| Category | Microsoft Docs article | Related commit history on GitHub | Change details |
|---|---|---|---|
| enterprise | Microsoft 365 Exchange Monitoring Service Advisories | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/enterprise/microsoft-365-exchange-monitoring-service-advisories.md | -description: "Service advisory explains surge in eDiscovery cmdlet exceptions affecting Compliance Search PowerShell cmdlets.." +description: "Service advisory explains surge in eDiscovery cmdlet exceptions affecting Compliance Search PowerShell cmdlets." These service advisories are displayed in the Microsoft 365 admin center. To vie The advisory informs administrators about the issue and its potential impact on eDiscovery operations. It highlights that users encounter errors when executing Compliance Search cmdlets due to invalid search queries which can hinder their ability to perform necessary eDiscovery tasks effectively. -For guidance on how to create a compliance search query, please reference: [New-ComplianceSearch (ExchangePowerShell) | Microsoft Learn](/powershell/module/exchange/new-compliancesearch?view=exchange-ps) +For guidance on how to create a compliance search query, please reference: [New-ComplianceSearch (ExchangePowerShell) | Microsoft Learn](/powershell/module/exchange/new-compliancesearch?view=exchange-ps&preserve-view=true) -For guidance on keyword queries and search conditions, please reference: [Keyword queries and search conditions for eDiscovery - Microsoft Purview (compliance) | Microsoft Learn](/purview/ediscovery-keyword-queries-and-search-conditions?view=o365-worldwide) +For guidance on keyword queries and search conditions, please reference: [Keyword queries and search conditions for eDiscovery - Microsoft Purview (compliance) | Microsoft Learn](/purview/ediscovery-keyword-queries-and-search-conditions) ## How often will I see these service advisories? -Once the spike in eDiscovery cmdlet exceptions is resolved, the advisory will be updated accordingly or removed from the service health dashboard. +Once the spike in eDiscovery cmdlet exceptions is resolved, the advisory will be updated accordingly or removed from the service health dashboard. |
| frontline | Shifts Connector Blue Yonder Admin Center Manage | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/frontline/shifts-connector-blue-yonder-admin-center-manage.md | You can use the [Shifts connector wizard](shifts-connector-wizard.md) (Preview) For a complete list of error messages and how to resolve them, see [List of error messages](#list-of-error-messages) later in this article. -#### Edit connection instance settings +#### Edit connection instance -You'll need to choose the data that your Shifts users can see and change. You'll be given the following options for these settings: +To **edit your connection instance settings**, you'll need to choose the data that your Shifts users can see and change. You'll be given the following options for these settings: - **Shifts users will not see provider data**: Data won't sync between Blue Yonder WFM and Shifts. <br> - **Shifts users can see provider data**: Data syncing is unidirectional from Blue Yonder WFM to Shifts. <br> You'll need to choose the data that your Shifts users can see and change. You'll > > After you edit your settings, make sure you follow the steps to [Disable open shifts, open shifts requests, swap requests, and time off requests.](/microsoft-365/frontline/shifts-connector-wizard#disable-open-shifts-open-shifts-requests-swap-requests-and-time-off-requests) +To **Edit your connection instance mappings**, you'll have the choice of: ++- Adding new mappings, by following the same process as when you first create your connection instance. See [Map Blue Yonder Workforce Management instances to teams](/microsoft-365/frontline/shifts-connector-wizard#map-blue-yonder-workforce-management-instances-to-teams) +- Edit existent mappings, to update the Microsoft Teams to which a WFM instance is connected to. + If you are mapping to team in Microsoft Teams that has previously used Shifts, make sure you [Remove schedule entities from teams you want to map](/microsoft-365/frontline/shifts-connector-wizard?#remove-schedule-entities-from-teams-you-want-to-map) +- Deleting active mappings, either by selecting to un-tick the checkbox of the WFM instance mapped, or by uploading the CSV file with the removed un-desired mapping row. ++ ## List of error messages Here's the list of error messages that you may encounter and information to help you resolve them. |
| frontline | Shifts Connector Blue Yonder Powershell Setup | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/frontline/shifts-connector-blue-yonder-powershell-setup.md | You can use PowerShell to view an error report, change connection settings, disa ### Set up a connection and create a new team ```powershell-#Map WFM instances to teams script +#Map WFM sites to teams script Write-Output "Map WFM sites to teams" Start-Sleep 1 #Ensure Teams module is at least version x Write-Output "Checking Teams module version" try {- Get-InstalledModule -Name "MicrosoftTeams" -MinimumVersion 5.2.0 + Get-InstalledModule -Name "MicrosoftTeams" -MinimumVersion 5.2.0 } catch {- throw + throw } #Connect to MS Graph $retailWebApiUrl = Read-Host -Prompt 'Input retail web api url' $siteManagerUrl = Read-Host -Prompt 'Input site manager url' $testResult = Test-CsTeamsShiftsConnectionValidate `- -Name $ConnectionName ` - -ConnectorId $BlueYonderId ` + -Name $ConnectionName ` + -ConnectorId $BlueYonderId ` -ConnectorSpecificSettings (New-Object Microsoft.Teams.ConfigAPI.Cmdlets.Generated.Models.ConnectorSpecificBlueYonderSettingsRequest ` -Property @{ AdminApiUrl = $adminApiUrl $testResult = Test-CsTeamsShiftsConnectionValidate ` LoginPwd = $plainPwd }) if ($NULL -ne $testResult.Code) {- Write-Output $testResult - throw "Validation failed, conflict found" + Write-Output $testResult + throw "Validation failed, conflict found" } Write-Output "Test complete, no conflicts found" $ConnectionResponse = New-CsTeamsShiftsConnection ` -Name $ConnectionName ` -ConnectorId $BlueYonderId ` -ConnectorSpecificSettings (New-Object Microsoft.Teams.ConfigAPI.Cmdlets.Generated.Models.ConnectorSpecificBlueYonderSettingsRequest `- -Property @{ - AdminApiUrl = $adminApiUrl - SiteManagerUrl = $siteManagerUrl - EssApiUrl = $essApiUrl - RetailWebApiUrl = $retailWebApiUrl - CookieAuthUrl = $cookieAuthUrl - FederatedAuthUrl = $federatedAuthUrl - LoginUserName = $WfmUserName - LoginPwd = $plainPwd - }) + -Property @{ + AdminApiUrl = $adminApiUrl + SiteManagerUrl = $siteManagerUrl + EssApiUrl = $essApiUrl + RetailWebApiUrl = $retailWebApiUrl + CookieAuthUrl = $cookieAuthUrl + FederatedAuthUrl = $federatedAuthUrl + LoginUserName = $WfmUserName + LoginPwd = $plainPwd + }) $ConnectionId = $ConnectionResponse.Id if ($null -ne $ConnectionId){- Write-Output "Successfully created connection" + Write-Output "Successfully created connection" } else {- throw "Connection creation failed" + throw "Connection creation failed" } #Create a connection instance $InstanceName = Read-Host -Prompt "Input connection instance name" #Read sync scenarios for connection instance function GetSyncScenarioSetting {- param ( - $SettingName - ) - $TwoWay = New-Object System.Management.Automation.Host.ChoiceDescription '&TwoWay', 'TwoWay' - $Disabled = New-Object System.Management.Automation.Host.ChoiceDescription '&Disabled', 'Disabled' - $FromWfmToShifts = New-Object System.Management.Automation.Host.ChoiceDescription '&FromWfmToShifts', 'FromWfmToShifts' - $options = [System.Management.Automation.Host.ChoiceDescription[]]($TwoWay, $Disabled, $FromWfmToShifts) - $result = $host.ui.PromptForChoice("Set sync scenario for $SettingName", "", $options, 0) -- switch ($result) - { - 0 { return "TwoWay" } - 1 { return "Disabled" } - 2 { return "FromWfmToShifts" } - } + param ( + $SettingName + ) + $TwoWay = New-Object System.Management.Automation.Host.ChoiceDescription '&TwoWay', 'TwoWay' + $Disabled = New-Object System.Management.Automation.Host.ChoiceDescription '&Disabled', 'Disabled' + $FromWfmToShifts = New-Object System.Management.Automation.Host.ChoiceDescription '&FromWfmToShifts', 'FromWfmToShifts' + $options = [System.Management.Automation.Host.ChoiceDescription[]]($TwoWay, $Disabled, $FromWfmToShifts) + $result = $host.ui.PromptForChoice("Set sync scenario for $SettingName", "", $options, 0) ++ switch ($result) + { + 0 { return "TwoWay" } + 1 { return "Disabled" } + 2 { return "FromWfmToShifts" } + } }-$SyncScenarioOfferShiftRequest = GetSyncScenarioSetting "Offer Shift Request" $SyncScenarioOpenShift = GetSyncScenarioSetting "Open Shift" $SyncScenarioOpenShiftRequest = GetSyncScenarioSetting "Open Shift Request" $SyncScenarioShift = GetSyncScenarioSetting "Shift" $SyncScenarioUserShiftPreference = GetSyncScenarioSetting "User Shift Preference #Read admin email list [psobject[]]$AdminEmailList = @() while ($true){- $AdminEmail = Read-Host -Prompt "Enter admin's email to receive error report" - $AdminEmailList += $AdminEmail - $title = 'Adding another email' - $question = 'Would you like to add another admin email?' - $choices = '&Yes', '&No' - $decision = $Host.UI.PromptForChoice($title, $question, $choices, 1) - if ($decision -eq 1) { - break - } + $AdminEmail = Read-Host -Prompt "Enter admin's email to receive error report" + $AdminEmailList += $AdminEmail + $title = 'Adding another email' + $question = 'Would you like to add another admin email?' + $choices = '&Yes', '&No' + $decision = $Host.UI.PromptForChoice($title, $question, $choices, 1) + if ($decision -eq 1) { + break + } } $InstanceResponse = New-CsTeamsShiftsConnectionInstance `- -ConnectionId $ConnectionId ` + -ConnectionId $ConnectionId ` -ConnectorAdminEmail $AdminEmailList ` -DesignatedActorId $teamsUserId ` -Name $InstanceName ` -SyncFrequencyInMin $syncFreq `- -SyncScenarioOfferShiftRequest $SyncScenarioOfferShiftRequest ` - -SyncScenarioOpenShift $SyncScenarioOpenShift ` - -SyncScenarioOpenShiftRequest $SyncScenarioOpenShiftRequest ` - -SyncScenarioShift $SyncScenarioShift ` - -SyncScenarioSwapRequest $SyncScenarioSwapRequest ` - -SyncScenarioTimeCard $SyncScenarioTimeCard ` - -SyncScenarioTimeOff $SyncScenarioTimeOff ` - -SyncScenarioTimeOffRequest $SyncScenarioTimeOffRequest ` - -SyncScenarioUserShiftPreference $SyncScenarioUserShiftPreference + -SyncScenarioOpenShift $SyncScenarioOpenShift ` + -SyncScenarioOpenShiftRequest $SyncScenarioOpenShiftRequest ` + -SyncScenarioShift $SyncScenarioShift ` + -SyncScenarioSwapRequest $SyncScenarioSwapRequest ` + -SyncScenarioTimeCard $SyncScenarioTimeCard ` + -SyncScenarioTimeOff $SyncScenarioTimeOff ` + -SyncScenarioTimeOffRequest $SyncScenarioTimeOffRequest ` + -SyncScenarioUserShiftPreference $SyncScenarioUserShiftPreference $InstanceId = $InstanceResponse.id if ($null -ne $InstanceId){ if ($null -ne $InstanceId){ $mappings=@() while ($true) {- #Create a new Teams team with owner set to system account and name set to the site name - Write-Output "Creating a Teams team" - $teamsTeamName = Read-Host -Prompt "Input the Teams team name" - $Team = New-Team -DisplayName $teamsTeamName -Visibility "Public" -Owner $teamsUserId - Write-Output "Successfully created a team" - $TeamsTeamId=$Team.GroupId -- #Retrieve the list of wfm locations - Write-Output "Listing the WFM team sites" - $WfmTeamIds = Get-CsTeamsShiftsConnectionWfmTeam -ConnectorInstanceId $InstanceId - Write-Output $WfmTeamIds - if (($NULL -ne $WfmTeamIds) -and ($WfmTeamIds.Count -gt 0)){ - [System.String]$WfmTeamId = Read-Host -Prompt "Input the ID of WFM team you want to map" - } - else { - throw "The WfmTeamId list is null or empty" - } -- #Retrieve the list of WFM users and their roles - Write-Output "Listing WFM users and roles" - $WFMUsers = Get-CsTeamsShiftsConnectionWfmUser -ConnectorInstanceId $InstanceId -WfmTeamId $WfmTeamId - Write-Output $WFMUsers -- #Add users to the Team for Shifts - Write-Output "Adding users to Teams team" - $currentUser = Read-Host -Prompt "Input the current user's user name or AAD ID" - Add-TeamUser -GroupId $TeamsTeamId -User $currentUser -Role Owner - $failedWfmUsers=@() - foreach ($user in $WFMUsers) { - try { - $userEmail = $user.Name + "@" +$domain - Add-TeamUser -GroupId $TeamsTeamId -User $userEmail - } catch { - $failedWfmUsers+=$user - } - } - if($failedWfmUsers.Count -gt 0){ - Write-Output "There are WFM users not existed in Teams tenant:" - Write-Output $failedWfmUsers - } -- #Enable scheduling in the group - $RequestBody = @{ - Enabled = $true - TimeZone = "America/Los_Angeles" - } - $teamUpdateUrl="https://graph.microsoft.com/v1.0/teams/"+$TeamsTeamId+"/schedule" - Invoke-MgGraphRequest -Uri $teamUpdateUrl -Method PUT -Body $RequestBody -- #Create a mapping of the new team to the instance - Write-Output "Create a mapping of the new team to the site" - $TimeZone = Read-Host -Prompt "Input the time zone of team mapping" - $mapping = @{ - teamId = $TeamsTeamId - wfmTeamId = $WfmTeamId - timeZone = $TimeZone - } - $mappings += , $mapping -- $title = 'Connecting another team' - $question = 'Would you like to connect another team?' - $choices = '&Yes', '&No' -- $decision = $Host.UI.PromptForChoice($title, $question, $choices, 1) - if ($decision -eq 1) { - break - } + #Create a new Teams team with owner set to system account and name set to the site name + Write-Output "Creating a Teams team" + $teamsTeamName = Read-Host -Prompt "Input the Teams team name" + $Team = New-Team -DisplayName $teamsTeamName -Visibility "Public" -Owner $teamsUserId + Write-Output "Successfully created a team" + $TeamsTeamId=$Team.GroupId ++ #Retrieve the list of wfm locations + Write-Output "Listing the WFM team sites" + $WfmTeamIds = Get-CsTeamsShiftsConnectionWfmTeam -ConnectorInstanceId $InstanceId + Write-Output $WfmTeamIds + if (($NULL -ne $WfmTeamIds) -and ($WfmTeamIds.Count -gt 0)){ + [System.String]$WfmTeamId = Read-Host -Prompt "Input the ID of WFM team you want to map" + } + else { + throw "The WfmTeamId list is null or empty" + } ++ #Retrieve the list of WFM users and their roles + Write-Output "Listing WFM users and roles" + $WFMUsers = Get-CsTeamsShiftsConnectionWfmUser -ConnectorInstanceId $InstanceId -WfmTeamId $WfmTeamId + Write-Output $WFMUsers ++ #Add users to the Team for Shifts + Write-Output "Adding users to Teams team" + $currentUser = Read-Host -Prompt "Input the current user's user name or AAD ID" + Add-TeamUser -GroupId $TeamsTeamId -User $currentUser -Role Owner + $failedWfmUsers=@() + foreach ($user in $WFMUsers) { + try { + $userEmail = $user.Name + "@" +$domain + Add-TeamUser -GroupId $TeamsTeamId -User $userEmail + } catch { + $failedWfmUsers+=$user + } + } + if($failedWfmUsers.Count -gt 0){ + Write-Output "There are WFM users not existed in Teams tenant:" + Write-Output $failedWfmUsers + } ++ #Enable scheduling in the group + $RequestBody = @{ + Enabled = $true + TimeZone = "America/Los_Angeles" + } + $teamUpdateUrl="https://graph.microsoft.com/v1.0/teams/"+$TeamsTeamId+"/schedule" + Invoke-MgGraphRequest -Uri $teamUpdateUrl -Method PUT -Body $RequestBody ++ #Create a mapping of the new team to the instance + Write-Output "Create a mapping of the new team to the site" + $TimeZone = Read-Host -Prompt "Input the time zone of team mapping" + $mapping = @{ + teamId = $TeamsTeamId + wfmTeamId = $WfmTeamId + timeZone = $TimeZone + } + $mappings += , $mapping ++ $title = 'Connecting another team' + $question = 'Would you like to connect another team?' + $choices = '&Yes', '&No' ++ $decision = $Host.UI.PromptForChoice($title, $question, $choices, 1) + if ($decision -eq 1) { + break + } } $batchMappingResponse = New-CsTeamsShiftsConnectionBatchTeamMap -ConnectorInstanceId $InstanceId -TeamMapping @($mappings) if ($null -ne $batchMappingResponse.OperationId){- "The mapping has begun asynchronously. To query mapping results run Get-CsTeamsShiftsConnectionOperation with the operation Id." + "The mapping has begun asynchronously. To query mapping results run Get-CsTeamsShiftsConnectionOperation with the operation Id." } else {- throw "The mapping has failed due to validation errors." + throw "The mapping has failed due to validation errors." } Write-Output $batchMappingResponse Start-Sleep 1 #Ensure Teams module is at least version x Write-Output "Checking Teams module version" try {- Get-InstalledModule -Name "MicrosoftTeams" -MinimumVersion 5.2.0 + Get-InstalledModule -Name "MicrosoftTeams" -MinimumVersion 5.2.0 } catch {- throw + throw } #Connect to MS Graph $retailWebApiUrl = Read-Host -Prompt 'Input retail web api url' $siteManagerUrl = Read-Host -Prompt 'Input site manager url' $testResult = Test-CsTeamsShiftsConnectionValidate `- -Name $ConnectionName ` - -ConnectorId $BlueYonderId ` - -ConnectorSpecificSettings (New-Object Microsoft.Teams.ConfigAPI.Cmdlets.Generated.Models.ConnectorSpecificBlueYonderSettingsRequest ` - -Property @{ - AdminApiUrl = $adminApiUrl - SiteManagerUrl = $siteManagerUrl - EssApiUrl = $essApiUrl - RetailWebApiUrl = $retailWebApiUrl - CookieAuthUrl = $cookieAuthUrl - FederatedAuthUrl = $federatedAuthUrl - LoginUserName = $WfmUserName - LoginPwd = $plainPwd - }) - + -Name $ConnectionName ` + -ConnectorId $BlueYonderId ` + -ConnectorSpecificSettings (New-Object Microsoft.Teams.ConfigAPI.Cmdlets.Generated.Models.ConnectorSpecificBlueYonderSettingsRequest ` + -Property @{ + AdminApiUrl = $adminApiUrl + SiteManagerUrl = $siteManagerUrl + EssApiUrl = $essApiUrl + RetailWebApiUrl = $retailWebApiUrl + CookieAuthUrl = $cookieAuthUrl + FederatedAuthUrl = $federatedAuthUrl + LoginUserName = $WfmUserName + LoginPwd = $plainPwd + }) + if ($NULL -ne $testResult.Code) {- Write-Output $testResult - throw "Validation failed, conflict found" + Write-Output $testResult + throw "Validation failed, conflict found" } Write-Host "Test complete, no conflicts found" $ConnectionResponse = New-CsTeamsShiftsConnection ` -Name $ConnectionName ` -ConnectorId $BlueYonderId ` -ConnectorSpecificSettings (New-Object Microsoft.Teams.ConfigAPI.Cmdlets.Generated.Models.ConnectorSpecificBlueYonderSettingsRequest `- -Property @{ - AdminApiUrl = $adminApiUrl - SiteManagerUrl = $siteManagerUrl - EssApiUrl = $essApiUrl - RetailWebApiUrl = $retailWebApiUrl - CookieAuthUrl = $cookieAuthUrl - FederatedAuthUrl = $federatedAuthUrl - LoginUserName = $WfmUserName - LoginPwd = $plainPwd - }) + -Property @{ + AdminApiUrl = $adminApiUrl + SiteManagerUrl = $siteManagerUrl + EssApiUrl = $essApiUrl + RetailWebApiUrl = $retailWebApiUrl + CookieAuthUrl = $cookieAuthUrl + FederatedAuthUrl = $federatedAuthUrl + LoginUserName = $WfmUserName + LoginPwd = $plainPwd + }) $ConnectionId = $ConnectionResponse.Id if ($null -ne $ConnectionId){- Write-Output "Successfully created connection" + Write-Output "Successfully created connection" } else {- throw "Connection creation failed" + throw "Connection creation failed" } #Create a connection instance $InstanceName = Read-Host -Prompt "Input connection instance name" #Read sync scenarios for connection instance function GetSyncScenarioSetting {- param ( - $SettingName - ) - $TwoWay = New-Object System.Management.Automation.Host.ChoiceDescription '&TwoWay', 'TwoWay' - $Disabled = New-Object System.Management.Automation.Host.ChoiceDescription '&Disabled', 'Disabled' - $FromWfmToShifts = New-Object System.Management.Automation.Host.ChoiceDescription '&FromWfmToShifts', 'FromWfmToShifts' - $options = [System.Management.Automation.Host.ChoiceDescription[]]($TwoWay, $Disabled, $FromWfmToShifts) - $result = $host.ui.PromptForChoice("Set sync scenario for $SettingName", "", $options, 0) -- switch ($result) - { - 0 { return "TwoWay" } - 1 { return "Disabled" } - 2 { return "FromWfmToShifts" } - } + param ( + $SettingName + ) + $TwoWay = New-Object System.Management.Automation.Host.ChoiceDescription '&TwoWay', 'TwoWay' + $Disabled = New-Object System.Management.Automation.Host.ChoiceDescription '&Disabled', 'Disabled' + $FromWfmToShifts = New-Object System.Management.Automation.Host.ChoiceDescription '&FromWfmToShifts', 'FromWfmToShifts' + $options = [System.Management.Automation.Host.ChoiceDescription[]]($TwoWay, $Disabled, $FromWfmToShifts) + $result = $host.ui.PromptForChoice("Set sync scenario for $SettingName", "", $options, 0) ++ switch ($result) + { + 0 { return "TwoWay" } + 1 { return "Disabled" } + 2 { return "FromWfmToShifts" } + } }-$SyncScenarioOfferShiftRequest = GetSyncScenarioSetting "Offer Shift Request" $SyncScenarioOpenShift = GetSyncScenarioSetting "Open Shift" $SyncScenarioOpenShiftRequest = GetSyncScenarioSetting "Open Shift Request" $SyncScenarioShift = GetSyncScenarioSetting "Shift" $SyncScenarioUserShiftPreference = GetSyncScenarioSetting "User Shift Preference #Read admin email list [psobject[]]$AdminEmailList = @() while ($true){- $AdminEmail = Read-Host -Prompt "Enter admin's email to receive error report" - $AdminEmailList += $AdminEmail - $title = 'Adding another email' - $question = 'Would you like to add another admin email?' - $choices = '&Yes', '&No' - $decision = $Host.UI.PromptForChoice($title, $question, $choices, 1) - if ($decision -eq 1) { - break - } + $AdminEmail = Read-Host -Prompt "Enter admin's email to receive error report" + $AdminEmailList += $AdminEmail + $title = 'Adding another email' + $question = 'Would you like to add another admin email?' + $choices = '&Yes', '&No' + $decision = $Host.UI.PromptForChoice($title, $question, $choices, 1) + if ($decision -eq 1) { + break + } } $InstanceResponse = New-CsTeamsShiftsConnectionInstance `- -ConnectionId $ConnectionId ` + -ConnectionId $ConnectionId ` -ConnectorAdminEmail $AdminEmailList ` -DesignatedActorId $teamsUserId ` -Name $InstanceName ` -SyncFrequencyInMin $syncFreq `- -SyncScenarioOfferShiftRequest $SyncScenarioOfferShiftRequest ` - -SyncScenarioOpenShift $SyncScenarioOpenShift ` - -SyncScenarioOpenShiftRequest $SyncScenarioOpenShiftRequest ` - -SyncScenarioShift $SyncScenarioShift ` - -SyncScenarioSwapRequest $SyncScenarioSwapRequest ` - -SyncScenarioTimeCard $SyncScenarioTimeCard ` - -SyncScenarioTimeOff $SyncScenarioTimeOff ` - -SyncScenarioTimeOffRequest $SyncScenarioTimeOffRequest ` - -SyncScenarioUserShiftPreference $SyncScenarioUserShiftPreference + -SyncScenarioOpenShift $SyncScenarioOpenShift ` + -SyncScenarioOpenShiftRequest $SyncScenarioOpenShiftRequest ` + -SyncScenarioShift $SyncScenarioShift ` + -SyncScenarioSwapRequest $SyncScenarioSwapRequest ` + -SyncScenarioTimeCard $SyncScenarioTimeCard ` + -SyncScenarioTimeOff $SyncScenarioTimeOff ` + -SyncScenarioTimeOffRequest $SyncScenarioTimeOffRequest ` + -SyncScenarioUserShiftPreference $SyncScenarioUserShiftPreference $InstanceId = $InstanceResponse.id if ($null -ne $InstanceId){ if ($null -ne $InstanceId){ $mappings=@() while ($true) {- $TeamsTeamId = Read-Host -Prompt "Input the ID of the Teams team to be mapped" - #Clear schedule of the Teams team - Write-Host "Clear schedule of the existing team" -- $entityTypeString = Read-Host -Prompt 'Input the entity types of clear schedule' - $Delimiters = ",", ".", ":", ";", " ", "`t" - $entityType = $entityTypeString -Split {$Delimiters -contains $_} - $entityType = $entityType.Trim() - $entityType = $entityType.Split('',[System.StringSplitOptions]::RemoveEmptyEntries) - Remove-CsTeamsShiftsScheduleRecord -TeamId $TeamsTeamId -ClearSchedulingGroup:$True -EntityType $entityType -- #Retrieve the list of wfm locations - Write-Output "Listing the WFM team sites" - $WfmTeamIds = Get-CsTeamsShiftsConnectionWfmTeam -ConnectorInstanceId $InstanceId - Write-Output $WfmTeamIds - if (($NULL -ne $WfmTeamIds) -and ($WfmTeamIds.Count -gt 0)){ - [System.String]$WfmTeamId = Read-Host -Prompt "Input the ID of WFM team you want to map" - } - else { - throw "The WfmTeamId list is null or empty" - } -- #Retrieve the list of WFM users and their roles - Write-Output "Listing WFM users and roles" - $WFMUsers = Get-CsTeamsShiftsConnectionWfmUser -ConnectorInstanceId $InstanceId -WfmTeamId $WfmTeamId - Write-Output $WFMUsers -- #Create a mapping of the existing team to the instance - Write-Host "Create a mapping of the existing team to the site" - $TimeZone = Read-Host -Prompt "Input the time zone of team mapping" - $mapping = @{ - teamId = $TeamsTeamId - wfmTeamId = $WfmTeamId - timeZone = $TimeZone - } - $mappings += , $mapping -- $title = 'Connecting another team' - $question = 'Would you like to connect another team?' - $choices = '&Yes', '&No' -- $decision = $Host.UI.PromptForChoice($title, $question, $choices, 1) - if ($decision -eq 1) { - break - } + $TeamsTeamId = Read-Host -Prompt "Input the ID of the Teams team to be mapped" + #Clear schedule of the Teams team + Write-Host "Clear schedule of the existing team" ++ $entityTypeString = Read-Host -Prompt 'Input the entity types of clear schedule' + $Delimiters = ",", ".", ":", ";", " ", "`t" + $entityType = $entityTypeString -Split {$Delimiters -contains $_} + $entityType = $entityType.Trim() + $entityType = $entityType.Split('',[System.StringSplitOptions]::RemoveEmptyEntries) + Remove-CsTeamsShiftsScheduleRecord -TeamId $TeamsTeamId -ClearSchedulingGroup:$True -EntityType $entityType ++ #Retrieve the list of wfm locations + Write-Output "Listing the WFM team sites" + $WfmTeamIds = Get-CsTeamsShiftsConnectionWfmTeam -ConnectorInstanceId $InstanceId + Write-Output $WfmTeamIds + if (($NULL -ne $WfmTeamIds) -and ($WfmTeamIds.Count -gt 0)){ + [System.String]$WfmTeamId = Read-Host -Prompt "Input the ID of WFM team you want to map" + } + else { + throw "The WfmTeamId list is null or empty" + } ++ #Retrieve the list of WFM users and their roles + Write-Output "Listing WFM users and roles" + $WFMUsers = Get-CsTeamsShiftsConnectionWfmUser -ConnectorInstanceId $InstanceId -WfmTeamId $WfmTeamId + Write-Output $WFMUsers ++ #Create a mapping of the existing team to the instance + Write-Host "Create a mapping of the existing team to the site" + $TimeZone = Read-Host -Prompt "Input the time zone of team mapping" + $mapping = @{ + teamId = $TeamsTeamId + wfmTeamId = $WfmTeamId + timeZone = $TimeZone + } + $mappings += , $mapping ++ $title = 'Connecting another team' + $question = 'Would you like to connect another team?' + $choices = '&Yes', '&No' ++ $decision = $Host.UI.PromptForChoice($title, $question, $choices, 1) + if ($decision -eq 1) { + break + } } $batchMappingResponse = New-CsTeamsShiftsConnectionBatchTeamMap -ConnectorInstanceId $InstanceId -TeamMapping @($mappings) if ($null -ne $batchMappingResponse.OperationId){- "The mapping has begun asynchronously. To query mapping results run Get-CsTeamsShiftsConnectionOperation with the operation Id." + "The mapping has begun asynchronously. To query mapping results run Get-CsTeamsShiftsConnectionOperation with the operation Id." } else {- throw "The mapping has failed due to validation errors." + throw "The mapping has failed due to validation errors." } Write-Output $batchMappingResponse |
| frontline | Shifts Connector Ukg Admin Center Manage | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/frontline/shifts-connector-ukg-admin-center-manage.md | You can use the [Shifts connector](shifts-connector-wizard-ukg.md) (Preview) in For a complete list of error messages and how to resolve them, see [List of error messages](#list-of-error-messages) later in this article. -#### Edit connection instance settings +#### Edit connection instance -You'll need to choose the data that your Shifts users can see and change. You'll be given the following options for these settings: +To **edit your connection instance settings**, you'll need to choose the data that your Shifts users can see and change. You'll be given the following options for these settings: - **Shifts users will not see provider data**: Data won't sync between UKG Dimensions and Shifts. <br> - **Shifts users can see provider data**: Data syncing is unidirectional from UKG Dimensions to Shifts. <br> You'll need to choose the data that your Shifts users can see and change. You'll > > After you edit your settings, make sure you follow the steps to [Disable open shifts, open shifts requests, swap requests, and time off requests.](/microsoft-365/frontline/shifts-connector-wizard-ukg#disable-open-shifts-open-shifts-requests-swap-requests-and-time-off-requests) +To **edit your connection instance mappings**, you'll have the choice of: ++- Adding new mappings, by following the same process as when you first create your connection instance. See [Map UKG Dimensions instances to teams](/microsoft-365/frontline/shifts-connector-wizard-ukg#map-ukg-dimensions-instances-to-teams) +- Edit existent mappings, to update the Microsoft Teams to which a WFM instance is connected to. + If you are mapping to team in Microsoft Teams that has previously used Shifts, make sure you [Remove schedule entities from teams you want to map](/microsoft-365/frontline/shifts-connector-wizard-ukg#remove-schedule-entities-from-teams-you-want-to-map) +- Deleting active mappings, either by selecting to un-tick the checkbox of the WFM instance mapped, or by uploading the CSV file with the removed un-desired mapping row. ++ ## List of error messages Here's the list of error messages that you may encounter and information to help you resolve them. |
| frontline | Shifts Connector Ukg Known Issues | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/frontline/shifts-connector-ukg-known-issues.md | Currently, if a user creates a swap request with a coworker and the coworker acc The correct, expected behavior is a green check mark to indicate that the coworker accepted the request and a red "X" to indicate that the manager denied the request. -## A user canΓÇÖt perform some actions in Shifts in the Teams web app after signing in with a different account +## A user canΓÇÖt perform some actions in Shifts after another user has signed in to Shifts using the same device -This issue can occur if a user who has multiple accounts in Teams performs actions in Shifts that require single sign-on (SSO) in UKG Dimensions and that user switches accounts in the Teams web app in the same browser. +This issue can occur if multiple users use the same device to connect to the Teams Shifts app and require a single sign-on (SSO) in UKG Dimensions. -For example, a user signs in to Teams, approves a time off request, and then signs out. The user then signs in to Teams using a different account and tries to perform another action in Shifts that requires SSO in UKG Dimensions. +For example, user A signs in to Teams, requests a time off request, and signs out. To perform the request, user A was required to introduce their Azure AD credentials to verify (SSO). Using the same device, user B signs in to Teams and tries to perform another action in Shifts that requires SSO. -In this scenario, a caching issue occurs in which the user is signed in to Teams and Shifts on one account and signed in to UKG Dimensions on the other account. +In this scenario, an issue occurs in which user B is signed in to Teams and Shifts but user A is still signed in to UKG Dimensions. -To work around this issue, do one of the following actions: +To mitigate this issue, do one of the following actions: ++- Close all the opened browser windows after each user signs out of the Teams web app. This needs to happen independently of whether the user has accessed the Teams web app through the InPrivate window in Microsoft Edge or in Incognito mode in Google Chrome. +- Clear cookies and site data for the mykronos.com site in the browser after each user signs out of the Teams web app. To learn more, see [Delete cookies in Microsoft Edge](https://support.microsoft.com/microsoft-edge/delete-cookies-in-microsoft-edge-63947406-40ac-c3b8-57b9-2a946a29ae09) or [Clear, enable, and manage cookies in Chrome](https://support.google.com/chrome/answer/95647). -- Clear cookies and site data for the mykronos.com site in the browser. To learn more, see [Delete cookies in Microsoft Edge](https://support.microsoft.com/microsoft-edge/delete-cookies-in-microsoft-edge-63947406-40ac-c3b8-57b9-2a946a29ae09) or [Clear, enable, and manage cookies in Chrome](https://support.google.com/chrome/answer/95647).-- Use the Teams web app in an InPrivate window in Microsoft Edge or in Incognito mode in Google Chrome. ## Availability can only be set for one Microsoft team |
| frontline | Shifts Connector Wizard Ukg | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/frontline/shifts-connector-wizard-ukg.md | Choose the UKG Dimensions instances that you want to connect to Shifts, and then Repeat this for all your desired mappings. -4. Enter the correct location in the Time Zone column if needed. +4. Enter the correct location in the Time Zone column if needed. >[!NOTE]->The wizard supports approximately 460 locations. If the specific location you chose isn't supported, you'll be shown an error in the wizard. Try using the closest city or major city within the same time zone. +>The wizard supports approximately 460 locations. The Time Zone needs to be according to the tz format. If the specific location you chose isn't supported, you'll be shown an error in the wizard. Try using the closest city or major city within the same time zone. 5. On the **Mapping** page, select **Browse** to find and upload your completed CSV file. |
| frontline | Shifts Connector Wizard | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/frontline/shifts-connector-wizard.md | Repeat this for all your desired mappings. 4. Enter the correct location in the Time Zone column if needed. >[!NOTE]->The wizard supports approximately 460 locations. If the specific location you chose isn't supported, you'll be shown an error in the wizard. Try using the closest city or major city within the same time zone. +>The wizard supports approximately 460 locations. The Time Zone needs to be according to the tz format. If the specific location you chose isn't supported, you'll be shown an error in the wizard. Try using the closest city or major city within the same time zone. 5. On the **Mapping** page, select **Browse** to find and upload your completed CSV file. |
