Author: Bob Lin

Situation: the client keeps having an issue with an external email address. Whenever an email comes from the externa email address, it always is marked spam and sent to quarantine.

Resolution: We can create a bypass tule. here is how.

• Login Microsoft 365 admin center.
• Go to Exchange admin center.
• Navigate to Mail flow>Rules.
• Click on Add a rule.

5. Click on Create a new rule.

6. Enter the Name, Apply this if, Do the following and make sure you select Modify the message properties and Set the spam confidence leave (SCL) to -1.

7. It looks like this.

8. make sure it is Enabled.

To grant access to specific users traveling to specific countries, you can add a user to “exclude” group in Conditional Access policies. Here is how.

1. Sign in to the Azure portal and navigate to Azure Active Directory.
2. Click on Security on the left panel.
3. Click on Conditional Access.
4. Click on Policies.
5. Select exclude users and group.
6. Add the user to exclude users and group.

To start a Teams recording, select More actions > Record and transcribe > Start recording.

To stop the recoding, lick on More actions > Record and transcribe > Stop recording.

To find the recording file, open OneDrive, go to Recording folder.

1. Go to Settings.>Personalization.

2. Under Personalization>Taskbar, click on Touch keyboard, you have these options: Never, Always, and When no keyboard attached.

3. You may also want to enable Virtual touchpad.

Quoted from microsoft:

To use live translated captions in Microsoft Teams, the meeting organizer must have a Teams Premium license for attendees12. Live transcriptions are available in English (US) on Teams Desktop for scheduled meetings under certain licenses3. If you’re facing this dilemma, the only solution to access live translation is by upgrading to Teams Premium4. A Microsoft 365 or Office 365 license is required to participate in a live event as an authenticated user5.

No, it is impossible to add external users to a shared mailbox. However, you may be able to add guests to distribution group.

You can grant permissions to a user on a directory (Read, Write, Modify) using the Windows command line, for example,

icacls “D:\dy” /grant administrtor:(OI)(CI)F /T

• F = Full Control
• CI = Container Inherit – This flag indicates that subordinate containers will inherit this ACE.
• OI = Object Inherit – This flag indicates that subordinate files will inherit the ACE.
• /T = Apply recursively to existing files and sub-folders. (OI and CI only apply to new files and sub-folders). Credit: comment by @AlexSpence.

To take ownership:

icacls “D:\dy” /grant Administrators:F /T /C

Situation: After a user leaves the organization, the client would like to know how they can keep the mailbox available without paying Microsoft 365 license. With a shared mailbox, you can give a single user or multiple users access to it. This article shows you how to convert the mailbox to a shared mailbox.

1. Login Microsoft 365 admin center.
2. Expand Users and select Active Users

3. Select the user

4. Open the Mail tab

5. Click on Convert to Shared Mailbox

Click Convert in the confirmation screen.

6. Go to Teams & groups>Shared mailboxes to confirm the conversion.

7. Remove the Microsoft license from the user.

Note:

• Mailbox size limited to 50Gb
• You can’t sign in directly to a shared mailbox, you will need a user account for that
• No Online Archive
• Share the mailbox with no more than 25 persons
• Users can delete mail from a shared mailbox, there is no way to prevent that.

• Go to File > Options > Mail > Spelling and Autocorrect > Proofing.

• Make sure the Suggest from main dictionary only check box is cleared.
• Select Custom Dictionaries.All dictionaries are listed here, with the default dictionary at the top.

• Open the Custom Dictionaries dialog box by following the steps in the preceding section.
• Select the dictionary that you want to edit. Don’t clear the check box.
• Select Edit Word List.

• Do one of the following:
  • To add a word, type it in the Word(s) box, and then select Add.
  • To delete a word, select it in the Dictionary box, and then select Delete.
  • To edit a word, delete it, and then add it with the spelling you want.
  • To remove all words, select Delete all.

Quoted from Microsoft:

The Tenant Allow/Block List in the Microsoft Defender portal gives you a way to manually override the Defender for Office 365 or EOP filtering verdicts. The list is used during mail flow for incoming messages from external senders.

The Tenant Allow/Block List doesn’t apply to internal messages within the organization.

The Tenant Allow/Block list is available in the Microsoft Defender portal at https://security.microsoft.com > Policies & rules > Threat Policies > Tenant Allow/Block Lists in the Rules section. To go directly to the Tenant Allow/Block Lists page, use https://security.microsoft.com/tenantAllowBlockList.

In most cases, you can’t directly create allow entries in the Tenant Allow/Block List:

To allow entries in the Tenant Allow/Block List, please fllow these steps: you can’t create allow entries directly in the Tenant Allow/Block List. Instead you use the Submissions page at https://security.microsoft.com/reportsubmission to report the email, email attachment, or URL to Microsoft as Should not have been blocked (False positive).

Click on Allow email addresses or domains by submitting the email to Microsoft.

Select Type, email or URL (for domain name). Enter the email address or domain name. Check allow email…. Click Submit.

You can check the status in View what you have submitted to Microsoft or View Tenant Allow/Block List