Montag, 7. Januar 2019

What comes next for Microsoft - a C-Level perception

I published two Whitepapers about this topic:
  • The Microsoft Cloud Services - what is next after the peak
  • The Microsoft Cloud – A CFO perspective

Both papers belong to each other but can also be use separately.


Sneak Preview: The Microsoft Cloud Services - what is next after the peak

When it's on the first page of the newspaper, the hype is already over. That's an old stock market wisdom.
How and where the big cloud trends are heading
"In times of digital change, cloud computing is now the primary option, not just one of many", says Gartner Analyst Gregor Petri. As an orientation for CIOs and other IT decision-makers, Gartner has evaluated the different cloud technologies and characteristics in the Hype Cycle for Cloud Computing 2018.
In summary, Gartner sees the following trends for the near future:
Serverless PaaS and immutable Infrastructure: The IT infrastructure is an essential prerequisite for using the cloud. The IT infrastructure of the future will (have to) be more flexible. High availability, Always On, low latency and agile adaptation…

Download the complete Whitepaper for free and without any registration or read it online.

Kostenloser Download des kompletten Whitepepapers


Sneak Preview: The Microsoft Cloud – A CFO perspective

On-prem, Hybrid or Cloud Only
By 2020, many software companies will replace their cloud-first strategy with a cloud-only strategy, predicts Gartner. "Apart from the fact that many organizations with a no cloud policy still use cloud applications, such a strategy is becoming increasingly untenable," explains Jeffrey Mann, Research Vice President at Gartner. And Yefim V. Natis, Vice President and Gartner Fellow says: "More and more Leading Egde IT features will soon only be available in the cloud.”
As data, applications and processes will still be based and hosted on older technologies, the need for hybrid cloud solutions will also increase. Many companies…

Download the complete Whitepaper for free and without any registration or read it online.

Kostenloser Download des kompletten Whitpepapers ohne Registrierung oder lesen Sie den online Artikel.

Montag, 24. Dezember 2018

SharePoint Conference 2019 – Las Vegas

SharePoint Conference 2019 – Las Vegas

I am proud and honored to be selected as a speaker at SPC2019 in Las Vegas!

If you are working with SharePoint Online & Office 365 or Microsoft SharePoint Server, you need to attend this event!
SharePoint Server 2019 has been announced – you are interested in the latested news about SharePoint 2019? That see you in May in fabulous Las Vegas. We from atwork will be part of the conference and we are looking forward to it.

As shown on the conference website, SharePoint Conference is organized by the SharePoint Conference team and co-produced by Microsoft. They put together an amazing line up of international speakers and Microsoft employees to show you the latest technologie updates and news around Microsoft 365 and SharePoint.

The session I present is about a real-world scenario: From fragmented services to a modern intranet.
It is about the project I did together with atwork GmbH. The crew from atwork will also be part of the conference and presenting session:

In the session Real world: From fragmented services to a modern intranet we will talk about a large enterprise customer in steel industry and its journey to SharePoint. Klöckner & Co started from a mixed environment using classic file shares, DropBox, Slack and even an OpenText-based Intranet solution. Learn how this customer moved from independent disconnected services to an integrated, company-wide service landscape based on SharePoint, Yammer & Office 365.
In detail the session agenda and topics are:
  • Project overview: where we came from
  • Starting with Yammer
  • Design patterns in the project like using standard where it is possible
  • Live Demos
  • Implementation: technical goals, technical parameters, organization of the project using Microsoft Team & Planer
  • Migration
  • Structure of the new Intranet called DigiDesk
  • Prototyping
  • Taxonomy and search customization
  • Rollout planning
  • User adoption & Training
  • Mobile use of DigiDesk
  • Microsoft Stream integration
  • Custom Apps in the App Launcher
  • Integration of additional services
  • Why the Marketing department of Klöckner directly switched from Slack to Microsoft Teams
  • Custom Development

See you in our session at SharePoint Conference MAY 21 - 23, 2019 ,MGM Grand, Las Vegas.

My tips and recommendations for the conferment

Sessions at SharePoint Conference 2019

Watch as much session as you can. But definitely watch the keynotes. Other hot topics, workshops, speaker and sessions are:
  • Microsoft Search in your Organization and Everything you wanted to know about Microsoft Search by Agnes Molnar
  • Workshops: Becoming a Master Power User in Office 365 by Benjamin Niaulin
  • Mixed reality in Office 365 with SharePoint spaces by Bill Baer
  • Become a Microsoft Teams Rockstar by Gokan Ozcifci
  • Office 365 Application Security by Liam Cleary
  • What Options do you have to govern the lifecycle of Office 365 Groups and Teams? by Mikael Svenson

My hot topics are:

  • New Microsoft Search
  • New features in OneDrive for Business, SharePoint and SharePoint Hub Sites
  • Updates and News about Communication Sites
  • Compliance & Security

To get the most out of attending SharePoint Conference 2019:

  • Set your expectations and plan what session do you attend and which you download afterword
  • Stay connected on Social Media with the conference and the speaker using @SPConf and #SPC18
  • Participate in SharePoint Conference 2019 social events, parties and Meetups
  • Have Fun!