| lighthouse | M365 Lighthouse Known Issues | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/lighthouse/m365-lighthouse-known-issues.md | Either granular delegated admin privileges (GDAP) plus an indirect reseller rela | Issue | Description | Solution | | - | - | - |-| Total tenants and total seats count mismatch with Partner Center | Total seats and tenants displayed in the summary view of Customer acquisition, Customer retention, and Customer growth tabs are mismatched between the Lighthouse experience and Partner Center experience. | No workaround is required. This issue doesn't impact the number of opportunities visible in the recommendation table or the export. You'll still have access to the full list of opportunities available across your customer tenants. | -| Filtering and sorting experience in Lighthouse is different than in Partner Center | Column sorting, Recommendation filter, Product filter, and MPN ID filter are unavailable in the Lighthouse experience. | No workaround is required. You still have access to the full list of opportunities. | +| **Total tenants and total seats count mismatch with Partner Center** | Total seats and tenants displayed in the summary view of Customer acquisition, Customer retention, and Customer growth tabs are mismatched between the Lighthouse experience and Partner Center experience. | No workaround is required. This issue doesn't impact the number of opportunities visible in the recommendation table or the export. You still have access to the full list of opportunities available across your customer tenants. | +| **Filtering and sorting experience in Lighthouse is different than in Partner Center**| Column sorting, Recommendation filter, Product filter, and MPN ID filter are unavailable in the Lighthouse experience. | No workaround is required. You still have access to the full list of opportunities available across your customer tenants. | ## Related content |
| security | Offboard Machines | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/offboard-machines.md | Title: Offboard devices from the Microsoft Defender for Endpoint service + Title: Offboard devices description: Onboard Windows devices, servers, non-Windows devices from the Microsoft Defender for Endpoint service keywords: offboarding, Microsoft Defender for Endpoint offboarding, offboarding search.appverid: met150 Last updated 12/18/2020 -# Offboard devices from the Microsoft Defender for Endpoint service +# Offboard devices [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)] Last updated 12/18/2020 - [Microsoft Defender for Endpoint Plan 1](https://go.microsoft.com/fwlink/p/?linkid=2154037) - [Microsoft Defender for Endpoint Plan 2](https://go.microsoft.com/fwlink/p/?linkid=2154037)+- [Microsoft Defender Vulnerability Management](https://go.microsoft.com/fwlink/?linkid=2229011) - [Microsoft 365 Defender](https://go.microsoft.com/fwlink/?linkid=2118804) **Platforms** Follow the corresponding instructions depending on your preferred deployment met ## Offboard non-Windows devices - [Offboard non-Windows devices](configure-endpoints-non-windows.md#offboard-non-windows-devices)+ [!INCLUDE [Microsoft Defender for Endpoint Tech Community](../../includes/defender-mde-techcommunity.md)] |
| security | Onboarding | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/onboarding.md | Last updated 12/18/2020 - [Microsoft Defender for Endpoint Plan 1](https://go.microsoft.com/fwlink/p/?linkid=2154037) - [Microsoft Defender for Endpoint Plan 2](https://go.microsoft.com/fwlink/p/?linkid=2154037)+- [Microsoft Defender Vulnerability Management](https://go.microsoft.com/fwlink/?linkid=2229011) - [Microsoft 365 Defender](https://go.microsoft.com/fwlink/?linkid=2118804) > Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://signup.microsoft.com/create-account/signup?products=7f379fee-c4f9-4278-b0a1-e4c8c2fcdf7e&ru=https://aka.ms/MDEp2OpenTrial?ocid=docs-wdatp-exposedapis-abovefoldlink) ## Onboard devices using any of the supported management tools -In the previous step you decided on which deployment method to use. The deployment tool you use influences how you onboard endpoints to the service. +The deployment tool you use influences how you onboard endpoints to the service. To start onboarding your devices: |
| security | Defender Vulnerability Management Capabilities | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-vulnerability-management/defender-vulnerability-management-capabilities.md | Title: Compare Microsoft Defender Vulnerability Management plans and capabilities description: Compare Defender Vulnerability Management Offerings. Learn about the differences between the plans and select the plan that suits your organization's needs. -keywords: Defender for Endpoint, advanced threat protection, endpoint protection search.appverid: MET150 audience: ITPro Previously updated : 07/26/2022 ms.localizationpriority: medium- f1.keywords: NOCSH - m365-security-- m365initiative-defender-endpoint-- tier1+- Tier1 +- Last updated 01/08/2023 # Compare Microsoft Defender Vulnerability Management plans and capabilities > [!IMPORTANT]-> Some information in this article relates to prereleased products/services that might be substantially modified before they are commercially released. Microsoft makes no warranties, express or implied, for the information provided here. +> This article provides a summary of vulnerability management capabilities available across different Microsoft Defender product plans; however, it's not intended to be a service description or licensing contract document. For more detailed information, see the following resources: +> +> - [Microsoft 365 licensing guidance for security & compliance](/office365/servicedescriptions/microsoft-365-service-descriptions/microsoft-365-tenantlevel-services-licensing-guidance/microsoft-365-security-compliance-licensing-guidance) +> - [Microsoft 365 Education](/office365/servicedescriptions/office-365-platform-service-description/microsoft-365-education) This article helps clarify the Defender Vulnerability Management capabilities included in: This article helps clarify the Defender Vulnerability Management capabilities in ## Start a trial -- The Defender Vulnerability Management add-on for Defender for Endpoint Plan 2 is now generally available. To try the additional add-on capabilities, go to [Try Defender Vulnerability Management Add-on trial for Defender for Endpoint Plan 2 customers](/microsoft-365/security/defender-vulnerability-management/get-defender-vulnerability-management#try-defender-vulnerability-management-add-on-trial-for-defender-for-endpoint-plan-2-customers).-- Defender Vulnerability Management Standalone is in public preview trial. To try it, go to [Try Defender Vulnerability Management Standalone](/microsoft-365/security/defender-vulnerability-management/get-defender-vulnerability-management#try-defender-vulnerability-management-standalone).+- If you already have Defender for Endpoint Plan 2 [Try Defender Vulnerability Management Add-on trial for Defender for Endpoint Plan 2 customers](/microsoft-365/security/defender-vulnerability-management/get-defender-vulnerability-management#try-defender-vulnerability-management-add-on-trial-for-defender-for-endpoint-plan-2-customers). +- For new customers or existing Defender for Endpoint P1 or Microsoft 365 E3 customer the **Microsoft Defender Vulnerability Management Standalone is now generally available**. To try it, go to [Try Defender Vulnerability Management Standalone](/microsoft-365/security/defender-vulnerability-management/get-defender-vulnerability-management#try-defender-vulnerability-management-standalone). ++> [!NOTE] +> This offering isn't currently available to: +> +> - US Government customers using GCC, GCC High, and DoD +> - Microsoft Defender for Business customers ## Vulnerability Management capabilities for endpoints The table below shows the availability of Defender Vulnerability Management capabilities for endpoints: -|Capability| Defender for Endpoint Plan 2 includes the following core Defender Vulnerability Management capabilities| Defender Vulnerability Management Add-on provides the following premium Vulnerability Management capabilities for Defender for Endpoint Plan 2 | Defender Vulnerability Management Standalone (Public Preview) provides full Defender Vulnerability Management capabilities for any EDR solution | +|Capability| Defender for Endpoint Plan 2 includes the following core Defender Vulnerability Management capabilities| Defender Vulnerability Management Add-on provides the following premium Vulnerability Management capabilities for Defender for Endpoint Plan 2 | Defender Vulnerability Management Standalone provides full Defender Vulnerability Management capabilities for any EDR solution | |:-|:-:|:-:|:-:| |[Device discovery](../defender-endpoint/device-discovery.md)|Γ£ö|-|Γ£ö| |[Device inventory](../defender-endpoint/machines-view-overview.md)|Γ£ö|-|Γ£ö| |
| security | Defender Vulnerability Management Faq | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-vulnerability-management/defender-vulnerability-management-faq.md | Title: Microsoft Defender Vulnerability Management frequently asked questions description: Find answers to frequently asked questions (FAQs) about MDVM -keywords: defender vulnerability management -ms.sitesec: library -ms.pagetype: security f1.keywords: - NOCSH ms.localizationpriority: medium audience: ITPro -- m365-security-compliance -- tier1+- m365-security +- Tier1 search.appverid: met150 Last updated 06/02/2022 Last updated 06/02/2022 # Microsoft Defender Vulnerability Management frequently asked questions - Find answers to frequently asked questions (FAQs) about Microsoft Defender Vulnerability Management. Use the following links to help find answer to your questions: - [Defender Vulnerability Management licensing FAQs](#defender-vulnerability-management-licensing-faqs) Microsoft Defender Vulnerability Management is available via two 1. Microsoft Defender for Endpoint Plan 2 customers can seamlessly enhance their existing generally available vulnerability management capabilities with the Microsoft Defender Vulnerability Management add-on. This service provides consolidated inventories, expanded asset coverage, cross-platform support, and new assessment and mitigation tools. To sign up for the free 90-day trial, see [Defender Vulnerability Management Add-on](/microsoft-365/security/defender-vulnerability-management/get-defender-vulnerability-management#try-defender-vulnerability-management-add-on-trial-for-defender-for-endpoint-plan-2-customers). -2. For non-Defender for Endpoint Plan 1 or Plan 2 customers, or non-Microsoft 365 E3 customers looking for a risk-based vulnerability management solution, Microsoft Defender Vulnerability Management standalone helps you efficiently discover, assess, and remediate vulnerabilities and misconfigurations in one place. To sign up for the free 180-day public preview trial, see [Defender Vulnerability Management Standalone](/microsoft-365/security/defender-vulnerability-management/get-defender-vulnerability-management#try-defender-vulnerability-management-standalone). +2. For new customers or existing Defender for Endpoint P1 or Microsoft 365 E3 customers looking for a risk-based vulnerability management solution, Microsoft Defender Vulnerability Management Standalone helps you efficiently discover, assess, and remediate vulnerabilities and misconfigurations in one place. To sign up for the free 90-day trial, see [Defender Vulnerability Management Standalone](/microsoft-365/security/defender-vulnerability-management/get-defender-vulnerability-management#try-defender-vulnerability-management-standalone). ### Is Defender Vulnerability Management available as part of Defender for Endpoint Plan 2? If the customer has Defender for Endpoint Plan 2 they have the core vulnerability management capabilities. Defender Vulnerability Management is a separate solution from Defender for Endpoint (not included in Defender for Endpoint Plan 2) and is available as an add-on. -### What will the purchase options be when Defender Vulnerability Management Standalone is generally available (GA)? --Details on your purchase options for Defender Vulnerability Management Standalone will be made available once the offering is GA. - ## Defender Vulnerability Management trial FAQs ### How do customers sign up for a trial? For existing Defender for Endpoint Plan 2 customers who want to evaluate the experience first-hand, we encourage directly onboarding onto the Microsoft Defender Vulnerability Management add-on free 90-day trial. For more information, see [Defender Vulnerability Management Add-on](/microsoft-365/security/defender-vulnerability-management/get-defender-vulnerability-management#try-defender-vulnerability-management-add-on-trial-for-defender-for-endpoint-plan-2-customers). -For new customers (non-Defender for Endpoint Plan 1 or Plan 2 customers, or non-Microsoft 365 E3 customers), see [Defender Vulnerability Management Standalone](/microsoft-365/security/defender-vulnerability-management/get-defender-vulnerability-management#try-defender-vulnerability-management-standalone) to sign up for the free 180-day public preview trial. +For new customers or existing Defender for Endpoint P1 or Microsoft 365 E3 customers, see [Defender Vulnerability Management Standalone](/microsoft-365/security/defender-vulnerability-management/get-defender-vulnerability-management#try-defender-vulnerability-management-standalone) to sign up for the free 90-day trial. > [!NOTE] > Customers need to have the global admin role defined in Azure AD to onboard the trial. Once a customer is onboarded on to the free-trial experience, Defender Vulnerabi ### Do I need to assign Defender Vulnerability Management trial licenses to users in my organization as instructed in the admin center? -Currently, there's no need to assign the new Defender Vulnerability Management license to users. Licenses will be applied automatically after a customer signs up for the free public preview trial. +Currently, there's no need to assign the new Defender Vulnerability Management license to users. Licenses will be applied automatically after a customer signs up for the free trial. -### If a customer is in private preview, what will happen to their premium capabilities if I don't sign up for a free trial? +### If a customer is in public preview, what will happen to their premium capabilities if I don't sign up for a free trial? The new capabilities will be available only to customers who onboard a trial. Customers who haven't onboarded will lose access to these capabilities. Blocked applications will be immediately unblocked. Security baseline profiles may be stored for a short additional time before being deleted. ### How long does the trial last and what happens at the end of my trial? - The Defender Vulnerability Management add-on trial lasts for 90 days.-- The Defender Vulnerability Management Standalone public preview trial lasts for 180 days.+- The Defender Vulnerability Management Standalone trial lasts for 90 days. After your trial ends, you'll have a 30 day grace period of active trial before the license becomes suspended. When the trial is suspended, you'll retain your security baselines, but you may lose access to your portal and your blocked applications may become unblocked. |
| security | Defender Vulnerability Management Trial | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-vulnerability-management/defender-vulnerability-management-trial.md | Title: About the Microsoft Defender Vulnerability Management trial description: Learn about the Microsoft Defender Vulnerability Management trial -keywords: defender vulnerability management -ms.sitesec: library -ms.pagetype: security f1.keywords: - NOCSH ms.localizationpriority: medium audience: ITPro -- m365-security-compliance -- tier1+- m365-security +- Tier1 search.appverid: met150 Previously updated : 07/13/2022 Last updated : 08/01/2023 # About the Microsoft Defender Vulnerability Management trial It includes capabilities so your teams can intelligently assess, prioritize, and > [!NOTE] > The sign up process outlined below is only relevant to customers who have access to the [Microsoft Defender 365 portal](https://security.microsoft.com/homepage). >-> If you don't have access to the Microsoft Defender 365 portal learn more about how you can sign up to the [Microsoft Defender Vulnerability Management Standalone public preview trial](../defender-vulnerability-management/get-defender-vulnerability-management.md#try-defender-vulnerability-management-standalone). +> If you don't have access to the Microsoft Defender 365 portal learn more about how you can sign up to the [Microsoft Defender Vulnerability Management Standalone trial](../defender-vulnerability-management/get-defender-vulnerability-management.md#try-defender-vulnerability-management-standalone). > > If you're a Microsoft Defender for Cloud customers, see [Vulnerability Management capabilities for servers](./defender-vulnerability-management-capabilities.md#vulnerability-management-capabilities-for-servers) to learn more about the Defender Vulnerabilities Management capabilities available to your organization. To sign up for the Defender Vulnerability Management trial, you can go directly to the [Microsoft 365 trials hub](https://security.microsoft.com/trialHorizontalHub) page or by selecting **Trials** on the left navigation from the [Microsoft Defender 365 portal](https://security.microsoft.com/homepage). -Once you've reached the [Microsoft 365 trials hub](https://security.microsoft.com/trialHorizontalHub), sign up depends on whether you already have Microsoft Defender for Endpoint Plan 2 or not: +Once you've reached the [Microsoft 365 trials hub](https://security.microsoft.com/trialHorizontalHub): - If you have Defender for Endpoint Plan 2, find the **Defender Vulnerability Management add-on** card and select **Try now**.-- If you don't have Defender for Endpoint Plan 1 or Plan 2, or Microsoft 365 E3, choose the **Defender Vulnerability Management** card and select **Try now**.+- If youΓÇÖre a new customer or an existing Defender for Endpoint P1 or Microsoft 365 E3 customer, choose the **Defender Vulnerability Management** card and select **Try now**. :::image type="content" source="../../medivm-trialshub.png" alt-text="Screenshot of Microsoft Defender Vulnerability Management trial hub landing page."::: 2. Review the information about what's included in the trial, then select **Begin trial**. Once you've reached the [Microsoft 365 trials hub](https://security.microsoft.co Your trial will be effective immediately: - The Defender Vulnerability Management add-on trial lasts for 90 days.-- The Defender Vulnerability Management Standalone public preview trial lasts for 180 days.+- The Defender Vulnerability Management Standalone trial lasts for 90 days. It can take up to 6 hours for all vulnerability management features to appear in your left navigation. Sign out and sign back in to see the updates. To make the most of your trial, see [Trial user guide: Microsoft Defender Vulnerability Management](./trial-user-guide-defender-vulnerability-management.md) -> [!NOTE] -> Defender Vulnerability Management Standalone trial is in public preview. Details on your purchase options for this new offering will be made available once the offering is generally available. - ## Required roles for starting the trial As a Global Administrator, you can start the trial or you can allow to users start the trial on behalf of your organization by enabling this option: |
