific groups in the current organization to view and edit the form.|
+|Connected to Excel workbook|ConnectToExcelWorkbook|Connected the form to an Excel workbook. <br><br>Property ExcelWorkbookLink:string indicates the associated Excel workbook ID of the current form.|
|||| #### Forms activities performed by coauthors and anonymous responders
compliance Sensitive Information Type Learn About https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/compliance/sensitive-information-type-learn-about.md
To create custom sensitive information types in the Security & Compliance Center
> This support is available for sensitive information types. See, [Information protection support for double byte character sets release notes (preview)](mip-dbcs-relnotes.md) for more information. > [!TIP]
-> To detect patterns containing Chinese/Japanese characters and single byte characters or to detect patterns containing Chinese/Japanese and English, define two variants of the keyword or regex.
+> To detect patterns containing Chinese/Japanese characters and single byte characters or to detect patterns containing Chinese/Japanese and English, define two variants of the keyword or regex.
+>
> For example, to detect a keyword like "机密的document", use two variants of the keyword; one with a space between the Japanese and English text and another without a space between the Japanese and English text. So, the keywords to be added in the SIT should be "机密的 document" and "机密的document". Similarly, to detect a phrase "東京オリンピック2020", two variants should be used; "東京オリンピック 2020" and "東京オリンピック2020". > > While creating a regex using a double byte hyphen or a double byte period, make sure to escape both the characters like one would escape a hyphen or period in a regex. Here is a sample regex for reference:
enterprise View Service Health https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/enterprise/view-service-health.md
If you are unable to sign in to the admin center, you can use the [service statu
> [!NOTE] > People who are assigned the global admin or service support admin role can view service health. To allow Exchange, SharePoint, and Skype for Business admins to view service health, they must also be assigned the Service admin role. For more information about roles that can view service health, see [About admin roles](../admin/add-users/about-admin-roles.md?preserve-view=true&view=o365-worldwide#commonly-used-microsoft-365-admin-center-roles).
-2. If you are not using the new admin center, on the **Home** page, select the **Try the new admin center** toggle in the upper-right corner.
+2. To view service health, in the admin center, go to **Health** > **Service health**, or select the **Service health** card on the **Home dashboard**. The dashboard card indicates whether there is an active service issue and links to the detailed **Service health** page.
-3. To view service health, in the admin center, go to **Health** > **Service health**, or select the **Service health** card on the **Home dashboard**. The dashboard card indicates whether there is an active service issue and links to the detailed **Service health** page.
-
-4. On the **Service health** page, the health state of each cloud service is shown in a table format.
+3. On the **Service health** page, the health state of each cloud service is shown in a table format.
![View of current issues in service health](../media/service-health-all-services.png)
-The **All services** tab (the default view) shows all services and their current health state. An icon and the **Status** column indicate the state of each service.
+The **All services** tab (the default view) shows all services, their current health state, and any active incidents or advisories. An icon and status in the **Health** column indicate the state of each service.
+
+If there is an active incident or advisory for a service they will be listed directly under the service name in a nested table. You can collapse the nested table to hide the incidents or advisories in this view by clicking on the chevron icon to the left of the service name.
-To filter your view to services currently experiencing an incident, select the **Incidents** tab at the top of the page. Selecting the **Advisories** tab will show only services that currently have an advisory posted.
+To filter your view to only show all the active incidents, select the **Incidents** tab at the top of the page. Selecting the **Advisories** tab will only show all the active advisories posted.
-The **History** tab shows the history of incidents and advisories that have been resolved.
+The **History** tab shows all incidents and advisories that have been resolved within the last seven or 30 days.
-If you're experiencing an issue with a Microsoft 365 service and you donΓÇÖt see it listed on the **Service health** page, tell us about it by selecting **Report an issue**, and completing the short form. WeΓÇÖll look at related data and reports from other organizations to see how widespread the issue is, and if it originated with our service. If it did, weΓÇÖll add it as a new incident or advisory on the **Service health** page, where you can track its resolution. If you donΓÇÖt see it appear on the list within about 30 minutes, consider contacting support to resolve the issue.
+If you're experiencing an issue with a Microsoft 365 service and you donΓÇÖt see it listed on the **Service health** page, tell us about it by selecting **Report an issue**, and completing the short form. WeΓÇÖll look at related data and reports from other organizations to see how widespread the issue is, and if it originated with our service. If it did, weΓÇÖll add it as a new incident or advisory on the **Service health** page, where you can track its resolution. The **Reported Issues** page will show all issues your tenant has reported from this form and the status.
-To customize your view of which services show up on the dashboard, select **Preferences** > **Custom view**, and clear the check boxes for the services you want to filter out of your Service health dashboard view. Make sure that the check box is selected for each service that you want to monitor.
+To customize your view of which services show up on the dashboard, select **Preferences** > **Custom view**, and clear the checkboxes for the services you want to filter out of your Service health dashboard view. Make sure that the checkbox is selected for each service that you want to monitor.
To sign up for email notifications of new incidents that affect your tenant and status changes for an active incident, select **Preferences** > **Email**, click **Send me service heath notifications in email**, and then specify:
To sign up for email notifications of new incidents that affect your tenant and
- Whether you want notifications for incidents or advisories - The services for which you want notification
+You can also subscribe to email notifications for individual events instead of every event for a service. To do so, select the active issue you want to receive email notification updates for, select **Manage notifications for this issue**, and then specify:
+- Up to two email addresses.
+ > [!NOTE] > Each admin can have their Preferences set and the above limit of two email address is per admin account.
To sign up for email notifications of new incidents that affect your tenant and
### View details of posted service health
-On the **All services** view, selecting the service status will open a summary view of advisories or incidents.
+On the **All services** view, select the issue title to see the issue detail page, which shows more information about the issue, including a feed of all the messages posted while we work on a solution.
[ ![A screenshot showing the service advisory](../media/service-health-advisory.png) ](../media/service-health-advisory.png#lightbox) The advisory or incident summary provides the following information: - **Title** - A summary of the problem.-- **Service** - The name of the affected service. - **ID** - A numeric identifier for the problem.
+- **Service** - The name of the affected service.
+- **Last updated** - The last time that the service health message was updated.
+- **Estimated Start time** - The estimated time when the issue started.
- **Status** - How this problem affects the service.-- **Start time** - The time when the issue started.-- **Last updated** - The last time that the service health message was updated. We post frequent messages to let you know the progress that we're making in applying a solution.-
-Select the issue title to see the issue detail page, which shows more information about the issue, including the [history](#history) of all messages posted while we work on a solution.
+- **User Impact** - A brief description of the impact this issue has on the end user.
+- **All Updates** - We post frequent messages to let you know the progress that we're making in applying a solution.