Sonntag, 25. November 2018

Office 365 Message Encryption (OME) vs. Azure Information Protection

Main difference from a security perspective is, that OME is encrypting the transport and not the attached content over its lifetime.
All feature like IRM, AIP and OEM are based on the Azure RMS Service. The overall architecture looks like this:

Comparison of OME, IRM, and new OME capabilities


  • If you want to protect documents attached to an E-Mail only on the transport layer or if you want to use the “Do not forward” feature OME is the way to do it.
  • If you want to protect the document also after the E-Mail is received and the document is downloaded etc. then you need AIP.

Bothe features are good to protect E-Mails and attachments for internal use and for sharing them with externals. In OME you can send protected E-Mails to external receptions with out configuring anything special. The recipients received an HTML message that they downloaded and opened in a browser or downloaded mobile app:
To make the functionally available with AIP you need to add the external domain to you AIP label:

Protecting an E-Mail with AIP or OME in Outlook



Freitag, 12. Oktober 2018

Security & Compliance sucks...not anymore

Deutsche Version: LINK
Finally, the General Data Protection Regulation (GDPR) forces companies to think about which data is accessible and editable by whom. With the recent data protection scandals on major platforms such as Facebook etc. the protection of data is not only a very topical issue, but also a very topical business model.
Microsoft offers its customers functions and license models to monitor and secure access to their data and systems. In the end it is a complex story to find out which functions and which licenses are required to implement Security & Compliance requirements in your company. The whole story is further complicated by different license models and feature-sets focusing on Security & Compliance.
At the Ignite 2018 improvements around Security & Compliance were announced. Office 365 becomes Microsoft 365, Azure Information Protection becomes Microsoft Information Protection and so on. But what does this mean for customers, partners and especially the users?
Actually quite a lot. Microsoft services getting more and more aligned to the operational processes and users needs. In the future, management portals, for example, will be grouped and accessed according to their use:
  • => Admin Center
  • => Security Settings
  • => Compliance
Data classification and encryption is an important requirement for storing sensitive content in SaaS solutions. Azure Information Protection Labels, Site Classifications and Office 365 Labels are now standardized in the Office 365 Security & Compliance Center and does no longer exist separately from each other. This makes the use of these techniques much more efficient.
These are just two examples on how Microsoft Cloud Services successively merge what belongs together.
Microsoft Information Protection or the Microsoft Intune feature for managing devices and apps are focusing explicit scenarios. However, security & compliance projects often do not start with these specific requirements. Starting an Office 365 project the requirement is more about providing basic protection level and setup. Based on this basic configuration further requirements are then successively defined and implemented in the company.
A new provisioned Office 365 Tenant is very open. Basically, every user can share all the data he has access to with anyone. Users can invite external partners to collaborate with them in a SharePoint site or in Teams and anyone can connect to Office 365 using any device by entering his username and password.
This liberal setup of Office 365 is very good for collaboration and communication in the company and with partners and customers. But it is risky in terms of Security & Compliance.
In Microsoft Internet Explorer we could configure the security of the browser with a simple slider. If there is the need to adjust special settings, this was also possible. Unfortunately, it is not quite that easy with Office 365 or Microsoft 365. A slider like we have in the Internet Explorer is unfortunately missing here.
But the whitepaper "A quick guide to secure Office 365" offers something similar. Based on a matrix with the levels StandardMediumHigh and Very High, it gives you an overview how Office 365 can be secured. The whitepaper also describes the effects on user-friendliness and the required licenses for setting up the various scenarios.
The whitepaper outlines a clear overview of the Microsoft technologies and functions for securing Office 365. Covered technologies are:
  • Office 365 Secure Score
  • Cloud App Security
  • Intune & Office 365 MDM
  • Azure AD Premium Features
  • Office 365 Advanced Threat Protection
  • Office 365 Threat Intelligence
  • Security & Compliance Reports.
And another tip from me: If a user wants to save a file in his private DropBox folder, then he has a reason for it. Nobody does this accidentally or by mistake. If we don't know this reason and don't respect it, the whole Security & Compliance project will go wrong. Because of so many options that Shadow-IT offers to users today it is no longer possible to enforce security. The goal must is to understand which challenges and processes an employee faces in his daily work. A security and compliance setup must be based on this and acknowledges these factors.
Link to the white paper and my presentation at Ignite 2018 on this topic: LINK

Dienstag, 9. Oktober 2018

Usage Report, AIP Scanner UI and Data Discovery for Azure Information Protection

Microsoft is enrolling new Azure Information Protection features and a new AIP scanner UI including status of the scanner machine and some statistics like scan rate, version etc.

AIP scanner UI

This new scanner UI feature will include the capability to start the scan on the remote scanner without a need to login to the scanner machine.
We can access this new preview feature using this link:
Latest GA or public preview version of AIP Client is needed in order to see your scanner machines connected to the Azure portal and be able to manage them.

Usage Report

AIP Usage report is showing labels, protected item count and users & computers who are interacting with AIP. We will also get an overview about used labels and about used clients to label content.

Data Discovery

Data Discovery is showing an overview about used Labels, detected Information Types, locations,
labeled and protected files etc.

Usage Report and Data Discovery are based on Azure Log Analytics.