| security | Defender Vulnerability Management | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-vulnerability-management/defender-vulnerability-management.md | Title: Microsoft Defender Vulnerability Management -description: This capability in Microsoft Defender Vulnerability Management uses a game-changing risk-based approach to the discovery, prioritization, and remediation of endpoint vulnerabilities and misconfigurations. -keywords: vulnerability management, threat and vulnerability management, Microsoft Defender for Endpoint TVM, Microsoft Defender for Endpoint-TVM, vulnerability management, vulnerability assessment, threat and vulnerability scanning, secure configuration assessment, Microsoft Defender for Endpoint, Microsoft Defender Vulnerability Management, endpoint vulnerabilities, next generation +description: Microsoft Defender Vulnerability Management uses a risk-based approach to the discovery, prioritization, and remediation of endpoint vulnerabilities and misconfigurations. ++++ -ms.sitesec: library -ms.pagetype: security -- ms.localizationpriority: medium- -- m365-security-compliance-- tier1--+- Tier1 +- m365-security search.appverid: met150 Previously updated : 05/09/2022+audience: ITPro Last updated : 01/08/2023+ # What is Microsoft Defender Vulnerability Management -> [!IMPORTANT] -> Some information in this article relates to prereleased products/services that might be substantially modified before they are commercially released. Microsoft makes no warranties, express or implied, for the information provided here. - Reducing cyber risk requires comprehensive risk-based vulnerability management to identify, assess, remediate, and track all your biggest vulnerabilities across your most critical assets, all in a single solution. Defender Vulnerability Management delivers asset visibility, intelligent assessments, and built-in remediation tools for Windows, macOS, Linux, Android, iOS, and network devices. Leveraging Microsoft threat intelligence, breach likelihood predictions, business contexts, and devices assessments, Defender Vulnerability Management rapidly and continuously prioritizes the biggest vulnerabilities on your most critical assets and provides security recommendations to mitigate risk. |
| security | Device Restart Status | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-vulnerability-management/device-restart-status.md | Title: Device restart status description: Learn about the device restart status tag in Microsoft Defender Vulnerability Management - -ms.sitesec: library ms.pagetype: security ms.localizationpriority: medium audience: ITPro - - m365-security-compliance + - m365-security - tier1 search.appverid: met150 Last updated 03/04/2022 - [Microsoft 365 Defender](https://go.microsoft.com/fwlink/?linkid=2118804) - [Microsoft Defender for Servers Plan 1 & 2](/azure/defender-for-cloud/plan-defender-for-servers-select-plan) - Security recommendations in Defender Vulnerability Management can help reduce your overall vulnerability exposure and your exposure score. A robust update process is key when it comes to addressing these recommendations in your organization. If an update hasn't completed for some devices due to a pending restart, the effect of addressing the security recommendation isn't reflected in your exposure score. The **Pending restart** tag helps you identify devices in this state so you can take action, and it gives you visibility into why some update actions taken aren't being reflected in your exposure score. |
| security | Fixed Reported Inaccuracies | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-vulnerability-management/fixed-reported-inaccuracies.md | Title: List of fixed customer reported inaccuracies description: List the reported inaccuracies that were fixed. -keywords: vulnerability management, Microsoft Defender Vulnerability Management, recommendations, report inaccuracy search.appverid: MET150 |
| security | Get Defender Vulnerability Management | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-vulnerability-management/get-defender-vulnerability-management.md | +- m365-security +- Tier1 Last updated : 08/01/2023 # Sign up for Microsoft Defender Vulnerability Management -Microsoft Defender Vulnerability Management is available as a standalone and as an add-on for Microsoft Defender for Endpoint Plan 2 customers. How you sign up for the Defender Vulnerability Management trial depends on whether you already have Microsoft Defender for Endpoint Plan 2. +Microsoft Defender Vulnerability Management is available as a standalone and as an add-on for Microsoft Defender for Endpoint Plan 2 customers. > [!NOTE] > This offering isn't currently available to: Microsoft Defender Vulnerability Management is available as a standalone and as > - US Government customers using GCC, GCC High, and DoD > - Microsoft Defender for Business customers -- If you don't have Defender for Endpoint Plan 1 or Plan 2, or Microsoft 365 E3 or E5, sign up to try the [Defender Vulnerability Management Standalone Trial](#try-defender-vulnerability-management-standalone)+- If youΓÇÖre a new customer or an existing Defender for Endpoint P1 or Microsoft 365 E3 customer sign up to try the [Defender Vulnerability Management Standalone Trial](#try-defender-vulnerability-management-standalone) - If you already have Defender for Endpoint Plan 2, sign up to try the [Defender Vulnerability Management Add-on Trial](#try-defender-vulnerability-management-add-on-trial-for-defender-for-endpoint-plan-2-customers) > [!NOTE] Microsoft Defender Vulnerability Management is available as a standalone and as ## Try Defender Vulnerability Management Standalone -If you don't have Defender for Endpoint Plan 1 or Plan 2, or Microsoft 365 E3 or E5, you will sign up to trial the **Defender Vulnerability Management Standalone trial**. +If youΓÇÖre a new customer or an existing Defender for Endpoint P1 or Microsoft 365 E3 customer, you will sign up to trial the **Defender Vulnerability Management Standalone trial**. > [!IMPORTANT] > You must be logged into the tenant as a global administrator to perform this task. To sign up: -1. Log in as a global admin to the tenant where the Defender Vulnerability Management public preview trial service will be added. -2. Visit [Microsoft Defender Vulnerability Management Public Preview Trial](https://aka.ms/MdvmStandaloneStartTrial). +1. Log in as a global admin to the tenant where the Defender Vulnerability Management Standalone trial service will be added. +2. Visit [Microsoft Defender Vulnerability Management Trial](https://aka.ms/MdvmStandaloneStartTrial). 3. Follow the prompts to sign in. This will differ depending on whether you already have a Microsoft 365 subscription or not.-4. Once you have signed in, select the **Try now** button to confirm your order of the 180 day subscription of the Microsoft Defender Vulnerability Management Public Preview trial. +4. Once you have signed in, select the **Try now** button to confirm your order of the 90 day subscription of the Defender Vulnerability Management Standalone trial. 5. Select **Continue**. You'll now be directed to the Microsoft 365 Defender portal. > [!NOTE] |
| security | Mdvm Onboard Devices | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-vulnerability-management/mdvm-onboard-devices.md | + + Title: Onboard to Microsoft Defender Vulnerability Management +description: Learn how to onboard endpoints to Microsoft Defender Vulnerability Management service +++ms.localizationpriority: medium ++audience: ITPro ++ - m365-security + - tier1 ++++search.appverid: met150 Last updated : 08/01/2023+++# Onboard to Microsoft Defender Vulnerability Management ++**Applies to:** ++- [Microsoft Defender Vulnerability Management](https://go.microsoft.com/fwlink/?linkid=2229011) +- [Microsoft 365 Defender](https://go.microsoft.com/fwlink/?linkid=2118804) +- [Microsoft Defender for Servers Plan 2](/azure/defender-for-cloud/plan-defender-for-servers-select-plan) ++To onboard devices to Defender Vulnerability Management you follow the same steps as you would for onboarding devices to Microsoft Defender for Endpoint. ++Use this article for guidance on how to onboard devices to Defender Vulnerability Management. ++> [!TIP] +> Did you know you can try all the features in Microsoft Defender Vulnerability Management for free? Find out how to [sign up for a free trial](../defender-vulnerability-management/defender-vulnerability-management-trial.md). ++## Onboard devices using any of the supported management tools ++To onboard device to Defender Vulnerability Management you'll need to go the onboarding section of the Microsoft 365 Defender portal. Depending on the operating system, you'll be guided on the appropriate steps and the management and deployment tool options available. ++This video provides a quick overview of the onboarding process and the different tools and methods. ++> [!VIDEO https://www.microsoft.com/videoplayer/embed/RE4bGqr] ++To start onboarding your devices to Defender Vulnerability Management: ++1. Go to the Onboarding section in the [Microsoft 365 Defender portal](https://security.microsoft.com/securitysettings/endpoints/onboarding). +2. Choose the operating system for the devices you wish to onboard. +3. Select the Deployment method you plan to use. +4. Follow the instructions to onboard your devices. ++For more information and steps on how to onboard your devices using the different deployment tools, see [Select deployment method](../defender-endpoint/deployment-strategy.md#step-2-select-deployment-method). ++## Offboard devices ++To offboard device from Defender Vulnerability Management you'll need to go the offboarding section of the [Microsoft 365 Defender portal](https://security.microsoft.com/securitysettings/endpoints/offboarding). ++For more information on how to offboard your devices, see [offboard devices](../defender-endpoint/offboard-machines.md). + |
| security | Threat And Vuln Mgt Event Timeline | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-vulnerability-management/threat-and-vuln-mgt-event-timeline.md | Title: Event timeline description: Event timeline is a risk news feed that helps you interpret how risk is introduced into the organization, and which mitigations happened to reduce it. -keywords: event timeline, Microsoft Defender for Endpoint event timeline, Microsoft Defender for Endpoint tvm event timeline, threat and vulnerability management, Microsoft Defender for Endpoint, mdvm, Microsoft Defender Vulnerability Management -ms.sitesec: library -ms.pagetype: security ms.localizationpriority: medium audience: ITPro -- m365-security-compliance-- tier1+- m365-security +- Tier1 search.appverid: met150 Last updated 03/04/2022 Last updated 03/04/2022 # Event timeline **Applies to:** Last updated 03/04/2022 - [Microsoft 365 Defender](https://go.microsoft.com/fwlink/?linkid=2118804) - [Microsoft Defender for Servers Plan 1 & 2](/azure/defender-for-cloud/plan-defender-for-servers-select-plan) - Event timeline is a risk news feed that helps you interpret how risk is introduced into the organization through new vulnerabilities or exploits. You can view events that may impact your organization's risk. For example, you can find new vulnerabilities that were introduced, vulnerabilities that became exploitable, exploit that was added to an exploit kit, and more. Event timeline also tells the story of your [exposure score](tvm-exposure-score.md) and [Microsoft Secure Score for Devices](tvm-microsoft-secure-score-devices.md) so you can determine the cause of large changes. Events can impact your devices or your score for devices. Reduce you exposure by addressing what needs to be remediated based on the prioritized [security recommendations](tvm-security-recommendation.md). |
| security | Trial User Guide Defender Vulnerability Management | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-vulnerability-management/trial-user-guide-defender-vulnerability-management.md | Title: Trial user guide - Microsoft Defender Vulnerability Management description: Learn how Microsoft Defender Vulnerability Management can help you protect all your users and data. -keywords: vulnerability management, threat and vulnerability management, Microsoft Defender for Endpoint TVM, Microsoft Defender for Endpoint-TVM, vulnerability management, vulnerability assessment, threat and vulnerability scanning, secure configuration assessment, Microsoft Defender for Endpoint, Microsoft Defender Vulnerability Management, endpoint vulnerabilities, next generation -ms.sitesec: library -ms.pagetype: security ms.localizationpriority: medium Watch the following video to learn more about Defender Vulnerability Management: Via the [Microsoft Admin Center](https://admin.microsoft.com/#/catalog) (global admins only). -3. Sign up for the trial depends on whether you already have Microsoft Defender for Endpoint Plan 2 or not. - - If you have Defender for Endpoint Plan 2, choose [Defender Vulnerability Management Add-on](/microsoft-365/security/defender-vulnerability-management/get-defender-vulnerability-management#try-the-defender-vulnerability-management-add-on-public-preview-trial-for-defender-for-endpoint-plan-2-customers). - - If you don't have Defender for Endpoint Plan 1 or Plan 2, or Microsoft 365 E3, choose [Defender Vulnerability Management Standalone](/microsoft-365/security/defender-vulnerability-management/get-defender-vulnerability-management#try-defender-vulnerability-management-standalone). +3. Learn how to sign up for the Defender Vulnerability Management Trial + - If you have Defender for Endpoint Plan 2, choose [Defender Vulnerability Management Add-on](/microsoft-365/security/defender-vulnerability-management/get-defender-vulnerability-management#try-defender-vulnerability-management-add-on-trial-for-defender-for-endpoint-plan-2-customers). + - If youΓÇÖre a new customer or an existing Defender for Endpoint P1 or Microsoft 365 E3, choose [Defender Vulnerability Management Standalone](/microsoft-365/security/defender-vulnerability-management/get-defender-vulnerability-management#try-defender-vulnerability-management-standalone). 4. When you're ready to get started, visit the [Microsoft 365 Defender portal](https://security.microsoft.com) and select **Vulnerability management** in the left navigation bar to start using the Defender Vulnerability Management trial. -> [!NOTE] -> Defender Vulnerability Management Standalone trial is in public preview. Details on your purchase options for this new offering will be made available once the offering is generally available. - > [!NOTE] > Once you activate the trial it can take up to 6 hours for the new features to become available in the portal. |