![A screenshot showing issue details](../media/service-health-advisory-detail.png) ### Translate service health details
-Because service health explanations are posted in real-time, they are not automatically translated to your language and the details of a service event are in English only. To translate the explanation, follow these steps:
-
-1. Go to [Translator](https://www.bing.com/translator/).
-
-2. On the **Service health** page, select an incident or advisory. Under **Show details**, copy the text about the issue.
-
-3. In Translator, paste the text and choose **Translate**.
+We use machine translation to automatically display messages in your preferred language. Read [Language translation for Message center posts](/microsoft-365/admin/manage/language-translation-for-message-center-posts) for more information on how to set your language.
### Definitions
Most of the time, services will appear as healthy with no further information. W
|**False positive** | After a detailed investigation, weΓÇÖve confirmed the service is healthy and operating as designed. No impact to the service was observed or the cause of the incident originated outside of the service. | |**Post-incident report published** | WeΓÇÖve published a Post Incident Report for a specific issue that includes root cause information and next steps to ensure a similar issue doesnΓÇÖt reoccur. |
-### History
-
-Service health lets you look at current health status and view the history of any service advisories and incidents that have affected your tenant in the past 30 days. To view the past health of all services, select **View history** on the issue detail page.
+### Message Post Types
-![Show link to health history](../media/service-health-view-history.png)
-
-A list of all service health messages posted in the selected timeframe is displayed, as shown below:
+| Type | Definition |
+|:--|:--|
+|**Quick Update** | Short and frequent incremental updates for broadly impacting incidents, available to all customers. |
+|**Additional Details** | These additional posts will provide richer technical and resolution details to offer deeper visibility into the handling of incidents. This is available for tenants that meet the same requirements outlined for [Exchange Online monitoring](/microsoft-365/enterprise/microsoft-365-exchange-monitoring?view=o365-worldwide#requirements), |
-![View service health history](../media/service-health-history.png)
+### History
-Expand any row to view more details about the issue.
+Service health lets you look at your current health status and view the history of any service advisories and incidents that have affected your tenant in the past 30 days. To view the past health of all services, select **History** view.
For more information about our commitment to uptime, see [Transparent operations from Microsoft 365](/office365/servicedescriptions/office-365-platform-service-description/service-health-and-continuity).
lti Teams Classes With Blackboard https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/lti/teams-classes-with-blackboard.md
+
+ Title: Integrate Microsoft Teams classes with Blackboard Learn Ultra
++++
+audience: admin
++
+f1.keywords:
+- CSH
+
+localization_priority: Normal
+
+description: "Integrate Microsoft Teams classes with Blackboard Learn Ultra"
++
+# Use Microsoft Teams classes with Blackboard Learn Ultra
+
+Teamwork is at the core of every modern organization. By fostering collaboration, itΓÇÖs a defining characteristic of every successful institution. You can enhance all the capabilities and features of Blackboard Learn Ultra by pairing them up with Microsoft Teams classes.
+
+Your classes might include real-time conversations, video meetings, or asynchronous interactions. You can add file sharing and cocreation experiences for your students, all in one place. Microsoft Teams classes with Learn Ultra redefine the dynamics of teaching and what effective learning means.
+
+> [!IMPORTANT]
+> Ensure that you have successfully set up the Institution Email field in your Student Information System (SIS) `help.blackboard.com/Learn/Administrator/SaaS/Integrations/Student\_Information\_System/SIS\_Planning`
+>
+>The Microsoft Teams classes integration relies on the institution email field in your SIS to map to the correct Microsoft Azure Active DirectoryΓÇÖs (AAD) User Principal Name (UPN). If no institution email has been provisioned, this will default to the existing email. ItΓÇÖs recommended that this field be set for every user to ensure their data is synchronized correctly and that there is no conflict of email data between Microsoft AAD and Blackboard Learn Ultra.
+>
+> If you havenΓÇÖt set this field appropriately in your SIS mapping, the integration will continue to work, but users might not appear in the Teams classes created, and errors could occur.
+
+## Supporting Institutional Data Mapping ΓÇô Institution Email SIS Field
+
+As part of the evolution with Cloud provider integrations, Blackboard Learn Ultra has created a new **Institution Email** field, in both the Student Information System Framework integration and public REST APIs, allowing institutions to manage the data synchronization process effectively between Blackboard Learn Ultra and Microsoft AAD.
+
+### What does the Institution Email mean and what does it support?
+
+The **Institution Email** field allows customized field mappings between a clientΓÇÖs externally supported data sources and Blackboard Learn Ultra. If data sources are cloud providers, such as Microsoft, the User Principle Name (UPN) is a primary unique identifier for each user consisting of a UPN prefix (the userΓÇÖs account name) and a UPN suffix (a DNS domain name) joined together with an @ symbol. This creates a unique email address for each specific user within the Microsoft Azure Active Directory.
+
+To ensure data is accurate and enrollments or memberships between Blackboard Learn Ultra and Microsoft Teams classes are correctly achieved, a userΓÇÖs email address must match between both systems. In Blackboard Learn Ultra, users can change or override their existing email address in the user interface, which could result in sync errors occurring and the user not being
+ correctly added to a Class Team. The **Institution Email** field mapping ensures this level of security and validation checking can be correctly managed, regardless if users have changed their email within Blackboard Learn Ultra or not.
+
+ When two email addresses are different, either:
+
+- A decision must be made as to which source has precedence and will be taken as both the Person and Institution Emails.
+ Or
+- An institution can set a custom field mapping in its Institution Email, which can resolve a potential conflict.
+
+The **Institution Email** field mapping is now available for all existing SIS integration types at **Advanced Configuration Settings** > **Users Learn Object Type** > **Field Mapping**.
+
+> [!NOTE]
+> ItΓÇÖs important to note that, by default, the **Institution Email** is set to the **Person Email** for all SIS formats and must be unique for each person. All existing integrations that are set up and running will have this data mapping in place, as SIS will fail to import users if their email is duplicated. If an institution requires the ability to change the Institution Email to **custom**, they'll need to manage this through the **Advanced Configuration Settings** in the SIS.
+
+## Requirements
+
+The Microsoft Teams classes integration is available for **Ultra Course View courses only**. Your institution needs to complete these requirements to use it:
+
+- Have Blackboard Learn Ultra Learn SaaS with Ultra Base Navigation enabled
+
+- Enable LTI for use in courses.
+
+ a. Go to the **Administrator Panel** > **LTI Tool Providers** > **Manage Global Properties**.
+
+ b. Select **LTI Enabled in Courses**, and optionally, select **Enabled in Organizations**.
+
+ c. Select **Submit**.
