Powershell Form – Send Encrypted PDF Form

Posted on March 16, 2019 by Idit Bnaya

Due to recent changes in global privacy and data protection laws ( GDPR & Israeli Privacy Law)

I had to find a quick and easy  way to send encrypted PDF files by email.
So, after 6 hours of searching and writing i finally managed to create a workaround

At first I found this Password Protect PDF document script:  https://efcomputer.net.au/blog/password-protect-pdf-document/ 
and i used a part of the code that responsible for encrypting the file (Thanks:) )

So the following PowerShell script will Encrypt PDF files and send them by Email.

There are two folders, one with an English based form and the other with an Hebrew based form.

It looks like this

English Form:

Hebrew Form:

Have fun 🙂

 

 

 

Posted in Cyber, PowerShell, Profile, Scripts, Security | Tagged , , , | Leave a comment

Microsoft Teams – Useful links

Posted on January 4, 2018 by Idit Bnaya

Teams Logo

Since its launch in March 2017, Microsoft Teams has evolved to become the ultimate hub for teamwork and has grown significantly in capabilities.
Teams delivers chat-based collaboration, meetings, calling, and enterprise voice features as we’re bringing all the Skype for Business Online capabilities into Teams.

This site covers basically all you need to know about Microsoft Teams – practical guidance,trainings,videos and more…

Teams for Education (which replaces the Microsoft Classroom app that was in public preview the “one stop shop” for students and educators.

A post by “Tom Morgan” which covers thee newest features from Microsoft Roadmap

A very friendly step by step guide written by “Matt Soseman

How to build great integrations with Microsoft Teams with bots, connectors, and dedicated tabs using a simple set of APIs

This video covers some of the most useful teams capabilities –  Apps, Connectors, Extensions and Bots

An overview of security and compliance in Microsoft Teams.

One of many good posts by Matt Soseman about PowerShell support for Microsoft Teams

Posted in Office365, Teams, Teams | Tagged | Leave a comment

Microsoft Teams eDiscovery

Posted on December 28, 2017 by Idit Bnaya

eDiscovery הוא תהליך של זיהוי והעברת מידע אלקטרוני שנועד בין השאר לשמש ראיה במקרים משפטיים. 

הוא נמצא ב- Security & Compliance center של Office 365

ניתן להשתמש ב- eDiscovery ב- Office 365 על מנת לחפש תוכן במקומות הבאים:

  1. Exchange Online Mailboxes
  2. Microsoft Teams
  3. SharePoint Online
  4. Skype For Business

כאשר נוצר Team חדש ב- Microsoft Teams, הוא יוצר באופן אוטומטי Office 365 Group וכיוון ש Office 365 Group קיימות בתוך Office 365, הן עשויות להיות כפופות למדיניות אבטחה ותאימות ב- Office 365.

על כן תוכן שפורסם ב- Microsoft Teams, כפוף למדיניות זו ומאפשר לארגונים לבצע חיפושים , eDiscovery ו- Hold לתוכן.

Hold – מאפשר לנו לשים על Hold מידע הנמצא ב- Teams

הטבלה הבאה מתארת את אופן השמירה של מידע בכל רכיב:

image

 
Search – מאפשר לנו לבצע חיפוש של המידע הנמצא ב-Teams
 
במאמר זה אדגים כיצד לבצע eDiscovery case על תוכן בתוך Microsoft Teams ועליו לבצע Hold ו – Search
 

יצירת eDiscovery

1. על מנת שמשתמש יוכל לבצע כל פעולה הקשורה ל eDiscovery יש לשייך אותו לקבוצת ההרשאות המתאימה ב- Office365.

קיימות 2 קבוצות:

  • eDiscovery Reviewer – יכול רק לראות ולפתוח את רשימת ה- Cases בדף ה- eDiscoevry שנמצא ב- Security & Compliance center
  • eDiscovery Manager – יכול ליצור Case חדש, להוסיף ולהסיר משתמשים מה-case, לשים Content location ב- Hold, ליצור ולערוך Content search הקשורים ל- Case ולבצע ייצוא ל- Content search

על מנת לשייך לקבוצה יש לגשת ל-Permissions תחת Security & Compliance center  ולבחור בהרשאות הרלוונטיות

image

2. יצירת Case חדש:

  •  Security & Compliance Center >  Search & investigation > eDiscovery > Create a case
  • הכנס שם ו-Description ולחץ על Save

