Turn on MFA for Microsoft 365 before the next phish
By Michael NarehoodMicrosoft 365
A practical path to require multifactor authentication in Microsoft 365 for a small business, without locking everyone out on Friday afternoon.
14 articles
By Michael NarehoodMicrosoft 365
A practical path to require multifactor authentication in Microsoft 365 for a small business, without locking everyone out on Friday afternoon.
By Michael NarehoodMicrosoft 365
Citizen automation is great until a forgotten flow holds privileged consent.
By Michael NarehoodMicrosoft 365
Impossible travel, new countries, and legacy protocol spikes: signals worth a human look.
By Michael NarehoodMicrosoft 365
Toll fraud and voicemail hacks still happen. A short hardening list for modern phone systems.
By Michael NarehoodMicrosoft 365
Broken inheritance solves one share and creates ten mysteries.
By Michael NarehoodMicrosoft 365
Federation and guest access are powerful, and easy to leave too open.
By Michael NarehoodMicrosoft 365
Secure Score is a guide, not a grade. Which recommendations move risk for small tenants.
By Michael NarehoodMicrosoft 365
Open calendars leak meetings, clients, and travel plans. Tighten defaults without killing scheduling.
By Michael NarehoodMicrosoft 365
Disable stale accounts, reclaim licenses, and shrink attack surface before summer projects start.
By Michael NarehoodMicrosoft 365
Litigation holds, archives, and “we keep mail forever”: clarify before you need eDiscovery.
By Michael NarehoodMicrosoft 365
SharePoint and OneDrive sharing settings that balance client collaboration with least privilege.
By Michael NarehoodMicrosoft 365
A practical way to kill shared spreadsheets without enterprise IAM theater.
By Michael NarehoodMicrosoft 365
Why “just use the info@ mailbox” creates audit and access problems, and cleaner patterns that scale.
By Michael NarehoodMicrosoft 365
What Copilot actually costs, how it uses your tenant data, and when it helps small teams versus generating expensive drafts nobody trusts.