+
+- Must have LTI configured
+
+- Add Blackboard Learn Ultra Teams Classes LTI Integration
+
+- Add Microsoft Teams Classes LTI 1.3 Tool
+
+- Add the REST API Tool and Cross-Origin Resource Sharing
+
+- Configure and approve Microsoft Teams classes Integration
+
+## Add the Blackboard Learn Ultra Teams Classes LTI 1.3 Tool
+
+1. From the **Administrator Panel**, select **LTI Tool Providers**.
+
+2. Select **register LTI 1.3 Tool**.
+
+3. In the **Client ID** field, type or copy and paste this ID:
+
+ `f1561daa-1b21-4693-ba90-6c55f1a0eb41`
+
+4. Review all settings that have been pre-populated and in **Tool Status**, and then select **Enabled**.
+
+5. In **Institution Policies**, select **Role in Course, Name,** and **Email Address**, and then select **Yes** for both.
+
+6. Select **Allow grade service access** and **Allow Membership Service Access**.
+
+## Add the Microsoft Teams Classes LTI 1.3 Tool
+
+1. From the **Administrator Panel**, select **LTI Tool Providers**.
+
+2. Select **register LTI 1.3 Tool**.
+
+3. In the **Client ID** field, type or copy and paste this ID:
+
+ `027328b7-c2e3-4c9e-aaa1-07802dae6c89`
+
+4. Review all settings that have been pre-populated and in *Tool Status* and select *Enabled.*
+
+5. In **Institution Policies**, select **Role in Course, Name,** and **Email Address**. Select **Yes** for both.
+
+6. Select **Allow grade service access** and **Allow Membership Service Access**.
+
+## Add the REST API tool
+
+1. From the **Administrator Panel**, navigate to **Integrations** and select **Rest API Integrations**.
+
+2. Select **Create Integration**.
+
+3. In the **Application ID** field, type or copy and paste this ID:
+
+ `f1561daa-1b21-4693-ba90-6c55f1a0eb41`
+
+4. Type a user for this integration.
+
+ This user will be the one with home API access from which the application is associated.
+
+5. Select **Submit**.
+
+## Add the Cross-Origin Resource Sharing
+
+1. From the **Administrator panel**, navigate to **Integrations** and select **Cross-origin Resource Sharing*.
+
+2. Select **Create Configuration**.
+
+3. In the **Origin** field, type of copy and paste this URL:
+
+ `https://bb-ms-teams-ultra-ext.api.blackboard.com`
+
+4. In the **Allowed Headers** field, type **Authorization**.
+
+5. Set **Available** to **Yes**.
+
+6. Select **Submit**.
+
+## Configure and Approve Microsoft Teams classes Integration
+
+To successfully integrate your Blackboard Learn Ultra instance with Microsoft Teams classes, you'll need to make sure the Blackboard Learn Ultra application is approved for access within your Microsoft Azure tenant. This is a process that will need to be completed by your institutionΓÇÖs Microsoft 365 Global Admin.
+
+This process can be done either before or after you have configured the LTI applications in your Blackboard Learn Ultra Instance.
+
+### Before Configuring the LTI Applications
+
+If you choose to approve the Blackboard Learn Ultra Teams Classes Azure app before configuring the LTI integrations, you'll need to redirect to the **Microsoft Identity Platform Admin Consent Endpoint**. The URL is shown:
+
+`https://login.microsoftonline.com/{tenant}/adminconsent?client\_id=2d94989f-457a-47c1-a637-e75acdb11568`
+
+> [!NOTE]
+> YouΓÇÖll replace **{Tenant}** with your specific institutional Microsoft Azure tenant ID.
+
+### After Configuring the LTI Applications
+
+1. On the **Administrator Panel**, navigate to **Tools and Utilities** and select **Microsoft Teams Integration Admin**.
+
+2. Select **Enable Microsoft Teams**.
+
+3. Add your **Microsoft Tenant ID** into the available text field.
+
+4. Choose one of the following options:
+
+ - If the app has pre-consent, it will show a small checkmark. If the checkmark appears, select **Submit**.
+
+ - If consent hasnΓÇÖt been approved, follow the steps described to generate the URL for consent and send it to the Microsoft 365 Global Admin for approval.
+
+5. Once you've confirmation of approval, select **Retry** to confirm, and then select **Submit**.
managed-desktop Archived Device List https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/managed-desktop/service-description/archived-device-list.md
- Title: Microsoft Managed Desktop archived devices
-description: Devices nearing retirement that you can still enroll but will have a shortened support life
-keywords: Microsoft Managed Desktop, Microsoft 365, service, documentation
---- NOCSH------
-# Microsoft Managed Desktop archived devices
-
-To assure the best user experience, Microsoft Managed Desktop retires support for devices at a certain point. This article lists devices that are nearing retirement in the next few years, which we call "archived." If you're getting started with Microsoft Managed Desktop by using devices you already have, you should check this list carefully.
-
->[!IMPORTANT]
->You can still enroll these devices today, but they will have a shorter service life with Microsoft Managed Desktop. If you are buying new devices, you should use models from the [list of active devices](./device-list.md).
-
-<!-- Microsoft 365 E5; Device as a Service -->
-<!-- Split from device & technologies topic. Destination topic for aka.ms/device-list -->
-To be enrolled in Microsoft Managed Desktop, a device must be one of the following models and meet or exceed the listed specifications for RAM, processor family, and disk space. No other customization is supported.
---
->[!NOTE]
->In this table, the "retirement date" is the date on which this model will no longer be supported by Microsoft Managed Desktop at all. On that date, all enrolled devices of this model will be removed from Microsoft Managed Desktop, no matter when they were enrolled.