3. הוספת משתמש ל- Case

  • Security & Compliance Center >  Search & investigation > eDiscovery
  • עמוד על ה- Case הרלוונטי, וכשיופיע דף ה- Manage this case, לחץ על Add תחת  Add Mambers בחר במשתמש הרלוונטי

image

יצירת Hold לתוכן

כאמור, ניתן להשתמש ב- eDiscovery לבצע Hold ובכך לשמור על התוכן הקשור ל- case

1.   Security & Compliance Center >  Search & investigation > eDiscovery

2. לחץ על Open ליד ה-Case הרלוונטי מהרשימה

image

3 בעמוד ה- Hold לחץ על New (+)

image

4. תן ל- Hold  שם חד ערכי לארגון

image

5. בחר את מיקום התוכן אותו תרצה לשים ב- Hold , זה יכול להיות תיבת דואר, אתר SP ו Public folders

6. לחץ על Next

7. עכשיו מגיע החלק החשוב – יצירת שאילתה ל-  Hold

ניתן לחפש לפי מילים ו\או לפי תנאים מרשימה

image

Conditions

image

8. לחץ על Finish 

image

יצירת חיפוש לתוכן (Content Search)

לאחר שיצרנו eDsicovery  ניתן לבצע חיפושי תוכן הקשורים ל- Case

*שים לב – חיפושי תוכן הקשורים ל-Case יכולים להתבצע רק על ידי מי שנמצא בקבוצת eDiscovery Manager

1.  Security & Compliance Center > Search & investigation > eDiscovery > Open > Search

לחץ על +

 image

2. תן שם לחיפוש

image

3. בחר את המיקום בו נמצא התוכן שאותו תרצה לחפש:

image

4. לחץ על Next על מנת לבחור keywords ותנאים:

לאחר שה-Search רץ בהצלחה, ניתן לייצא את התוצאות לדוח.

לסיכום – eDiscovery הוא עוד כלי נהדר של מיקרוסופט העוזר לנו לשמור על אבטחת המידע הארגוני בעזרת Content Search ו- Hold. 

בהצלחה Smile

Related posts:

What is Microsoft Teams

Teams & Flow– Send the team RSS Feed

Set up Microsoft Teams in your Office 365 organization

Teams Powershell – Create new Team and add users from CSV

Office 365 Teams – Audio Conferencing and Calling Plans

 

Posted in Office365, Teams, Teams | Tagged , , , , | Leave a comment

Set up Microsoft Teams in your Office 365 organization

Posted on December 26, 2017 by Idit Bnaya
By default, Teams is turned on for all organizations.Teams has multiple settings that can be turned on or turned off at the Office 365 tenant level.  As an administrator for your organization, you can assign user licenses to control individual access to Teams, and you can allow or block what content sources can be used in Teams.

*Note – After Teams is disabled, access from the Teams client is blocked, but data available through other clients and services is still available, such as files via SharePoint and OneDrive. All data remains in place unless the teams are explicitly deleted.

Microsoft Teams features in your Office 365 organization Overview

Enable/Disable Teams for the your entire organization

Sign in to the Office 365 Admin center with an account that has Global Administrator privileges.

  1. Go to Settings > Services & add-ins.

    Screenshot of the Settings section in the Office 365 admin center with Services & add-ins selected.

  2. On the Services & add-ins page, click Microsoft Teams.

    Screenshot of the Services & add-ins page with Microsoft Teams selected.

  3. To turn on Teams for the organization use the license picker and select each license then set the toggle to On and then click Save.

    Screenshot of the Microsoft Teams settings page showing the toggle set to On to enable Microsoft Teams.

Features  Overview:

General

The General section lets you configure the following settings for your organization:

Screenshot of the General section in Tenant-wide settings.

  • Show organizational chart in personal profile: When this setting is enabled, it shows the organizational chart icon in the user’s contact card and when clicked, it displays the detailed organizational chart.

    Screenshot of the organizational chart icon in a user's contact card.

    Screenshot of an organization chart.

  • Use Skype for Business for recipients who don’t have Teams: When this setting is enabled, it allows Teams users to contact other users in the organization that are not enabled for Teams via Skype for Business.

  • Allow T-bot proactive help messages: When this setting is enabled, T-bot will initiate a private chat session with users to guide them in using Teams.

    Screenshot of T-Bot section in Teams interface.

Email integration

Turn on this feature so users can send email to a channel in Teams, using the channel email address. Users can do this for any channel belonging to a team they own. Users can also send emails to any channel in a team that has adding connectors enabled for team members. And, even if a user doesn’t have permission to create a channel email address, if someone who does have permission creates that address, the user can access it from the <more icon> menu for that channel.