| security | Tvm Assign Device Value | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-vulnerability-management/tvm-assign-device-value.md | Title: Assign device value description: Learn how to assign a low, normal, or high value to a device to help you differentiate between asset priorities. -keywords: Microsoft Defender for Endpoint device value, threat and vulnerability management device value, high value devices, device value exposure score, Microsoft Defender Vulnerability Management -ms.sitesec: library -ms.pagetype: security ms.localizationpriority: medium audience: ITPro - - m365-security-compliance - - tier1 + - m365-security + - Tier1 search.appverid: met150 Last updated 03/04/2022 Last updated 03/04/2022 # Assign device value - **Applies to:** - [Microsoft Defender Vulnerability Management](https://go.microsoft.com/fwlink/?linkid=2229011) Last updated 03/04/2022 - [Microsoft 365 Defender](https://go.microsoft.com/fwlink/?linkid=2118804) - [Microsoft Defender for Servers Plan 1 & 2](/azure/defender-for-cloud/plan-defender-for-servers-select-plan) - Defining a device's value helps you differentiate between asset priorities. The device value is used to incorporate the risk appetite of an individual asset into the Defender Vulnerability Management exposure score calculation. Devices assigned as "high value" will receive more weight. You can also use the [set device value API](../defender-endpoint/set-device-value.md). |
| security | Tvm Block Vuln Apps | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-vulnerability-management/tvm-block-vuln-apps.md | Title: Block vulnerable applications description: Use Microsoft Defender Vulnerability Management to block vulnerable applications -keywords: Microsoft Defender Vulnerability Management, Microsoft Defender for Endpoint block vulnerable applications, mdvm, vulnerability management --ms.sitesec: library ms.pagetype: security ms.localizationpriority: medium audience: ITPro - - m365-security-compliance - - tier1 + - m365-security + - Tier1 search.appverid: met150 Last updated 04/12/2022 Last updated 04/12/2022 - [Microsoft 365 Defender](https://go.microsoft.com/fwlink/?linkid=2118804) - [Microsoft Defender for Servers Plan 2](/azure/defender-for-cloud/plan-defender-for-servers-select-plan) - > [!NOTE] > To use this feature you'll require Microsoft Defender Vulnerability Management Standalone or if you're already a Microsoft Defender for Endpoint Plan 2 customer, the Defender Vulnerability Management add-on. |
| security | Tvm Browser Extensions | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-vulnerability-management/tvm-browser-extensions.md | Title: Browser extensions assessment description: Find out about the browsers extensions installed in your environment -keywords: Microsoft Defender for Endpoint browser extensions, mdvm, threat & vulnerability management,Microsoft Defender Vulnerability Management --ms.sitesec: library ms.pagetype: security ms.localizationpriority: medium audience: ITPro - - m365-security-compliance - - tier1 + - m365-security + - Tier1 search.appverid: met150 Last updated 04/11/2022 Last updated 04/11/2022 - [Microsoft 365 Defender](https://go.microsoft.com/fwlink/?linkid=2118804) - [Microsoft Defender for Servers Plan 2](/azure/defender-for-cloud/plan-defender-for-servers-select-plan) - > [!NOTE] > To use this feature you'll require Microsoft Defender Vulnerability Management Standalone or if you're already a Microsoft Defender for Endpoint Plan 2 customer, the Defender Vulnerability Management add-on. |
| security | Tvm Certificate Inventory | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-vulnerability-management/tvm-certificate-inventory.md | Title: Certificate inventory description: Find out about the certificates installed in your environment -keywords: Microsoft Defender for Endpoint browser extensions, mdvm, vulnerability management -ms.sitesec: library -ms.pagetype: security ms.localizationpriority: medium audience: ITPro - - m365-security-compliance - - tier1 + - m365-security + - Tier1 search.appverid: met150 Last updated 04/11/2022 Last updated 04/11/2022 - [Microsoft 365 Defender](https://go.microsoft.com/fwlink/?linkid=2118804) - [Microsoft Defender for Servers Plan 2](/azure/defender-for-cloud/plan-defender-for-servers-select-plan) - > [!NOTE] > To use this feature you'll require Microsoft Defender Vulnerability Management Standalone or if you're already a Microsoft Defender for Endpoint Plan 2 customer, the Defender Vulnerability Management add-on. |
| security | Tvm Dashboard Insights | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-vulnerability-management/tvm-dashboard-insights.md | Title: Dashboard insights description: The Microsoft Defender Vulnerability Management dashboard can help SecOps and security admins address cybersecurity threats and build their organization's security resilience. -keywords: Microsoft Defender for Endpoint-tvm, Microsoft Defender for Endpoint-tvm dashboard, threat & vulnerability management, threat and vulnerability management, risk-based threat & vulnerability management, security configuration, Microsoft Secure Score for Devices, exposure score, Microsoft Defender Vulnerability Management -ms.sitesec: library -ms.pagetype: security ms.localizationpriority: medium- - m365initiative-defender-endpoint - tier1 Last updated 03/04/2022 - [Microsoft 365 Defender](https://go.microsoft.com/fwlink/?linkid=2118804) - [Microsoft Defender for Servers Plan 1 & 2](/azure/defender-for-cloud/plan-defender-for-servers-select-plan) - Defender vulnerability management provides both security administrators and security operations teams with unique value, including: - Real-time endpoint detection and response (EDR) insights correlated with endpoint vulnerabilities |
| security | Tvm End Of Support Software | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-vulnerability-management/tvm-end-of-support-software.md | Last updated 03/04/2022 - [Microsoft 365 Defender](https://go.microsoft.com/fwlink/?linkid=2118804) - [Microsoft Defender for Servers Plan 1 & 2](/azure/defender-for-cloud/plan-defender-for-servers-select-plan) - End-of-support (EOS), otherwise known as end-of-life (EOL), for software or software versions means that they will no longer be supported or serviced, and will not receive security updates. When you use software or software versions with ended support, you're exposing your organization to security vulnerabilities, legal, and financial risks. It's crucial for Security and IT Administrators to work together and ensure that the organization's software inventory is configured for optimal results, compliance, and a healthy network ecosystem. They should examine the options to remove or replace apps that have reached end-of-support and update versions that are no longer supported. It's best to create and implement a plan **before** the end of support dates. |
| security | Tvm Exception | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-vulnerability-management/tvm-exception.md | Title: Create and view exceptions for security recommendations description: Create and monitor exceptions for security recommendations in Microsoft Defender Vulnerability Management. -keywords: Microsoft Defender for Endpoint tvm remediation, Microsoft Defender for Endpoint tvm, threat and vulnerability management, threat & vulnerability management, threat & vulnerability management remediation, tvm remediation intune, tvm remediation sccm, mdvm, Microsoft Defender Vulnerability Management -ms.sitesec: library -ms.pagetype: security ms.localizationpriority: medium audience: ITPro - - m365-security-compliance - - tier1 + - m365-security + - Tier1 search.appverid: met150 Last updated 03/04/2022 Last updated 03/04/2022 - [Microsoft 365 Defender](https://go.microsoft.com/fwlink/?linkid=2118804) - [Microsoft Defender for Servers Plan 1 & 2](/azure/defender-for-cloud/plan-defender-for-servers-select-plan) - As an alternative to a remediation request when a recommendation isn't relevant at the moment, you can create exceptions for recommendations. If your organization has device groups, you'll be able to scope the exception to specific device groups. Exceptions can either be created for selected device groups, or for all device groups past and present. When an exception is created for a recommendation, the recommendation won't be active until the end of the exception duration. The recommendation state changes to **Full exception** or **Partial exception** (by device group). |
| security | Tvm Exposure Score | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-vulnerability-management/tvm-exposure-score.md | Title: Exposure score in Defender Vulnerability Management description: The Microsoft Defender Vulnerability Management exposure score reflects how vulnerable your organization is to cybersecurity threats. -keywords: exposure score, Microsoft Defender for Endpoint exposure score, Microsoft Defender for Endpoint tvm exposure score, organization exposure score, tvm organization exposure score, threat and vulnerability management, Microsoft Defender for Endpoint, mdvm, Microsoft Defender Vulnerability Management -ms.sitesec: library -ms.pagetype: security ms.localizationpriority: medium audience: ITPro - - m365-security-compliance - - tier1 + - m365-security + - Tier1 search.appverid: met150 Last updated 03/04/2022 Last updated 03/04/2022 - [Microsoft 365 Defender](https://go.microsoft.com/fwlink/?linkid=2118804) - [Microsoft Defender for Servers Plan 1 & 2](/azure/defender-for-cloud/plan-defender-for-servers-select-plan) - Your exposure score is visible in the [Defender Vulnerability Management dashboard](tvm-dashboard-insights.md) in the Microsoft 365 Defender portal. It reflects how vulnerable your organization is to cybersecurity threats. Low exposure score means your devices are less vulnerable to exploitation. - Quickly understand and identify high-level takeaways about the state of security in your organization. |
| security | Tvm Hardware And Firmware | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-vulnerability-management/tvm-hardware-and-firmware.md | Title: Firmware and hardware assessment description: Find out about the firmware and hardware installed in your environment -keywords: Microsoft Defender for Endpoint, hardware assessment, firmware assessment, hardware and firmare assessment, mdvm, threat & vulnerability management, Microsoft Defender Vulnerability Management -ms.sitesec: library -ms.pagetype: security ms.localizationpriority: medium audience: ITPro - - m365-security-compliance - - tier1 + - m365-security search.appverid: met150 Previously updated : 11/23/2022 Last updated : 08/01/2023 # Hardware and firmware assessment Last updated 11/23/2022 - [Microsoft 365 Defender](https://go.microsoft.com/fwlink/?linkid=2118804) - [Microsoft Defender for Servers Plan 2](/azure/defender-for-cloud/plan-defender-for-servers-select-plan) > [!NOTE] > To use this feature you'll require Microsoft Defender Vulnerability Management Standalone or if you're already a Microsoft Defender for Endpoint Plan 2 customer, the Defender Vulnerability Management add-on. |
| security | Tvm Hunt Exposed Devices | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-vulnerability-management/tvm-hunt-exposed-devices.md | Title: Hunt for exposed devices description: Learn how Microsoft Defender Vulnerability Management can be used to help security admins, IT admins, and SecOps collaborate. -keywords: Microsoft Defender for Endpoint-tvm scenarios, Microsoft Defender for Endpoint, tvm, tvm scenarios, reduce threat & vulnerability exposure, reduce threat and vulnerability, improve security configuration, increase Microsoft Secure Score for Devices, increase threat & vulnerability Microsoft Secure Score for Devices, Microsoft Secure Score for Devices, exposure score, security controls,Microsoft Defender Vulnerability Management, mdvm -ms.sitesec: library -ms.pagetype: security ms.localizationpriority: medium audience: ITPro - - m365-security-compliance - - tier1 + - m365-security + - Tier1 search.appverid: met150 Last updated 03/04/2022 Last updated 03/04/2022 - [Microsoft 365 Defender](https://go.microsoft.com/fwlink/?linkid=2118804) - [Microsoft Defender for Servers Plan 1 & 2](/azure/defender-for-cloud/plan-defender-for-servers-select-plan) - ## Use advanced hunting to find devices with vulnerabilities Advanced hunting is a query-based threat-hunting tool that lets you explore up to 30 days of raw data. You can proactively inspect events in your network to locate threat indicators and entities. The flexible access to data enables unconstrained hunting for both known and potential threats. to Learn more about advanced hunting, see [Advanced hunting overview](../defender-endpoint/advanced-hunting-overview.md). |
| security | Tvm Manage Log4shell Guidance | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-vulnerability-management/tvm-manage-Log4shell-guidance.md | Title: Learn how to mitigate the Log4Shell vulnerability in Microsoft Defender for Endpoint - Defender Vulnerability Management description: Learn how to mitigate the Log4Shell vulnerability in Microsoft Defender for Endpoint -keywords: tvm, lo4j, mdvm -ms.sitesec: library -ms.pagetype: security f1.keywords: - NOCSH ms.localizationpriority: medium audience: ITPro - - M365-security-compliance + - M365-security - tier2 |
| security | Tvm Microsoft Secure Score Devices | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-vulnerability-management/tvm-microsoft-secure-score-devices.md | Title: Microsoft Secure Score for Devices description: Your score for devices shows the collective security configuration state of your devices across application, operating system, network, accounts, and security controls. -keywords: Microsoft Secure Score for Devices, Microsoft Defender for Endpoint Microsoft Secure Score for Devices, secure score, configuration score, threat and vulnerability management, security controls, improvement opportunities, security configuration score over time, security posture, baseline, Microsoft Defender Vulnerability Management -ms.sitesec: library -ms.pagetype: security ms.localizationpriority: medium audience: ITPro - - m365-security-compliance - - tier2 + - m365-security + - Tier1 search.appverid: met150 Last updated 03/04/2022 Last updated 03/04/2022 - [Microsoft 365 Defender](https://go.microsoft.com/fwlink/?linkid=2118804) - [Microsoft Defender for Servers Plan 1 & 2](/azure/defender-for-cloud/plan-defender-for-servers-select-plan) - > [!NOTE] > Configuration score is now part of vulnerability management as Microsoft Secure Score for Devices. |
| security | Tvm Network Share Assessment | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-vulnerability-management/tvm-network-share-assessment.md | Title: Network share configuration assessment description: Learn review recommendations related to network shares in your environment through vulnerability management. -keywords: Microsoft Defender for Endpoint tvm, assessment tvm, threat & vulnerability management, vulnerable CVE, mdvm, Microsoft Defender Vulnerability Management -ms.sitesec: library -ms.pagetype: security ms.localizationpriority: medium audience: ITPro - - m365-security-compliance - - tier2 + - m365-security + - Tier2 search.appverid: met150 Previously updated : 04/27/2022 Last updated : 03/01/2023 # Network share configuration assessment Last updated 04/27/2022 - [Microsoft 365 Defender](https://go.microsoft.com/fwlink/?linkid=2118804) - [Microsoft Defender for Servers Plan 2](/azure/defender-for-cloud/plan-defender-for-servers-select-plan) - > [!NOTE] > To use this feature you'll require Microsoft Defender Vulnerability Management Standalone or if you're already a Microsoft Defender for Endpoint Plan 2 customer, the Defender Vulnerability Management add-on. |
| security | Tvm Prerequisites | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-vulnerability-management/tvm-prerequisites.md | Title: Prerequisites & permissions for Microsoft Defender Vulnerability Management description: Before you begin using Microsoft Defender Vulnerability Management, make sure you have the relevant configurations and permissions. -keywords: threat & vulnerability management permissions prerequisites, threat and vulnerability management permissions prerequisites, Microsoft Defender for Endpoint TVM permissions prerequisites, vulnerability management, mdvm, Microsoft Defender Vulnerability Management -ms.sitesec: library -ms.pagetype: security ms.localizationpriority: medium audience: ITPro -- M365-security-compliance-- tier2+- M365-security +- Tier2 search.appverid: met150 Last updated 03/04/2022 |
| security | Tvm Remediation | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-vulnerability-management/tvm-remediation.md | Title: Remediate vulnerabilities description: Remediate security weaknesses discovered through security recommendations, and create exceptions if needed, in defender vulnerability management. -keywords: Microsoft Defender for Endpoint tvm remediation, Microsoft Defender for Endpoint tvm, threat and vulnerability management, threat & vulnerability management, threat & vulnerability management remediation, tvm remediation intune, tvm remediation sccm, Microsoft Defender Vulnerability Management, mdvm -ms.sitesec: library -ms.pagetype: security ms.localizationpriority: medium audience: ITPro - - m365-security-compliance - - tier1 + - m365-security + - Tier2 search.appverid: met150 Last updated 03/04/2022 Last updated 03/04/2022 - [Microsoft 365 Defender](https://go.microsoft.com/fwlink/?linkid=2118804) - [Microsoft Defender for Servers Plan 1 & 2](/azure/defender-for-cloud/plan-defender-for-servers-select-plan) - Watch this short video to learn how Microsoft Defender Vulnerability Management discovers vulnerabilities and misconfigurations on your endpoints and provides actionable insights that help you quickly remediate threats and vulnerabilities in your environment. > [!VIDEO https://www.microsoft.com/en-us/videoplayer/embed/RE4qLVs] |