-
-#### Microsoft Managed Desktop archived devices
-
-| Model | Minimum specs | Additional requirements | Retirement date |
-|||||
-|Dell Precision 3530| 256 GB / Intel i5 / 8 GB RAM | IR camera required | **May 22, 2023** |
-|Dell Latitude 5300 / 5300 2-in-1 / 5400 / 5500 | 256 GB / Intel i5 / 8 GB RAM | IR camera required | **June 1, 2024** |
-|Dell Latitude 5310 / 5310 2-in-1 / 256 GB / Intel i5 / 8 GB RAM | IR camera required | **Apr 28, 2025** |
-|Dell Latitude 5410 / 5410 2-in-1 / 256 GB / Intel i5 / 8 GB RAM | IR camera required | **Apr 28, 2025** |
-|Dell Latitude 5490 | 256 GB / Intel i5 / 8 GB RAM | IR camera required | **Jan 9, 2023** |
-|Dell Latitude 7200 2-in-1 | 256 GB / Intel i5 / 8 GB RAM | IR camera required | **May 1, 2024** |
-|Dell Latitude 7300 / 7400 / 7400 2-in-1 | 256 GB / Intel i5 / 8 GB RAM | IR camera required | **May 1, 2024** |
-|Dell Latitude 7390 / 7390 2-in-1 / 7490 | 256 GB / Intel i5 / 8 GB RAM | IR camera required | **Jan 9, 2023** |
-|Dell Latitude 7410 / 7410 2-in-1 | 256 GB / Intel i5 / 8 GB RAM | IR camera required | **May 19, 2025** |
-|Dell Latitude 9410 / 9410 2-in-1 | 256 GB / Intel i5 / 8 GB RAM | IR camera required | **May 05, 2025** |
-|Dell Optiplex 3070 | 128 GB / Intel i3 / 8 GB RAM | None | **May 1, 2025** |
-|HP EliteBook 830 / 840 / 850 G5| 128 GB / Intel i5 / 8 GB RAM | SKU with 5VS01AV, IR camera or fingerprint sensor required | **Feb 15, 2023** |
-|HP EliteBook 830 / 840 / 850 G6| 128 GB / Intel i5 / 8 GB RAM | SKU with 5VS01AV, IR camera or fingerprint sensor required | **Nov 30, 2023** |
-|HP EliteBook 830 / 840 / 850 G7| 128 GB / Intel i5 / 8 GB RAM | SKU with 9MZ21AV, IR camera or fingerprint sensor required | **Nov 30, 2024** |
-|HP Elite x2 1013 G3| 256 GB / Intel i5 / 8 GB RAM | SKU with 5VS03AV, IR camera required |**May 14, 2023** |
-|HP Elite x2 G4| 256 GB / Intel i5 / 8 GB RAM | SKU with 5VS03AV, IR camera required |**May 31, 2024** |
-|HP EliteBook x360 830 G7| 256 GB / Intel i5 / 8 GB RAM | SKU with 9MZ21AV, IR camera required |**Nov 30, 2024** |
-|HP EliteBook x360 1030 G5| 256 GB / Intel i5 / 8 GB RAM | SKU with 5VS01AV, IR camera required |**May 14, 2023** |
-|HP EliteBook x360 1030 G6| 256 GB / Intel i5 / 8 GB RAM | SKU with 5VS01AV, IR camera required |**Nov 30, 2023** |
-|HP EliteBook x360 1040 G5| 256 GB / Intel i5 / 8 GB RAM | SKU with 5VS01AV, IR camera required | **Oct 23, 2023** |
-|HP EliteBook x360 1040 G6| 256 GB / Intel i5 / 8 GB RAM | SKU with 5VS01AV, IR camera required | **Nov 30, 2023** |
-|HP EliteBook x360 1030 / 1040 G7| 256 GB / Intel i5 / 8 GB RAM | SKU with 8XW08AV, IR camera required | **Aug 31, 2024** |
-|HP ProBook x360 440 G1| 128 GB / Intel i3 / 8 GB RAM | SKU with 5VS04AV, IR camera or fingerprint reader required | **Jun 6, 2023** |
-|HP EliteDesk 800 G4 DM | 128 GB / Intel i3 / 8 GB RAM | SKU with 5VS04AV | **Jul 18, 2023** |
-|HP EliteDesk 800 G4 SFF | 128 GB / Intel i3 / 8 GB RAM | SKU with 5VS04AV | **Jul 18, 2023** |
-|HP EliteOne 800 G4 23.8in AIO |128 GB / Intel i3 / 8 GB RAM |SKU with 5VS04AV| **Jul 18, 2023** |
-|HP EliteOne 800 G6 24/27 AIO |256 GB / Intel i5 / 8 GB RAM |SKU with 9XM14AV| **Jun 30, 2025** |
-|HP ZBook 14u/15u G6 Mobile Workstation |256 GB / Intel i5 / 8 GB RAM |SKU with 5VS04AV, IR camera required| **Nov 30, 2023** |
-|HP ZBook Firefly 14/15 G7 Mobile Workstation |256 GB / Intel i5 / 8 GB RAM |SKU with 9MZ22AV, IR camera required| **Nov 30, 2024** |
-|Surface Book 2| 256 GB / Intel i5 / 8 GB RAM | None | **Nov 16, 2022** |
-|Surface Go| 128 GB / Intel 4415Y / 8GB RAM | None | **Aug 2, 2023** |
-|Surface Laptop| 256 GB / Intel i5 / 8 GB RAM | None | **May 20, 2022** |
-|Surface Laptop 2| 128 GB / Intel i5 / 8 GB RAM | None | **Oct 16, 2023** |
-|Surface Pro| 256 GB / Intel i5 / 8 GB RAM | None | **Jun 15, 2022** |
-|Surface Pro 6| 128 GB / Intel i5 / 8 GB RAM | None | **Oct 16, 2023** |
-
-In addition, the device must also:
--- Have an image approved by Microsoft Managed Desktop. When you order devices, make sure you specify that they are being used with Microsoft Managed Desktop.-- Not have completed the Windows first-run experience.-- Be registered with Microsoft Managed Desktop using the [Device Registration](../get-started/register-devices-self.md) feature-
-#### More help
-
-These resources can help answer questions that you might have about specific devices:
--- For more questions on Dell devices contact [MMD_at_dell@dell.com](mailto:MMD_at_dell@dell.com).--- For more questions on HP devices contact: Americas ([mmd-americas@hp.com](mailto:mmd-americas@hp.com)); Europe/Middle East/Africa ([mmd-emea@hp.com](mailto:mmd-emea@hp.com)); Asia Pacific/Japan ([mmd-apj@hp.com](mailto:mmd-apj@hp.com)); Global ([mmd@hp.com](mailto:mmd@hp.com))
managed-desktop Device Images https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/managed-desktop/service-description/device-images.md
When you order a new device from an [approved manufacturer](device-requirements.
Work directly with the Dell sales representative, who will make sure that the image approved by Microsoft Managed Desktop is applied to devices for your order. For more questions on Dell devices, the image, and the ordering process, contact MMD_at_dell@dell.com. ### HP
-When you order new devices from HP, be sure to use the specific SKU listed in the Additional requirements section for each model found in the [Shop Windows 10 Pro business devices](https://www.microsoft.com/windowsforbusiness/view-all-devices) site (filter the view to show Microsoft Managed Desktop devices).
+When you order new devices from HP, be sure to use the specific SKU listed in the Additional requirements section for each model found in the [Shop Windows 10 Pro business devices](https://www.microsoft.com/windowsforbusiness/view-all-devices#view-all-filter) site (filter the view to show Microsoft Managed Desktop devices).
If you're ordering a device from HP that has been approved as an [exception](customizing.md) but isn't currently listed on the Device List page, be sure to request the SKU to be used for your model. We'll work with HP to get you this information by using your exception request. You can also contact HP directly for any questions about devices and device ordering instructions by using these addresses:
managed-desktop Device List https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/managed-desktop/service-description/device-list.md
- Title: Microsoft Managed Desktop devices
-description: This article lists the specifications for devices approved for Microsoft Managed Desktop.
-keywords: Microsoft Managed Desktop, Microsoft 365, service, documentation
-------
-# Microsoft Managed Desktop devices
-
-> [!NOTE]
-> Microsoft Managed Desktop no longer requires device models be from this list. As of May 3, 2021, all devices from an approved manufacturer should meet our posted hardware and software requirements. You can continue to use devices on this list with confidence. You can find more devices recommended for Microsoft Managed Desktop on the [Shop Windows 10 Pro business devices](https://www.microsoft.com/windowsforbusiness/view-all-devices) site. At that site, view the recommended devices by expanding **Features** in the **Filter by** area, and then selecting **Microsoft Managed Desktop**. Anytime you plan to enroll a particular device model in the service for the first time, you should test an example to ensure it'll deliver the user experience you expect. For more information, see [Validate new devices](../get-started/validate-device.md).
-
-Microsoft Managed Desktop regularly evaluates devices to be included in the service. This article lists the specific devices that are currently supported. For a more general statement of device requirements, see [Device requirements](device-requirements.md).
-
-For more information on Microsoft Managed Desktop, see [Microsoft Managed Desktop documentation and resources](../index.yml).
-
-[Select and validate new devices](../get-started/validate-device.md)
-
-<!-- Microsoft 365 E5; Device as a Service -->
-<!-- Split from device & technologies topic. Destination topic for aka.ms/device-list -->
-To be enrolled in Microsoft Managed Desktop, a device must be one of the following models and meet or exceed the listed specifications for RAM, processor family, and disk space.
-
-The links to devices here are for your reference only. If you want to order devices, work with your commercial channel contacts to ensure that you choose the correct configurations. In this table, the *archive date* is the date on which these models will be subject to a shorter Microsoft Managed Desktop service life; any such devices onboarded after this date will not receive a full three-year term of support from Microsoft Managed Desktop. Archived devices are also listed in [Microsoft Managed Desktop archived devices](archived-device-list.md). *Retirement date* is the date on which this model will no longer be supported by Microsoft Managed Desktop at all. On that date, all enrolled devices of this model will be removed from Microsoft Managed Desktop, no matter when they were enrolled.
-
-> [!NOTE]
-> Devices can be added to this table at any time, but we will provide 90 days notice for any changes affecting archive or retirement date. The devices most recently added are marked with **\***.
-
-## Microsoft Managed Desktop Devices
-
-### Dell
-
-| Model | Minimum specifications | Additional requirements | Archive date | Retirement date |
-|-|-||-|--|
-| **\*[Dell Latitude 5320 / 5320 2-in-1](https://www.dell.com/en-us/work/shop/dell-laptops-and-notebooks/new-latitude-5320-laptop-or-2-in-1/spd/latitude-13-5320-2-in-1-laptop?)** | 256 GB / Intel i5 / 8 GB RAM | IR camera required | Jan 22, 2023 | Jan 22, 2026 |
-| [Dell Latitude 3510](https://www.dell.com/en-us/work/shop/dell-laptops-and-notebooks/latitude-3510-business-laptop/spd/latitude-15-3510-laptop) | 256 GB / Intel i5 / 8 GB RAM | IR camera required | April 28, 2022 | April 28, 2025 |
-| **\*[Dell Latitude 5420](https://www.dell.com/en-us/work/shop/dell-laptops-and-notebooks/new-latitude-5420-laptop/spd/latitude-5420-laptop?)** | 256 GB / Intel i5 / 8 GB RAM | IR camera required | Jan 02, 2023 | Jan 02, 2026 |
-| [Dell Latitude 5510](https://www.dell.com/en-us/work/shop/laptops/15-5510/spd/latitude-15-5510-laptop)** | 256 GB / Intel i5 / 8 GB RAM | IR camera required | April 28, 2022 | April 28, 2025 |
-| [Dell Latitude 7310 / 7310 2-in-1](https://www.dell.com/en-us/work/shop/2-in-1-laptops-tablets/latitude-7310-business-laptop-or-2-in-1/spd/latitude-13-7310-2-in-1-laptop) | 256 GB / Intel i5 / 8 GB RAM | IR camera required | May 4, 2022 | May 4, 2025 |
-| **\*[Dell Latitude 7420 / 7420 2-in-1](https://www.dell.com/en-us/work/shop/dell-laptops-and-notebooks/new-latitude-7420-business-laptop-or-2-in-1/spd/latitude-14-7420-2-in-1-laptop)** | 256 GB / Intel i5 / 8 GB RAM | IR camera required | March 22, 2023 | March 22, 2026 |
-| **\*[Dell Latitude 9420 2-in-1](https://www.dell.com/en-us/work/shop/scc/sr/laptops/latitude-laptops?~ck=mn)** | 256 GB / Intel i5 / 8 GB RAM | IR camera required | Apr 2023 | Apr 2026 |
-| [Dell Latitude 9510](https://www.dell.com/en-us/work/shop/2-in-1-laptops-tablets/new-latitude-9510-laptop-or-2-in-1/spd/latitude-15-9510-2-in-1-laptop) | 256 GB / Intel i5 / 8 GB RAM | IR camera required | May 5, 2022 | May 5, 2025 |
-| [Dell Optiplex 3080](https://www.dell.com/en-us/work/shop/desktops-all-in-one-pcs/optiplex-3080-tower-and-small-form-factor/spd/optiplex-3080-desktop) | 128 GB / Intel i3 / 8 GB RAM | None | May 27, 2022 | May 27, 2025 |
-| [Dell Optiplex 7480](https://www.dell.com/en-us/work/shop/desktops-all-in-one-pcs/optiplex-7480-all-in-one-desktop/spd/optiplex-7480-aio) | 128 GB / Intel i3 / 8 GB RAM | None | May 15, 2022 | May 15, 2025 |