| security | Tvm Security Baselines | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-vulnerability-management/tvm-security-baselines.md | Title: Security baselines assessment description: Find out about the security baselines in your environment -keywords: Microsoft Defender for Endpoint security baselines, mdvm, threat & vulnerability management, Microsoft Defender Vulnerability Management, Microsoft Defender Vulnerability Management -ms.sitesec: library -ms.pagetype: security ms.localizationpriority: medium audience: ITPro - - m365-security-compliance - - tier1 + - m365-security + - Tier1 search.appverid: met150 Previously updated : 04/12/2022 Last updated : 03/01/2023 # Security baselines assessment Last updated 04/12/2022 - [Microsoft 365 Defender](https://go.microsoft.com/fwlink/?linkid=2118804) - [Microsoft Defender for Servers Plan 2](/azure/defender-for-cloud/plan-defender-for-servers-select-plan) - > [!NOTE] > To use this feature you'll require Microsoft Defender Vulnerability Management Standalone or if you're already a Microsoft Defender for Endpoint Plan 2 customer, the Defender Vulnerability Management add-on. |
| security | Tvm Security Recommendation | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-vulnerability-management/tvm-security-recommendation.md | Title: Security recommendations description: Get actionable security recommendations prioritized by threat, likelihood to be breached, and value, in vulnerability management. -keywords: vulnerability management, Microsoft Defender for Endpoint tvm security recommendation, Microsoft Defender Vulnerability Management recommendation, tvm security recommendation cybersecurity recommendation, actionable security recommendation -ms.sitesec: library -ms.pagetype: security ms.localizationpriority: medium audience: ITPro - - m365-security-compliance - - tier1 + - m365-security + - Tier1 search.appverid: met150 Last updated 03/04/2022 Last updated 03/04/2022 # Security recommendations - **Applies to:** - [Microsoft Defender Vulnerability Management](https://go.microsoft.com/fwlink/?linkid=2229011) Last updated 03/04/2022 - [Microsoft 365 Defender](https://go.microsoft.com/fwlink/?linkid=2118804) - [Microsoft Defender for Servers Plan 1 & 2](/azure/defender-for-cloud/plan-defender-for-servers-select-plan) - > [!TIP] > Did you know you can try all the features in Microsoft Defender Vulnerability Management for free? Find out how to [sign up for a free trial](../defender-vulnerability-management/defender-vulnerability-management-trial.md). |
| security | Tvm Software Inventory | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-vulnerability-management/tvm-software-inventory.md | Title: Software inventory description: The software inventory page for Microsoft Defender for Endpoint's Vulnerability Management shows how many weaknesses and vulnerabilities have been detected in software. -keywords: threat and vulnerability management, Microsoft Defender for Endpoint, Microsoft Defender for Endpoint software inventory, Microsoft Defender for Endpoint threat & vulnerability management, Microsoft Defender for Endpoint threat & vulnerability management software inventory, Microsoft Defender for Endpoint tvm software inventory, tvm software inventory, Microsoft Defender Vulnerability Management -ms.sitesec: library -ms.pagetype: security ms.localizationpriority: medium audience: ITPro - - m365-security-compliance - - tier1 + - m365-security + - Tier1 search.appverid: met150 Previously updated : 03/04/2022 Last updated : 03/01/2023 # Software inventory Last updated 03/04/2022 - [Microsoft 365 Defender](https://go.microsoft.com/fwlink/?linkid=2118804) - [Microsoft Defender for Servers Plan 1 & 2](/azure/defender-for-cloud/plan-defender-for-servers-select-plan) - The software inventory in Defender Vulnerability Management is a list of known software in your organization. The default filter on the software inventory page displays all software with official [Common Platform Enumerations (CPE)](https://nvd.nist.gov/products/cpe). The view includes details such as the name of the vendor, number of weaknesses, threats, and number of exposed devices. > [!TIP] |
| security | Tvm Supported Os | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-vulnerability-management/tvm-supported-os.md | Title: Supported operating systems platforms and capabilities description: Ensure that you meet the operating system or platform requisites for Microsoft Defender Vulnerability Management, so the activities in your all devices are properly accounted for. -keywords: threat & vulnerability management, threat and vulnerability management, operating system, platform requirements, prerequisites, Microsoft Defender for Endpoint-tvm supported os, Microsoft Defender for Endpoint-tvm, supported operating systems, supported platforms, linux support, mac support, mdvm, Microsoft Defender Vulnerability Management -ms.sitesec: library -ms.pagetype: security ms.localizationpriority: medium audience: ITPro - - m365-security-compliance - - tier2 + - m365-security + - Tier2 search.appverid: met150 Last updated 03/04/2022 |
| security | Tvm Usage Insights | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-vulnerability-management/tvm-usage-insights.md | Title: Software usage insights description: Use Microsoft Defender Vulnerability Management to assess software usage -keywords: Microsoft Defender Vulnerability Management, Microsoft Defender for Endpoint block vulnerable applications, mdvm, vulnerability management, software usage, insights -ms.sitesec: library -ms.pagetype: security ms.localizationpriority: medium audience: ITPro - - m365-security-compliance - - tier1 + - m365-security + - Tier2 search.appverid: met150 Last updated 10/06/2022 Last updated 10/06/2022 - [Microsoft 365 Defender](https://go.microsoft.com/fwlink/?linkid=2118804) - [Microsoft Defender for Servers Plan 1 & 2](/azure/defender-for-cloud/plan-defender-for-servers-select-plan) - Defender Vulnerability Management software usage information gives you insights into the total number of devices using an application in your organization and the median usage (in days) for that application over the past 30 days. Software usage information is critical when it comes to evaluating software vulnerabilities in your organization. When vulnerable applications are widely and frequently used, it poses a security risk. These insights can help organizations understand the potential affect of blocking vulnerable applications. |
| security | Tvm Vulnerable Devices Report | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-vulnerability-management/tvm-vulnerable-devices-report.md | Title: Vulnerable devices report description: A report showing vulnerable device trends and current statistics so you can understand the breath and scope of your device exposure. -keywords: Microsoft Defender for Endpoint-tvm vulnerable devices, Microsoft Defender for Endpoint, tvm, reduce threat & vulnerability exposure, reduce threat and vulnerability, monitor security configuration, Microsoft Defender Vulnerability Management -ms.sitesec: library -ms.pagetype: security ms.localizationpriority: medium audience: ITPro - - m365-security-compliance - - tier1 + - m365-security + - Tier1 search.appverid: met150 Last updated 03/04/2022 Last updated 03/04/2022 - [Microsoft 365 Defender](https://go.microsoft.com/fwlink/?linkid=2118804) - [Microsoft Defender for Servers Plan 1 & 2](/azure/defender-for-cloud/plan-defender-for-servers-select-plan) - > [!TIP] > Did you know you can try all the features in Microsoft Defender Vulnerability Management for free? Find out how to [sign up for a free trial](../defender-vulnerability-management/defender-vulnerability-management-trial.md). |
| security | Tvm Weaknesses | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-vulnerability-management/tvm-weaknesses.md | Title: Vulnerabilities in my organization description: Lists the common vulnerabilities and exposures (CVE) ID of weaknesses found in the software running in your organization. Discovered by the Microsoft Defender vulnerability management capabilities. -keywords: Microsoft Defender for Endpoint threat & vulnerability management, threat and vulnerability management, Microsoft Defender for Endpoint tvm weaknesses page, finding weaknesses through tvm, tvm vulnerability list, vulnerability details in tvm, Microsoft Defender Vulnerability Management -ms.sitesec: library -ms.pagetype: security ms.localizationpriority: medium audience: ITPro - - m365-security-compliance - - tier1 + - m365-security + - Tier1 search.appverid: met150 Last updated 03/04/2022 Last updated 03/04/2022 - [Microsoft 365 Defender](https://go.microsoft.com/fwlink/?linkid=2118804) - [Microsoft Defender for Servers Plan 1 & 2](/azure/defender-for-cloud/plan-defender-for-servers-select-plan) - > [!IMPORTANT] > Defender Vulnerability Management can help identify Log4j vulnerabilities in applications and components. [Learn more](../defender-endpoint/tvm-manage-Log4shell-guidance.md). |
| security | Tvm Zero Day Vulnerabilities | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-vulnerability-management/tvm-zero-day-vulnerabilities.md | Title: Mitigate zero-day vulnerabilities description: Learn how to find and mitigate zero-day vulnerabilities in your environment through Microsoft Defender Vulnerability Management. -keywords: Microsoft Defender for Endpoint tvm zero day vulnerabilities, tvm, threat & vulnerability management, zero day, 0-day, mitigate 0 day vulnerabilities, vulnerable CVE, mdvm, Microsoft Defender Vulnerability Management -ms.sitesec: library -ms.pagetype: security ms.localizationpriority: medium audience: ITPro - - m365-security-compliance - - tier1 + - m365-security + - Tier1 search.appverid: met150 Last updated 03/04/2022 Last updated 03/04/2022 - [Microsoft 365 Defender](https://go.microsoft.com/fwlink/?linkid=2118804) - [Microsoft Defender for Servers Plan 1 & 2](/azure/defender-for-cloud/plan-defender-for-servers-select-plan) - A zero-day vulnerability is a flaw in software for which no official patch or security update has been released. A software vendor may or may not be aware of the vulnerability, and no public information about this risk is available. Zero-day vulnerabilities often have high severity levels and are actively exploited. Vulnerability management will only display zero-day vulnerabilities it has information about. |
| security | Whats New In Microsoft Defender Vulnerability Management | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-vulnerability-management/whats-new-in-microsoft-defender-vulnerability-management.md | Title: What's new in Microsoft Defender Vulnerability Management Public Preview description: See what features are available in the latest release of Microsoft Defender for Vulnerability Management public preview. -keywords: what's new in Microsoft Defender for Endpoint, ga, generally available, capabilities, available, new search.appverid: met150 -ms.sitesec: library -ms.pagetype: security ms.localizationpriority: medium audience: ITPro - - m365-security-compliance - - tier2 + - m365-security Previously updated : 07/25/2022 Last updated : 08/01/2023 # What's new in Microsoft Defender Vulnerability Management Public Preview This article provides information about new features and important product updat > [!TIP] > Did you know you can try all the features in Microsoft Defender Vulnerability Management for free? Find out how to [sign up for a free trial](../defender-vulnerability-management/defender-vulnerability-management-trial.md). +## August 2023 ++Microsoft Defender Vulnerability Management Standalone is now Generally Available. To learn more about what's included in Microsoft Defender Vulnerability Management plans, see [Compare Microsoft Defender Vulnerability Management plans and capabilities](defender-vulnerability-management-capabilities.md). + ## March 2023 Microsoft Defender Vulnerability Management add-on is now Generally Available. This includes consolidated inventories, new assessments, and mitigation tools to further enhance your vulnerability management program. To learn more about what's included in Microsoft Defender Vulnerability Management plans, see [Compare Microsoft Defender Vulnerability Management plans and capabilities](defender-vulnerability-management-capabilities.md). |
| security | Windows Authenticated Scan | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-vulnerability-management/windows-authenticated-scan.md | Title: Authenticated scan for Windows in Defender Vulnerability Management description: Find out about how to create Authenticated scans for Windows -keywords: Microsoft Defender Vulnerability Management, authenticated scans search.appverid: MET150 ms.localizationpriority: medium Last updated 05/12/2022 - m365-security+ - Tier1 |
| security | Advanced Hunting Deviceinfo Table | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender/advanced-hunting-deviceinfo-table.md | For information on other tables in the advanced hunting schema, [see the advance |`SensorHealthState` | `string` | Indicates health of the device's EDR sensor, if onboarded to Microsoft Defender For Endpoint | |`IsExcluded`| `bool` | Determines if the device is currently excluded from Microsoft Defender for Vulnerability Management experiences | |`ExclusionReason` | `string` | Indicates the reason for device exclusion |-|`AssetValue`| `string` | Indicates the value of a device as assigned by the user | -|`ExposureLevel` | `string` | Indicates the exposure level of a device | -|`IsInternetFacing` | `boolean` | Indicates whether the device is internet-facing | +| `AssetValue`| `string` | Indicates the value of a device as assigned by the user | +| `ExposureLevel` | `string` | Indicates the exposure level of a device | +| `IsInternetFacing` | `boolean` | Indicates whether the device is internet-facing | +| `DeviceManualTags` | `string` | Device tags created manually using the portal UI or public API | +| `DeviceDynamicTags` | `string` | Device tags assigned automatically using dynamic tagging rules | +++ The `DeviceInfo` table provides device information based on periodic reports or signals (heartbeats) from a device. Complete reports are sent every hour and every time a change happens to a previous heartbeat. |
| security | Configure Asset Rules | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender/configure-asset-rules.md | + + Title: Asset rule management - Dynamic rules +description: You can use Microsoft Defender for Endpoint to configure dynamic tagging +keywords: asset rule management, dynamic tagging, Microsoft Defender for Endpoint, devices, Microsoft 365 Defender, Defender ++ms.mktglfcycl: deploy +ms.sitesec: library +ms.pagetype: security +++ms.localizationpriority: medium ++audience: ITPro ++- m365-security +- tier2 +++search.appverid: met150 Last updated : 07/11/2023+++# Asset rule management - Dynamic rules for devices ++> [!IMPORTANT] +> Some information in this article relates to prereleased products/services that might be substantially modified before they are commercially released. Microsoft makes no warranties, express or implied, for the information provided here. ++**Applies to:** ++- [Microsoft 365 Defender](https://go.microsoft.com/fwlink/?linkid=2118804) +- [Microsoft Defender for Endpoint Plan 1](https://go.microsoft.com/fwlink/p/?linkid=2154037) +- [Microsoft Defender for Endpoint Plan 2](https://go.microsoft.com/fwlink/p/?linkid=2154037) +- [Microsoft Defender for Business](../defender-business/mdb-overview.md) ++Maintaining an accurate inventory of devices in a constantly changing corporate environment is a critical task for security and IT teams. Failing to effectively manage device context, such as device value and tags, which many organizations use in their security workflows can lead to security vulnerabilities. ++Devices may require updates, replacements, or reconfigurations due to changing business needs. This can create a significant challenge for security and IT teams who are responsible for the ongoing management of the device inventory, and ensuring devices are effectively tracked and managed over time. ++Dynamic rules can help manage device context by assigning tags and device values automatically based on certain criteria. This will save time and ensure accuracy. For example, tagging devices with a specific OS version or assigning a value to devices with a particular naming convention. Dynamic rules also ensure devices remain relevant by removing tags or updating values when criteria are no longer met. ++## Create a new dynamic rule ++A rule can be based on device name, domain, OS platform, internet facing status, onboarding status and manual device tags. You can select or create a tag that will be applied based on the conditions youΓÇÖve set. ++The following steps guide you on how to create a new dynamic rule in Microsoft 365 Defender: ++1. Sign in to the [Microsoft 365 Defender portal](https://security.microsoft.com) as a user who can view and perform actions on all devices. +2. In the navigation pane, select **Settings** \> **Microsoft 365 Defender** \> **Asset Rule Management**. +3. Select **Create a new rule**. +4. Enter a **Rule name** and **Description***. +5. Select **Next** to choose the conditions you want to assign: +++6. Select **Next** and choose the tag to apply to this rule. +++7. Select **Next** to review and finish creating the rule and then select **Submit**. ++>[!Note] +> It may take up to 1 hour for changes to be reflected in the portal. ++### Dynamic tags in the Device Inventory ++You can see the dynamic tags assigned in the Device Inventory view. ++To see tags on individual devices: ++1. Select **Devices** from the **Assets** navigation menu in the [Microsoft 365 Defender portal](https://security.microsoft.com). +2. In the **Device Inventory** page, select the device name that you want to view. +3. Select **Manage tags**. +++### Updating rules ++Dynamic tags and device values set by dynamic rules can't be manually updated. To edit, delete or turn off a rule, in the **Asset Rule Management** page select the rule and choose the action you wish to take: + |