-| [Dell 5550 Workstation](https://www.dell.com/en-us/work/shop/laptops/new-15-5550-workstation/spd/precision-15-5550-laptop) | 256 GB / Intel i5 / 8 GB RAM | None | May 27, 2022 | May 27, 2025 |
-
-### HP
-
-| Model | Minimum specifications | Additional requirements | Archive date | Retirement date |
-|-|-||-|--|
-| [HP EliteBook 830 / 840 / 850 G7 Notebook PC](https://store.hp.com/us/en/pdp/hp-elitebook-830-g7-notebook-pc-customizable-8pv71av-mb) | 256 GB / Intel i5 / 8 GB RAM | SKU with 9MZ21AV | Nov 30, 2021 | Nov 30, 2024 |
-| [HP EliteBook x360 830 G7 Notebook PC](https://store.hp.com/us/en/pdp/hp-elitebook-x360-830-g7-notebook-pc-p-1f6c0ut-aba-1) | 256 GB / Intel i5 / 8 GB RAM | SKU with 9MZ21AV | Nov 30, 2021 | Nov 30, 2024 |
-| [HP Elite x2 G4 Tablet](https://store.hp.com/us/en/mdp/laptops/hp-elite-x2-3074457345617405170--1) | 256 GB / Intel i5 / 8 GB RAM | SKU with 5VS03AV | July 31, 2021 | July 31, 2024 |
-| [HP EliteBook x360 1030 / 1040 G7 Notebook PC](https://store.hp.com/us/en/pdp/hp-elitebook-x360-1030-g7-notebook-pc-customizable-8vs68av-mb#!) | 256 GB / Intel i5 / 8 GB RAM | SKU with 8XW08AV | Aug 31, 2021 | Aug 31, 2024 |
-| [HP Elite DragonFly](https://www8.hp.com/us/en/laptops/2-in-1s/elite-dragonfly-convertible.html) | 256 GB / Intel i5 / 8 GB RAM | SKU with 9MZ21AV | Mar 31, 2021 | Mar 31, 2024 |
-| **\*[HP EliteOne 800 G6 24/27 All-in-One PC](https://store.hp.com/us/en/pdp/hp-eliteone-800-g6-all-in-one-touch-pc)** | 256 / Intel i5 / 8 GB RAM | SKU with 9XM14AV | Jun 30, 2022 | Jun 30, 2025 |
-| **\*[HP EliteDesk 800 G6 Desktop Mini PC](https://store.hp.com/us/en/pdp/hp-elitedesk-800-g6-desktop-mini-pc#!)** | 256 / Intel i5 / 8 GB RAM | SKU with 9XM14AV | Jun 30, 2022 | Jun 30, 2025 |
-| [HP Z2 Mini G5 Workstation](https://store.hp.com/us/en/pdp/hp-z2-mini-g5-workstation-customizable-9jd39av-mb) | 256 GB / Intel i5 / 8 GB RAM | SKU with 8QR48AV| Dec 31, 2021 | Dec 31, 2024 |
-| **\*[HP ZBook Firefly 14/15 G7 Mobile Workstation](https://store.hp.com/us/en/mdp/laptops/hp-zbook-14u-mobile-workstation)** | 256 GB / Intel i5 / 8 GB RAM | SKU with 9MZ22AV, IR camera required | Nov 30, 2021 | Nov 30, 2024 |
-
-### Microsoft
-
-| Model | Minimum specifications | Additional requirements | Archive date | Retirement date |
-|-|-||-|--|
-| [Surface Book 3](https://www.microsoft.com/p/surface-book-3-for-business/93h0mb2gqd5b?activetab=pivot%3aoverviewtab) | 256 GB / Intel i5 / 8 GB RAM | None | May 21, 2022 | May 21, 2027 |
-| [Surface Go 2](https://www.microsoft.com/p/surface-go-2-for-business/8wzd6dhzj7kv?activetab=pivot%3aoverviewtab) | 128 GB / Intel Core M3 / 8 GB RAM | None | May 21, 2022 | May 21, 2027 |
-| [Surface Laptop Go](https://www.microsoft.com/surface/business/surface-laptop-go) | 128 GB / Intel i5 / 8 GB RAM | None | Oct 12, 2022 | Oct 12, 2025 |
-| [Surface Laptop 3](https://www.microsoft.com/surface/business/surface-laptop-3) | 128 GB / Intel i5 / 8 GB RAM | None | Oct 22, 2021 | Oct 22, 2024 |
-| [Surface Pro 7](https://www.microsoft.com/surface/business/surface-pro-7) | 128 GB / Intel i5 / 8 GB RAM | None | Oct 22, 2021 | Oct 22, 2024 |
-| **\*[Surface Pro 7+](https://www.microsoft.com/p/surface-pro-7-for-business/8p43n3k93409?activetab=pivot%3aoverviewtab)** | 128 GB / Intel i5 / 8 GB RAM | None | Jan 15, 2022 | Jan 15, 2025 |
-
-In addition, the device must also meet these criteria:
--- If a specific SKU is listed in the device requirements, make sure you use it when you order. Doing so ensures that devices comply with Microsoft Managed Desktop software requirements.-- Not have completed the Windows first-run experience.-- Be registered with Microsoft Managed Desktop using the [Device Registration](../get-started/register-devices-self.md) feature-
-> [!NOTE]
-> Devices with a 2.0 GHz or faster processor will provide a much better experience for users involved in these activities:
->
-> - Using video conferencing with Teams. See [Hardware requirements for Microsoft Teams](/microsoftteams/hardware-requirements-for-the-teams-app) for details.
-> - Using one device for several different workloads.
-> - Using multiple monitors.
-
-## More help
-
-These resources can help answer questions that you might have about specific devices:
--- For more questions on Dell devices contact <a href="mailto:MMD_at_dell@dell.com">MMD_at_dell@dell.com</a>.--- For more questions on HP devices and device ordering instructions, contact: Americas (<a href="mailto:mmd-americas@hp.com">mmd-americas@hp.com</a>); Europe/Middle East/Africa (<a href="mailto:mmd-emea@hp.com">mmd-emea@hp.com</a>); Asia Pacific/Japan (<a href="mailto:mmd-apj@hp.com">mmd-apj@hp.com</a>); Global (<a href="mailto:mmd@hp.com">mmd@hp.com</a>)
scheduler Scheduler Setup https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/scheduler/scheduler-setup.md
description: "Setting up Scheduler for Microsoft 365."
# Setting up Scheduler for Microsoft 365 + To set up the Scheduler for Microsoft 365, following are the prerequisites:
-|**What do I need?** |**Description** |
+| What do I need? | Description |
|-|-| |Cortana mailbox |Tenant admins will need to set a mailbox to serve as the ΓÇ£CortanaΓÇ¥ mailbox (that is, cortana@yourdomain.com). | |Exchange Online mailbox |Users must have an Exchange Online mail and calendar |
-|Scheduler license |For licensing and pricing information, see [Scheduler for Microsoft 365](https://www.microsoft.com/microsoft-365/meeting-scheduler-pricing). |
+|Scheduler license |For licensing and pricing information, see [Scheduler for Microsoft 365](https://www.microsoft.com/en-us/microsoft-365/meeting-scheduler-pricing). |
## Create a mailbox for Cortana+ An Exchange mailbox in your tenant acts as the Cortana mailbox for your tenant to send and receive emails to and from Cortana. All emails sent to Cortana are retained in your tenantΓÇÖs Cortana mailbox based on your retention policy. - Use the Microsoft 365 admin center to create a user mailbox. A 30-day retention policy is recommended.
After a unique mailbox for Cortana Scheduler has been created, you must designat
To designate the Cortana Scheduler mailbox, an authorized admin must run a one-line PowerShell command. 1. Connect to Microsoft 365 remote PowerShell run space for your organization.
-2. Run the following PowerShell script to designate the mailbox for Scheduler:
-```powershell
-
-Set-mailbox cortana@contoso.com -SchedulerAssistant:$true
-
-```
+2. Run the following PowerShell script to designate the mailbox for Scheduler:
-After running this "set" command on the Cortana Scheduler mailbox, a new "PersistedCapability" is set on the mailbox to note that this mailbox is the "SchedulerAssistant".
+ ```powershell
+ Set-mailbox cortana@contoso.com -SchedulerAssistant:$true
+ ```
+
+ After running this "set" command on the Cortana Scheduler mailbox, a new "PersistedCapability" is set on the mailbox to note that this mailbox is the "SchedulerAssistant".
> [!NOTE]
-> Follow these steps to connect your organization to PowerShell if youΓÇÖve not done so previously: [Connect to Microsoft 365 with PowerShell - Microsoft 365 Enterprise | Microsoft Docs](../enterprise/connect-to-microsoft-365-powershell.md)
+> Follow these steps to connect your organization to PowerShell if youΓÇÖve not done so previously: [Connect to Microsoft 365 with PowerShell](../enterprise/connect-to-microsoft-365-powershell.md).
To discover which mailbox in your organization is currently set as the Cortana Scheduler assistant, run the get function:
-
-```powershell
+```powershell
Get-mailbox | where {$_.PersistedCapabilities -Match "SchedulerAssistant"}- ``` > [!IMPORTANT] > It might take up to two hours for the Scheduler mailbox to complete full provisioning to set the SchedulerAssistant capability. ## Exchange Online mailbox+ Scheduler is an add-on to Microsoft 365. Meeting organizers must have an Exchange Online mailbox and calendar for Scheduler to work. ## Exchange requirements
In addition to licensing Scheduler, you must have one of the following licenses:
- Exchange Online Plan 1 or Plan 2 license. > [!Note]
-> **Scheduler for Microsoft 365** isn't available for users of Office 365 operated by 21Vianet in China. It's also not available for users of Microsoft 365 with the German cloud that uses the data trustee German Telekom. It is supported for users in Germany whose data location isn't in the German datacenter.
+> **Scheduler for Microsoft 365** is currently available for worldwide multi-tenants, in English only.</br>
+>
+> It is not available for users of Office 365 operated by 21Vianet in China or users of Microsoft 365 with the German cloud that uses the data trustee German Telekom. It is supported for users in Germany whose data location isn't in the German datacenter.
>
->This feature is also not supported for users of the Government Cloud, including GCC, Consumer, GCC High, or DoD.
+> This feature is also not supported for users of the Government Cloud, including GCC, Consumer, GCC High, or DoD.
security Configure Endpoints Gp https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/configure-endpoints-gp.md
For security reasons, the package used to Offboard devices will expire 30 days a
7. Select **Run whether user is logged on or not** and check the **Run with highest privileges** check-box.
-8. Go to the **Actions** tab and click **New...**. Ensure that **Start a program** is selected in the **Action** field. Enter the file name and location of the shared *WindowsDefenderATPOffboardingScript_valid_until_YYYY-MM-DD.cmd* file.
+8. Go to the **Actions** tab and click **New...**. Ensure that **Start a program** is selected in the **Action** field. Enter the NetBIOS path of the shared *WindowsDefenderATPOffboardingScript_valid_until_YYYY-MM-DD.cmd* file.
9. Click **OK** and close any open GPMC windows.
security Evaluate Network Protection https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/evaluate-network-protection.md
Enable network protection in audit mode to see which IP addresses and domains wo
The network connection will be allowed and a test message will be displayed.
-![Example notification that says Connection blocked: Your IT administrator caused Windows Security to block this network connection. Contact your IT help desk.](/microsoft-365/security/defender-endpoint/images/np-notif)
+![Example notification that says Connection blocked: Your IT administrator caused Windows Security to block this network connection. Contact your IT help desk.](images/np-notif.png)
## Review network protection events in Windows Event Viewer
security Manage Updates Baselines Microsoft Defender Antivirus https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/manage-updates-baselines-microsoft-defender-antivirus.md
-+ ms.technology: mde Previously updated : 06/23/2021 Last updated : 07/06/2021 # Manage Microsoft Defender Antivirus updates and apply baselines
Engine updates are included with security intelligence updates and are released
## Product updates
-Microsoft Defender Antivirus requires [monthly updates (KB4052623)](https://support.microsoft.com/help/4052623/update-for-windows-defender-antimalware-platform) (known as *platform updates*), and will receive major feature updates alongside Windows 10 releases.
+Microsoft Defender Antivirus requires [monthly updates (KB4052623)](https://support.microsoft.com/help/4052623/update-for-windows-defender-antimalware-platform) known as *platform updates*.
You can manage the distribution of updates through one of the following methods:
You can manage the distribution of updates through one of the following methods:
For more information, see [Manage the sources for Microsoft Defender Antivirus protection updates](/mem/configmgr/protect/deploy-use/endpoint-definitions-wsus#to-synchronize-endpoint-protection-definition-updates-in-standalone-wsus). > [!NOTE]
-> Monthly updates are released in phases, resulting in multiple packages visible in your [Window Server Update Services](/windows-server/administration/windows-server-update-services/get-started/windows-server-update-services-wsus).
+> - Monthly updates are released in phases, resulting in multiple packages visible in your [Window Server Update Services](/windows-server/administration/windows-server-update-services/get-started/windows-server-update-services-wsus).
+> - This article lists changes that are included in the broad release channel. [See the latest broad channel release here](https://www.microsoft.com/security/encyclopedia/adlpackages.aspx?action=info).
+> - To learn more about the gradual rollout process, and to see more information about the next release, see [Manage the gradual rollout process for Microsoft Defender updates](manage-gradual-rollout.md).
+> - To learn more about security intelligence updates, see [Security intelligence updates for Microsoft Defender Antivirus and other Microsoft antimalware](https://www.microsoft.com/wdsi/defenderupdates).