| security | Whats New | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender/whats-new.md | -Lists the new features and functionality in Microsoft 365 Defender. +Lists the new features and functionality in Microsoft 365 Defender. RSS feed: Get notified when this page is updated by copying and pasting the following URL into your feed reader: For more information on what's new with other Microsoft Defender security produc You can also get product updates and important notifications through the [message center](https://admin.microsoft.com/Adminportal/Home#/MessageCenter). -## July 2023 +## August 2023 ++- (Preview) [Asset rule management - Dynamic rules for devices](./configure-asset-rules.md) is now in public preview. Dynamic rules can help manage device context by assigning tags and device values automatically based on certain criteria. +- (Preview) The [DeviceInfo](advanced-hunting-deviceinfo-table.md) table in advanced hunting now also includes the columns `DeviceManualTags` and `DeviceDynamicTags` in public preview to surface both manually and dynamically assigned tags related to the device you are investigating. +## July 2023 - (GA) The [Attack story](investigate-incidents.md#attack-story) in incidents is now generally available. The attack story provides the full story of the attack and allows incident response teams to view the details and apply remediation. - A new URL and domain page is now available in Microsoft 365 Defender. The updated URL and domain page provides a single place to view all the information about a URL or a domain, including its reputation, the users who clicked it, the devices that accessed it, and emails where the URL or domain was seen. For details, see [Investigate URLs in Microsoft 365 Defender](/microsoft-365/security/defender-endpoint/investigate-domain). + ## June 2023 - (GA) Microsoft Defender Experts for XDR is now generally available. Defender Experts for XDR augments your security operations center by combining automation and Microsoft's security analyst expertise, helping you detect and respond to threats with confidence and improve your security posture. Microsoft Defender Experts for XDR is sold separately from other Microsoft 365 Defender products. If you're a Microsoft 365 Defender customer and are interested in purchasing Defender Experts for XDR, see [Overview of Microsoft Defender Experts for XDR](dex-xdr-overview.md). |
| security | Outbound Spam High Risk Delivery Pool About | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/office-365-security/outbound-spam-high-risk-delivery-pool-about.md | The forwarded or relayed message should meet one of the following criteria to av - SPF passes when the message comes to Microsoft 365. - DKIM on the sender domain passes when the message comes to Microsoft 365. -You can tell that a message was sent via the relay pool by looking at the outbound server IP (the relay pool is in the 40.95.0.0/16 range), or by looking at the outbound server name (the name contains the value `rly`). +You can tell that a message was sent via the relay pool by looking at the outbound server IP (the relay pool is in the 40.95.0.0/16 range). In cases where we can authenticate the sender, we use Sender Rewriting Scheme (SRS) to help the recipient email system know that the forwarded message is from a trusted source. You can read more about how that works and what you can do to help make sure the sending domain passes authentication in [Sender Rewriting Scheme (SRS) in Office 365](/office365/troubleshoot/antispam/sender-rewriting-scheme). |
| security | Reports Email Security | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/office-365-security/reports-email-security.md | The **Mail latency report** in Defender for Office 365 contains information on t ## Post-delivery activities report -> [!NOTE] -> This report is in the process of being rolled out. Worldwide availability is expected by the end of March 2023. - The **Post-delivery activities** report shows information about email messages that removed from user mailboxes after delivery by zero-hour auto purge (ZAP). For more information about ZAP, see [Zero-hour auto purge (ZAP) in Exchange Online](zero-hour-auto-purge.md). The report shows real-time information, with updated threat information. |
| solutions | Collaborate Guests Cross Cloud | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/solutions/collaborate-guests-cross-cloud.md | In order to invite guests from an organization in a different Microsoft Azure cl Note that tenants in Microsoft Azure Government (Microsoft 365 GCC High and DoD) can't create a cross-tenant connection with tenants in Microsoft Azure China. +> [!NOTE] +> Cross-cloud guest access between Microsoft 365 China (21Vianet) and other Microsoft 365 cloud environments is not supported during the preview. + > [!IMPORTANT] > The organization that you're collaborating with must also configure these settings for their organization. |
| syntex | Content Assembly Setup | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/syntex/content-assembly-setup.md | + + Title: Set up and manage content assembly in Microsoft Syntex ++++audience: admin + Last updated : 08/01/2023+++search.appverid: ++ - enabler-strategic + - m365initiative-syntex +ms.localizationpriority: medium +description: Learn to create set up and manage content assembly in Microsoft Syntex. +++# Set up and manage content assembly in Microsoft Syntex ++The content assembly service for Microsoft Syntex is set up in the Microsoft 365 admin center. ++## Prerequisites ++### Licensing ++Before you can use content assembly in Syntex, you must first link an Azure subscription in [Syntex pay-as-you-go](syntex-azure-billing.md). Content assembly in Syntex is billed based on the [type and number of transactions](syntex-pay-as-you-go-services.md). ++### Permissions ++You must have Global admin or SharePoint admin permissions to be able to access the Microsoft 365 admin center and set up content assembly in Syntex. ++## Set up content assembly ++After an [Azure subscription is linked to Microsoft Syntex](syntex-azure-billing.md), content assembly will be automatically set up and enabled for all SharePoint sites. ++## Manage sites ++By default, content assembly is available for libraries on all SharePoint sites. To turn off content assembly on all sites, follow these steps. ++1. In the Microsoft 365 admin center, select <a href="https://go.microsoft.com/fwlink/p/?linkid=2171997" target="_blank">**Setup**</a>, and then select **Use content AI with Microsoft Syntex**. ++2. On the **Use content AI with Microsoft Syntex** page, select **Manage Microsoft Syntex**. ++3. On the **Manage Microsoft Syntex** page, select **Content assembly**. ++4. On the **Content assembly** page, select **No libraries**, and then select **Save**. |
| syntex | Set Up Microsoft Syntex | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/syntex/set-up-microsoft-syntex.md | The following table provides links to the specific setup instructions for each s |:-|:-| |Prebuilt document processing | [Set up prebuilt document processing](prebuilt-setup.md) | |Unstructured document processing | [Set up unstructured document processing](unstructured-setup.md) |+|Content assembly | [Set up content assembly](content-assembly-setup.md) | |Image tagging | [Set up image tagging](image-tagging-setup.md) | |Optical character recognition | [Set up optical character recognition](ocr.md) | |
| syntex | Skos Format Reference | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/syntex/skos-format-reference.md | description: Learn about the SKOS format reference for SharePoint taxonomy. # SKOS format reference for SharePoint taxonomy -This article includes RDF vocabulary used to represent [SharePoint taxonomy](/dotnet/api/microsoft.sharepoint.taxonomy) and is based on [SKOS](https://www.w3.org/TR/skos-primer/). For serialization of this RDF syntax, use RDF [TURTLE](https://www.w3.org/TR/turtle/). +This article includes RDF vocabulary used to represent [SharePoint taxonomy](/dotnet/api/microsoft.sharepoint.client.taxonomy) and is based on [SKOS](https://www.w3.org/TR/skos-primer/). For serialization of this RDF syntax, use RDF [TURTLE](https://www.w3.org/TR/turtle/). -The following table shows the [SKOS](https://www.w3.org/TR/skos-primer/) equivalents for the [SharePoint taxonomy](/dotnet/api/microsoft.sharepoint.taxonomy) vocabulary. SharePoint doesn't support [SKOS](https://www.w3.org/TR/skos-primer/) values that have no SharePoint taxonomy equivalent. +The following table shows the [SKOS](https://www.w3.org/TR/skos-primer/) equivalents for the [SharePoint taxonomy](/dotnet/api/microsoft.sharepoint.client.taxonomy) vocabulary. SharePoint doesn't support [SKOS](https://www.w3.org/TR/skos-primer/) values that have no SharePoint taxonomy equivalent. |SharePoint taxonomy|SKOS equivalent| |:--|:--| A taxonomy is a formal classification system. A taxonomy groups the words, label Represents a Term or a Keyword in a managed metadata hierarchy. -A [Term](/dotnet/api/microsoft.sharepoint.taxonomy.term) is the atomic unit of a SharePoint [TermStore](/dotnet/api/microsoft.sharepoint.taxonomy.termstore). Each [Term](/dotnet/api/microsoft.sharepoint.taxonomy.term) belongs to a [TermSet](/dotnet/api/microsoft.sharepoint.taxonomy.termset) that belongs to a [TermGroup](/dotnet/api/microsoft.sharepoint.taxonomy.group). +A [Term](/dotnet/api/microsoft.sharepoint.client.taxonomy.term) is the atomic unit of a SharePoint [TermStore](/dotnet/api/microsoft.sharepoint.client.taxonomy.termstore). Each [Term](/dotnet/api/microsoft.sharepoint.client.taxonomy.term) belongs to a [TermSet](/dotnet/api/microsoft.sharepoint.client.taxonomy.termset) that belongs to a [TermGroup](/dotnet/api/microsoft.sharepoint.client.taxonomy.termgroup). -The syntax to define a [Term](/dotnet/api/microsoft.sharepoint.taxonomy.term) is as follows: +The syntax to define a [Term](/dotnet/api/microsoft.sharepoint.client.taxonomy.term) is as follows: ```SKOS ex:TermA a sharepoint-taxonomy:Term; ex:TermA a sharepoint-taxonomy:Term; sharePoint-taxonomy:defaultLabel ΓÇ£Term AΓÇ¥@en-us. ``` -A [Term](/dotnet/api/microsoft.sharepoint.taxonomy.term) compulsorily exists within a [TermSet](/dotnet/api/microsoft.sharepoint.taxonomy.termset). DefaultLabel is the name of the [Term](/dotnet/api/microsoft.sharepoint.taxonomy.term) as it appears in the visual representation. The required fields for defining a [Term](/dotnet/api/microsoft.sharepoint.taxonomy.term) include: +A [Term](/dotnet/api/microsoft.sharepoint.client.taxonomy.term) compulsorily exists within a [TermSet](/dotnet/api/microsoft.sharepoint.client.taxonomy.termset). DefaultLabel is the name of the [Term](/dotnet/api/microsoft.sharepoint.client.taxonomy.term) as it appears in the visual representation. The required fields for defining a [Term](/dotnet/api/microsoft.sharepoint.client.taxonomy.term) include: - sharepoint-taxonomy: defaultLabel - sharepoint-taxonomy: inTermSet -A [Term](/dotnet/api/microsoft.sharepoint.taxonomy.term) can: +A [Term](/dotnet/api/microsoft.sharepoint.client.taxonomy.term) can: -- Be hierarchically related to another [Term](/dotnet/api/microsoft.sharepoint.taxonomy.term) that is provided both the [Terms](/dotnet/api/microsoft.sharepoint.taxonomy.term) belong to the same [TermSet](/dotnet/api/microsoft.sharepoint.taxonomy.termset).-- Have multiple child [Terms](/dotnet/api/microsoft.sharepoint.taxonomy.term), but only a single parent [Term](/dotnet/api/microsoft.sharepoint.taxonomy.term).-- Not have a parent [Term](/dotnet/api/microsoft.sharepoint.taxonomy.term) defined, if it's a topLevelTermOf a [TermSet](/dotnet/api/microsoft.sharepoint.taxonomy.termset).-- Have one defaultLabel, per [TermStore](/dotnet/api/microsoft.sharepoint.taxonomy.termstore) working language.-- Not exist if it neither contains a parent [Term](/dotnet/api/microsoft.sharepoint.taxonomy.term), nor is the topLevelTermOf a [TermSet](/dotnet/api/microsoft.sharepoint.taxonomy.termset).+- Be hierarchically related to another [Term](/dotnet/api/microsoft.sharepoint.client.taxonomy.term) that is provided both the [Terms](/dotnet/api/microsoft.sharepoint.client.taxonomy.term) belong to the same [TermSet](/dotnet/api/microsoft.sharepoint.client.taxonomy.termset). +- Have multiple child [Terms](/dotnet/api/microsoft.sharepoint.client.taxonomy.term), but only a single parent [Term](/dotnet/api/microsoft.sharepoint.client.taxonomy.term). +- Not have a parent [Term](/dotnet/api/microsoft.sharepoint.client.taxonomy.term) defined, if it's a topLevelTermOf a [TermSet](/dotnet/api/microsoft.sharepoint.client.taxonomy.termset). +- Have one defaultLabel, per [TermStore](/dotnet/api/microsoft.sharepoint.client.taxonomy.termstore) working language. +- Not exist if it either contains a parent [Term](/dotnet/api/microsoft.sharepoint.client.taxonomy.term), or is the topLevelTermOf a [TermSet](/dotnet/api/microsoft.sharepoint.client.taxonomy.termset). - Have only a unique defaultLabel in the same hierarchical level. **sharepoint-taxonomy:TermSet** Represents a hierarchical or flat set of Term objects known as a "TermSet". -As the name suggests, TermSet is a set of [Terms](/dotnet/api/microsoft.sharepoint.taxonomy.term). A [Term](/dotnet/api/microsoft.sharepoint.taxonomy.term) in a [TermStore](/dotnet/api/microsoft.sharepoint.taxonomy.termstore) must belong to a [TermSet](/dotnet/api/microsoft.sharepoint.taxonomy.termset). No [Term](/dotnet/api/microsoft.sharepoint.taxonomy.term) can exist independently. +As the name suggests, TermSet is a set of [Terms](/dotnet/api/microsoft.sharepoint.client.taxonomy.term). A [Term](/dotnet/api/microsoft.sharepoint.client.taxonomy.term) in a [TermStore](/dotnet/api/microsoft.sharepoint.client.taxonomy.termstore) must belong to a [TermSet](/dotnet/api/microsoft.sharepoint.client.taxonomy.termset). No [Term](/dotnet/api/microsoft.sharepoint.client.taxonomy.term) can exist independently. -The syntax to define a [TermSet](/dotnet/api/microsoft.sharepoint.taxonomy.termset) is: +The syntax to define a [TermSet](/dotnet/api/microsoft.sharepoint.client.taxonomy.termset) is: ```SKOS ex:TermSetA a sharepoint-taxonomy:TermSet; ex:TermSetA a sharepoint-taxonomy:TermSet; sharepoint-taxonomy:hasTopLevelTerm Ex:Term A. ``` -[TermSets](/dotnet/api/microsoft.sharepoint.taxonomy.termset) are logically grouped together in [TermGroups](/dotnet/api/microsoft.sharepoint.taxonomy.group). The required field for defining a [TermSet](/dotnet/api/microsoft.sharepoint.taxonomy.termset) is: +[TermSets](/dotnet/api/microsoft.sharepoint.client.taxonomy.termset) are logically grouped together in [TermGroups](/dotnet/api/microsoft.sharepoint.client.taxonomy.group). The required field for defining a [TermSet](/dotnet/api/microsoft.sharepoint.client.taxonomy.termset) is: - sharepoint-taxonomy: termSetName -If the termSetName provided isn't unique within the [TermGroup](/dotnet/api/microsoft.sharepoint.taxonomy.group), SharePoint appends a number at the end of the name to maintain the uniqueness of termSetName(s). +If the termSetName provided isn't unique within the [TermGroup](/dotnet/api/microsoft.sharepoint.client.taxonomy.group), SharePoint appends a number at the end of the name to maintain the uniqueness of termSetName(s). **sharepoint-taxonomy:hasTopLevelTerm** -SharePoint uses this property to map the top-most [Term](/dotnet/api/microsoft.sharepoint.taxonomy.term) in the [TermSet](/dotnet/api/microsoft.sharepoint.taxonomy.termset), which is the entry point to the hierarchy of [Terms](/dotnet/api/microsoft.sharepoint.taxonomy.term) in a [TermSet](/dotnet/api/microsoft.sharepoint.taxonomy.termset). This is an inverse relation to sharepoint-taxonomy: topLevelTermOf. +SharePoint uses this property to map the top-most [Term](/dotnet/api/microsoft.sharepoint.client.taxonomy.term) in the [TermSet](/dotnet/api/microsoft.sharepoint.client.taxonomy.termset), which is the entry point to the hierarchy of [Terms](/dotnet/api/microsoft.sharepoint.client.taxonomy.term) in a [TermSet](/dotnet/api/microsoft.sharepoint.client.taxonomy.termset). This