## Monthly platform and engine versions
All our updates contain
- performance improvements; - serviceability improvements; and - integration improvements (Cloud, [Microsoft 365 Defender](/microsoft-365/security/defender/microsoft-365-defender)).
-<br/><br/>
+<br/>
<details>
+<summary> June-2021 (Platform: 4.18.2106.5 | Engine: 1.1.18300.4)</summary>
+
+&ensp;Security intelligence update version: **1.343.17.0**
+&ensp;Released: **June 28, 2021**
+&ensp;Platform: **4.18.2106.5**
+&ensp;Engine: **1.1.18300.4**
+&ensp;Support phase: **Security and Critical Updates**
+
+### What's new
+- New controls for managing the gradual rollout process of Microsoft Defender updates. See [Manage the gradual rollout process for Microsoft Defender updates](manage-gradual-rollout.md).
+- Improvement to the behavior monitoring engine
+- Improvements to the rollout of antimalware definitions
+- Extended Edge network event inspections
+
+### Known Issues
+No known issues
+<br/>
+</details><details>
<summary> May-2021 (Platform: 4.18.2105.4 | Engine: 1.1.18200.4)</summary> &ensp;Security intelligence update version: **1.341.8.0**
No known issues
### What's new - Additional behavior monitoring logic-- Improved kernel mode keylogger detection
+- Improved kernel mode key logger detection
- Added new controls to manage the gradual rollout process for [Microsoft Defender updates](manage-gradual-rollout.md) ### Known Issues No known issues <br/>
-</details><details>
+</details>
+
+### Previous version updates: Technical upgrade support only
+
+After a new package version is released, support for the previous two versions is reduced to technical support only. Versions older than that are listed in this section, and are provided for technical upgrade support only.
+<details>
<summary> March-2021 (Platform: 4.18.2103.7 | Engine: 1.1.18000.5)</summary> &ensp;Security intelligence update version: **1.335.36.0** &ensp;Released: **April 2, 2021** &ensp;Platform: **4.18.2103.7** &ensp;Engine: **1.1.18000.5**
-&ensp;Support phase: **Security and Critical Updates**
+&ensp;Support phase: **Technical upgrade support (only)**
### What's new
No known issues
### Known Issues No known issues <br/>
-</details>
-
-### Previous version updates: Technical upgrade support only
-
-After a new package version is released, support for the previous two versions is reduced to technical support only. Versions older than that are listed in this section, and are provided for technical upgrade support only.
-<br/><br/>
-<details>
+</details><details>
<summary> February-2021 (Platform: 4.18.2102.3 | Engine: 1.1.17900.7)</summary> &ensp;Security intelligence update version: **1.333.7.0**
security Microsoft Secure Score Whats Coming https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender/microsoft-secure-score-whats-coming.md
Microsoft Secure Score can be found at https://security.microsoft.com/securescor
We're making some changes in the near future to make [Microsoft Secure Score](microsoft-secure-score.md) a better representative of your security posture and improve usability. Your score and the maximum possible score may change.
-### June 2021
+### July 2021
-#### Remove improvement action related to Microsoft Cloud App Security
+#### Add improvement action related to Microsoft Teams
+
+- Restrict dial-in users from bypassing a meeting lobby.
+- Limit external participants from having control in a Teams meeting.
+- Restrict anonymous users from starting Teams meetings.
+- Require lobbies to be set up for Teams meetings.
+- Configure which users are allowed to be present in Teams meetings.
-- Use Cloud App Security to detect anomalous behavior ## Related resources
security Microsoft Secure Score Whats New https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender/microsoft-secure-score-whats-new.md
ms.technology: m365d
To make Microsoft Secure Score a better representative of your security posture, we have made some changes. To learn about planned changes, see [What's coming in Microsoft Secure Score?](microsoft-secure-score-whats-coming.md) Microsoft Secure Score can be found at https://security.microsoft.com/securescore in the [Microsoft 365 security center](overview-security-center.md).
-
+
+## June 2021
+
+### Remove improvement action related to Microsoft Cloud App Security
+
+- Use Cloud App Security to detect anomalous behavior.
+ ## February 2021 ### Compatibility with Graph API
If you have any issues, let us know by posting in the [Security, Privacy & Compl
- [Assess your security posture](microsoft-secure-score-improvement-actions.md) - [Track your Microsoft Secure Score history and meet goals](microsoft-secure-score-history-metrics-trends.md)-- [What's coming](microsoft-secure-score-whats-coming.md)
+- [What's coming](microsoft-secure-score-whats-coming.md)
security Learn About Spoof Intelligence https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/office-365-security/learn-about-spoof-intelligence.md
The rest of this article explains how to use the spoof intelligence insight in t
For more information, see [Permissions in Exchange Online](/exchange/permissions-exo/permissions-exo).
- **Notes**:
-
- - Adding users to the corresponding Azure Active Directory role in the Microsoft 365 admin center gives users the required permissions _and_ permissions for other features in Microsoft 365. For more information, see [About admin roles](../../admin/add-users/about-admin-roles.md).
- - The **View-Only Organization Management** role group in [Exchange Online](/Exchange/permissions-exo/permissions-exo#role-groups) also gives read-only access to the feature.
+ > [!NOTE]
+ > - Adding users to the corresponding Azure Active Directory role in the Microsoft 365 admin center gives users the required permissions _and_ permissions for other features in Microsoft 365. For more information, see [About admin roles](../../admin/add-users/about-admin-roles.md).
+ > - The **View-Only Organization Management** role group in [Exchange Online](/Exchange/permissions-exo/permissions-exo#role-groups) also gives read-only access to the feature.
- You enable and disable spoof intelligence in anti-phishing policies in EOP and Microsoft Defender for Office 365. Spoof intelligence is enabled by default. For more information, see [Configure anti-phishing policies in EOP](configure-anti-phishing-policies-eop.md) or [Configure anti-phishing policies in Microsoft Defender for Office 365](configure-mdo-anti-phishing-policies.md).
The rest of this article explains how to use the spoof intelligence insight in t
## Open the spoof intelligence insight in the Microsoft 365 Defender portal
-1. In the Microsoft 365 Defender portal, go to **Email & Collaboration** \> **Policies & Rules** \> **Threat policies** page \> **Policies** section \> **Anti-phishing**.
+1. In the Microsoft 365 Defender portal, go to **Email & Collaboration** \> **Policies & Rules** \> **Threat policies** page \> **Tenant Allow/Block Lists**.
-2. On the **Anti-phishing** page, the spoof intelligence insight looks like this:
+2. On the **Tenant Allow/Block Lists** page, the spoof intelligence insight looks like this:
![Spoof intelligence insight on the Anti-phishing policy page](../../media/m365-sc-spoof-intelligence-insight.png)