property is an inverse relation to sharepoint-taxonomy: topLevelTermOf. -The syntax to define this is: +The syntax to define this property is: ```SKOS ex:TermSetA sharepoint-taxonomy:hasTopLevelTerm ex:TermA. ``` > [!NOTE]-> You cannot define the top level [Term](/dotnet/api/microsoft.sharepoint.taxonomy.term) of a parent [Term](/dotnet/api/microsoft.sharepoint.taxonomy.term). +> You can't define the top level [Term](/dotnet/api/microsoft.sharepoint.client.taxonomy.term) of a parent [Term](/dotnet/api/microsoft.sharepoint.client.taxonomy.term). **sharepoint-taxonomy:topLevelTermOf** Sharepoint-taxonomy: topLevelTermOf is the inverse of sharepoint-taxonomy: hasTopLevelTerm -The syntax to define this is: +The syntax to define this property is: ```SKOS ex:TermA sharepoint-taxonomy:topLevelTermOf ex:TermSetA. ex:TermA sharepoint-taxonomy:topLevelTermOf ex:TermSetA. **sharepoint-taxonomy:inTermSet** -Use this to map a [Term](/dotnet/api/microsoft.sharepoint.taxonomy.term) to a [TermSet](/dotnet/api/microsoft.sharepoint.taxonomy.termset). A [Term](/dotnet/api/microsoft.sharepoint.taxonomy.term) can only exist in a single [TermSet](/dotnet/api/microsoft.sharepoint.taxonomy.termset). SharePoint requires this property when [defining a term](#sharepoint-taxonomy-vocabulary). +Use this property to map a [Term](/dotnet/api/microsoft.sharepoint.client.taxonomy.term) to a [TermSet](/dotnet/api/microsoft.sharepoint.client.taxonomy.termset). A [Term](/dotnet/api/microsoft.sharepoint.client.taxonomy.term) can only exist in a single [TermSet](/dotnet/api/microsoft.sharepoint.client.taxonomy.termset). SharePoint requires this property when [defining a term](#sharepoint-taxonomy-vocabulary). ## Required labels Your organization may want to do careful planning before you start to use managed metadata. The amount of planning that you must do depends on how formal your taxonomy is. It also depends on how much control that you want to impose on metadata. At each level of the hierarchy, you need to configure required labels for a Term or TermSet. -A Term can have one or more labels in the default language, and zero or more labels in the non-default language. If the term has labels in a language, one of the labels must be the default label. +A Term can have one or more labels in the default language, and zero or more labels in the nondefault language. If the term has labels in a language, one of the labels must be the default label. **sharepoint-taxonomy:defaultLabel** -Use this default lexical label for a [Term](/dotnet/api/microsoft.sharepoint.taxonomy.term) that is a required parameter for a [Term](/dotnet/api/microsoft.sharepoint.taxonomy.term). Use to visually representing the [Term](/dotnet/api/microsoft.sharepoint.taxonomy.term). +Use this default lexical label for a [Term](/dotnet/api/microsoft.sharepoint.client.taxonomy.term) that is a required parameter for a [Term](/dotnet/api/microsoft.sharepoint.client.taxonomy.term). Use to visually representing the [Term](/dotnet/api/microsoft.sharepoint.client.taxonomy.term). The syntax to define a defaultLabel is: The syntax to define a defaultLabel is: ex:TermA sharepoint-taxonomy:defaultLabel ΓÇ£Term AΓÇ¥@en-us. ``` -The defaultLabel contains two parts to it ΓÇô the string and the language tag. The language must be one of the [TermStore](/dotnet/api/microsoft.sharepoint.taxonomy.termstore) working languages. The defaultLabel must be unique for all [Terms](/dotnet/api/microsoft.sharepoint.taxonomy.term) in the same [TermSet](/dotnet/api/microsoft.sharepoint.taxonomy.termset), at the same hierarchical level. +The defaultLabel contains two parts to it ΓÇô the string and the language tag. The language must be one of the [TermStore](/dotnet/api/microsoft.sharepoint.client.taxonomy.termstore) working languages. The defaultLabel must be unique for all [Terms](/dotnet/api/microsoft.sharepoint.client.taxonomy.term) in the same [TermSet](/dotnet/api/microsoft.sharepoint.client.taxonomy.termset), at the same hierarchical level. **sharepoint-taxonomy:termSetName** Gets and sets the name for the current TermSet object. -This is the lexical label for a [TermSet](/dotnet/api/microsoft.sharepoint.taxonomy.termset), in a [TermStore](/dotnet/api/microsoft.sharepoint.taxonomy.termstore) working language. This is a required parameter for a [TermSet](/dotnet/api/microsoft.sharepoint.taxonomy.termset). Use to visually representing a [TermSet](/dotnet/api/microsoft.sharepoint.taxonomy.termset). +This property is the lexical label for a [TermSet](/dotnet/api/microsoft.sharepoint.client.taxonomy.termset), in a [TermStore](/dotnet/api/microsoft.sharepoint.client.taxonomy.termstore) working language. This property is a required parameter for a [TermSet](/dotnet/api/microsoft.sharepoint.client.taxonomy.termset). Use to visually representing a [TermSet](/dotnet/api/microsoft.sharepoint.client.taxonomy.termset). The syntax to define a termSetName is: ex:TermA sharepoint-taxonomy:TermSetName ΓÇ£Term Set AΓÇ¥@en-us. Gets and sets the property name for the current TermSet object. -This is the lexical label for a sharepoint-taxonomy:SharedCustomPropertyForTerm, sharepoint-taxonomy:LocalCustomPropertyForTerm and sharepoint-taxonomy:CustomPropertyForTermSet in a [TermStore](/dotnet/api/microsoft.sharepoint.taxonomy.termstore) working language. +This property is the lexical label for a sharepoint-taxonomy:SharedCustomPropertyForTerm, sharepoint-taxonomy:LocalCustomPropertyForTerm and sharepoint-taxonomy:CustomPropertyForTermSet in a [TermStore](/dotnet/api/microsoft.sharepoint.client.taxonomy.termstore) working language. The sharepoint-taxonomy: propertyName is treated as the key of the CustomProperty. You can also add optional labels to your taxonomy. **sharepoint-taxonomy:otherLabel** -This is the alternate lexical label for a [Term](/dotnet/api/microsoft.sharepoint.taxonomy.term). +This property is the alternate lexical label for a [Term](/dotnet/api/microsoft.sharepoint.client.taxonomy.term). The syntax to define an otherLabel is: Taxonomies have hierarchical and sometimes a simple ΓÇ£related termΓÇ¥ associati **sharepoint-taxonomy:parent** -This hierarchically relates a [Term](/dotnet/api/microsoft.sharepoint.taxonomy.term) to another [Term](/dotnet/api/microsoft.sharepoint.taxonomy.term). A [Term](/dotnet/api/microsoft.sharepoint.taxonomy.term) could be a top level [Term](/dotnet/api/microsoft.sharepoint.taxonomy.term) of a [TermSet](/dotnet/api/microsoft.sharepoint.taxonomy.termset), but in case it doesnΓÇÖt it must have a parent [Term](/dotnet/api/microsoft.sharepoint.taxonomy.term). +This property hierarchically relates a [Term](/dotnet/api/microsoft.sharepoint.client.taxonomy.term) to another [Term](/dotnet/api/microsoft.sharepoint.client.taxonomy.term). A [Term](/dotnet/api/microsoft.sharepoint.client.taxonomy.term) could be a top level [Term](/dotnet/api/microsoft.sharepoint.client.taxonomy.term) of a [TermSet](/dotnet/api/microsoft.sharepoint.client.taxonomy.termset), but in case it doesnΓÇÖt it must have a parent [Term](/dotnet/api/microsoft.sharepoint.client.taxonomy.term). The syntax to define a parent is: The syntax to define a parent is: ex:TermA1 sharepoint-taxonomy:parent ex:TermA. ``` -This means that TermA is the parent and TermA is the child. +This syntax means that TermA is the parent and TermA is the child. **sharepoint-taxonomy:child** -The object contains one or more child TermSet instances, and these can be accessed through the TermSets property. This class also provides methods for creating new child TermSet objects. Permissions for editing child Term and TermSet instances are specified on the group. +The object contains one or more child TermSet instances, and these instances can be accessed through the TermSets property. This class also provides methods for creating new child TermSet objects. Permissions for editing child Term and TermSet instances are specified on the group. -This hierarchically relates a [Term](/dotnet/api/microsoft.sharepoint.taxonomy.term) to another [Term](/dotnet/api/microsoft.sharepoint.taxonomy.term). +This property hierarchically relates a [Term](/dotnet/api/microsoft.sharepoint.client.taxonomy.term) to another [Term](/dotnet/api/microsoft.sharepoint.client.taxonomy.term). The syntax to define a child is: The syntax to define a child is: ex:TermA sharepoint-taxonomy:child ex:TermA1. ``` -This means that TermA is the parent and TermA is the child. +This syntax means that TermA is the parent and TermA is the child. ## Documentation notes This section discusses the taxonomy detailed in the Microsoft.SharePoint.Taxonom **sharepoint-taxonomy:description** -This is a detailed explanation of any [SharePoint taxonomy](/dotnet/api/microsoft.sharepoint.taxonomy) vocabulary entity. +This property is a detailed explanation of any [SharePoint taxonomy](/dotnet/api/microsoft.sharepoint.client.taxonomy) vocabulary entity. The syntax to add a description is: ex:TermA sharepoint-taxonomy:description ΓÇ£Term A is the top level term o Gets the collection of custom property objects for the current Term object from the read-only dictionary. -Custom Properties are key-values pairs that can be defined for a [Term](/dotnet/api/microsoft.sharepoint.taxonomy.term) or a [TermSet](/dotnet/api/microsoft.sharepoint.taxonomy.termset), to further the description of the [Term](/dotnet/api/microsoft.sharepoint.taxonomy.term) or a [TermSet](/dotnet/api/microsoft.sharepoint.taxonomy.termset). SharePoint specifies the key of the custom property with the help of propertyName. +Custom Properties are key-values pairs that can be defined for a [Term](/dotnet/api/microsoft.sharepoint.client.taxonomy.term) or a [TermSet](/dotnet/api/microsoft.sharepoint.client.taxonomy.termset), to further the description of the [Term](/dotnet/api/microsoft.sharepoint.client.taxonomy.term) or a [TermSet](/dotnet/api/microsoft.sharepoint.client.taxonomy.termset). SharePoint specifies the key of the custom property with the help of propertyName. **sharepoint-taxonomy:CustomPropertyForTermSet** -The syntax to define this is: +The syntax to define this property is: ```SKOS ex:CustomProp1 rdf:type sharepoint-taxonomy:CustomPropertyForTermSet; ex:TermSetA ex:CustomProp1 ΓÇ£RedΓÇ¥@en-us. **sharepoint-taxonomy:SharedCustomPropertyForTerm** -If the custom property for a [Term](/dotnet/api/microsoft.sharepoint.taxonomy.term) needs to be carried along with the [Term](/dotnet/api/microsoft.sharepoint.taxonomy.term), when you reuse the [Term](/dotnet/api/microsoft.sharepoint.taxonomy.term) somewhere else, then you need to be define it under SharedCustomPropertyForTerm. +If the custom property for a [Term](/dotnet/api/microsoft.sharepoint.client.taxonomy.term) needs to be carried along with the [Term](/dotnet/api/microsoft.sharepoint.client.taxonomy.term), when you reuse the [Term](/dotnet/api/microsoft.sharepoint.client.taxonomy.term) somewhere else, then you need to define it under SharedCustomPropertyForTerm. -The syntax to define this is: +The syntax to define this property is: ```SKOS ex:CustomProp2 rdf:type sharepoint-taxonomy:SharedCustomPropertyForTerm; ex:TermA ex:CustomProp2 ΓÇ£5 cmΓÇ¥@en-us. ``` **sharepoint-taxonomy:LocalCustomPropertyForTerm** -If the custom property for a [Term](/dotnet/api/microsoft.sharepoint.taxonomy.term) doesn't need to be carried along with the [Term](/dotnet/api/microsoft.sharepoint.taxonomy.term), when you reuse the [Term](/dotnet/api/microsoft.sharepoint.taxonomy.term) somewhere else, then you need to define it under LocalCustomPropertyForTerm. +If the custom property for a [Term](/dotnet/api/microsoft.sharepoint.client.taxonomy.term) doesn't need to be carried along with the [Term](/dotnet/api/microsoft.sharepoint.client.taxonomy.term), when you reuse the [Term](/dotnet/api/microsoft.sharepoint.client.taxonomy.term) somewhere else, then you need to define it under LocalCustomPropertyForTerm. -The syntax to define this is: +The syntax to define this property is: ```SKOS ex:CustomProp3 rdf:type sharepoint-taxonomy:LocalCustomPropertyForTerm; At each level of the hierarchy, you can configure specific data properties for a **sharepoint-taxonomy:isAvailableForTagging** -Use this to specify if a [Term](/dotnet/api/microsoft.sharepoint.taxonomy.term) or a [TermSet](/dotnet/api/microsoft.sharepoint.taxonomy.termset) available in SharePoint Lists and Libraries. +Use this property to specify if a [Term](/dotnet/api/microsoft.sharepoint.client.taxonomy.term) or a [TermSet](/dotnet/api/microsoft.sharepoint.client.taxonomy.termset) available in SharePoint Lists and Libraries. -The syntax for this is: +The syntax for this property is: ```SKOS ex:TermA sharepoint-taxonomy:isAvailableForTagging "true"^^xsd:Boolean; propertyName|Has Property Label|SharedCustomPropertyForTerm, LocalCustomProperty |LocalCustomPropertyForTerm|Has local custom property|Term|Boolean, String, Integer, Decimal, Double| |CustomPropertyForTermSet|Has Custom Property|TermSet|Boolean, String, Integer, Decimal, Double| -[SKOS](https://www.w3.org/TR/skos-primer/) valid scenarios that [SharePoint taxonomy](/dotnet/api/microsoft.sharepoint.taxonomy) doesn't allow: +[SKOS](https://www.w3.org/TR/skos-primer/) valid scenarios that [SharePoint taxonomy](/dotnet/api/microsoft.sharepoint.client.taxonomy) doesn't allow: - Hierarchical redundancy - A [SKOS](https://www.w3.org/TR/skos-primer/) concept can be attached to several broader concepts at the same time, but a sharepoint-taxonomy:Term can have only one sharepoint-taxonomy:parent, hence cyclic dependency, of Terms are also not allowed. - Orphaned terms aren't allowed in SharePoint taxonomy. Every sharepoint-taxonomy: Term should either have a sharepoint-taxonomy: parent or it should be the sharepoint-taxonomy: topLevelTermOf a TermSet. |
| syntex | Syntex Pay As You Go Services | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/syntex/syntex-pay-as-you-go-services.md | When you use Microsoft Syntex [pay-as-you-go](syntex-azure-billing.md), services |:-|:--|:-| |Prebuilt document processing|The number of pages processed for PDF or image files. Each of these counts as one transaction. You won't be charged for model training. You'll be charged for processing whether or not there's a positive classification, or any entities extracted.<br><br>Processing occurs on document upload and on subsequent updates. Processing is counted for each model applied. For example, if you have two models applied to a library and you upload or update a five-page document in that library, the total pages processed is 10.|$0.01/transaction| |Unstructured document processing|The number of pages processed for Word, PDF, or TIFF files; the number of sheets for Excel files; the number of slides for PowerPoint files; or the number of files for other file types. Each of these counts as one transaction. You won't be charged for model training. You'll be charged for processing whether or not there's a positive classification, or any entities extracted.<br><br>Processing occurs on document upload and on subsequent updates. Processing is counted for each model applied. For example, if you have two models applied to a library and you upload or update a five-page document in that library, the total pages processed is 10.|$0.05/transaction|+|Content assembly |The number of documents (word or PDF) created using Syntex templates. Each processed document counts as one transaction.<br><br>If you have an existing Syntex per-user license, you will not be charged for generating documents manually but will be charged for automated document generation using Power Automate. |$0.15/transaction | |Image tagging |The number of images processed. Each processed image counts as one transaction. You wonΓÇÖt be charged if you only enable pay-as-you-go billing for image tagging. You'll be charged only when you [enable image tagging on a document library](image-tagging.md). |$0.001/transaction | |Optical character recognition |The number of pages processed for images (JPEG, JPG, PNG, or BMP); the number of pages processed for PDF, TIF, or TIFF; or the number of embedded images in Teams chats and email messages. Each of these counts as one transaction. Processing occurs every time the file is edited. |$0.001/transaction| |
| syntex | Trial Syntex | https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/syntex/trial-syntex.md | description: Learn how to plan, sign up, and run a trial pilot program for Micro # Run a trial of Microsoft Syntex > [!NOTE]-> Per-user trials are no longer available. This article is currenty being updated for pay-as-you-go trials. +> This article will describe how to set up and run a trial pilot program to deploy Microsoft Syntex in your organization. It is currently being updated for pay-as-you-go trials. Per-user trials are no longer available. +<! This article describes how to set up and run a trial pilot program to deploy Microsoft Syntex in your organization. It also recommends best practices for the trial. ## Sign up for a trial If you don't purchase licenses following the trial: [Get started driving adoption of Microsoft Syntex](adoption-getstarted.md) -[Scenarios and use cases for Microsoft Syntex](adoption-scenarios.md) +[Scenarios and use cases for Microsoft Syntex](adoption-scenarios.md)> |