The Email integration section lets you configure the following settings for your organization:

Screenshot of the Email integration section in Tenant-wide settings.

  • Allow users to send emails to channels: When enabled, mail hooks are enabled, and users can post messages to a channel by sending an email to the email address of Teams channel.

To find the channel’s e-mail address, click More options next to the channel name and then select Get email address.

  • Restricted Senders List: Senders domains can be further restricted to ensure that only allowed SMTP domains can send emails to the Teams channels.

Apps

Apps in Teams are a terrific way to integrate the tools and services your team cares about, right into any channel or chat.

The Apps section lets you configure the following settings for your organization:

Screenshot of the Apps section.

  • Allow external apps in Microsoft Teams: When enabled, users can add tabs and bots that are available to the Office 365 tenant. Screenshot of the Allow external apps control in the Apps section.

  • Allow sideloading of external apps: When enabled, users can install and enable custom bots and tabs.

Custom cloud storage

Cloud storage options in Teams currently include Box, Dropbox, Google Drive, and ShareFile. Users can upload and share files from cloud storage services in Teams channels and chats. Click or tap the toggle switch next to the cloud storage providers that your organization wants to use.

Screenshot of the Custom cloud storage section.

User settings by license

In User settings by license, you can turn on or turn off options in Teams and channels, Calls and meetings, and Messaging.

Teams and channels

As an admin, you can manage team owners and members by using the Groups dashboard in the Office 365 admin center portal. In the Teams and channels section, click the link for Use the Groups dashboard in the Office 365 admin center to manage teams.

You can control which users in your organization can create teams in Teams. .

By default, every user can create a team or group. Choose Teams on the left side in the Teams client (desktop client or web app), then choose Create and join team at the bottom of the client, below the team list.

The default maximum number of teams that an Office 365 tenant can have is currently 500,000. A global admin can create an unlimited number of teams. A user can create 250 teams. A team owner can add 2500 members to a team.

Screenshot of the User settings by license section.

Channels are subcategories of teams. Anyone on the team can add a channel and participate in the conversations in a channel. You might create a channel for an activity or for a department. Conversations, files, and wikis are specific to each channel, but all members of the team can see them.

Calls and meetings

The Calls and meetings section lets you configure the following settings for your organization:

Screenshot of the Calls and meetings section.

  • Allow scheduling for private meetings: When enabled, users can schedule private meetings that are not listed in any channel.

  • Allow ad-hoc channel meetup:

  • Allow scheduling for channel meetings: When enabled, users can schedule a meeting for a channel that all channel members can easily join with a single click.

  • Allow videos in meetings: Specifies whether the use of video is allowed within the meetings.

  • Allow screen sharing in meetings: Specifies whether screen sharing is allowed within the meetings.

  • Allow private calling: When enabled, users can make private calls.

The maximum number of people in a meeting is 80. There can be 20 members in a private chat, including the user who created the chat.

Messaging

The Messaging section lets you configure the following settings for your organization:

Screenshot of the Messaging section.

  • Enable Giphy so users can add gifs to conversations: When enabled, users can use animated pictures within the conversations.

    • Content Rating: When animated images are turned on, content rating can be applied to restrict the type of animated images that can be displayed in conversations. Available content rating options are:

      • No restriction

      • Moderate (the default value)

      • Strict

  • Enable memes that users can edit and add to conversations: When enabled, users can use internet memes to make humorous posts.

  • Enable stickers that users can edit and add to conversations: When enabled, users can post images with editable text to get channel members attention.

  • Allow owners to delete all messages: When enabled, channel owners can remove all messages in a channel.

  • Allow users to edit their own messages: When enabled, users can edit their own messages.

  • Allow users to delete their own messages: When enabled, users can delete their own messages.

  • Allow users to chat privately: When enabled, users can engage in private chats that are visible only to the people in the chat, instead of everyone on the team.

Posted in Office365, Teams, Teams | Tagged , , | Leave a comment

What is Microsoft Teams

Posted on December 26, 2017 by Idit Bnaya

 

Overview:

Microsoft Teams is a chat-based collaboration tool that provides global, remote, and dispersed teams with the ability to work together and share information via a common space.

Teams   provides a true chat-based hub for teamwork and give customers the opportunity to create a more open, fluid, and digital environment.

A team is designed to bring together a group of people who work closely to get things done. Teams can be dynamic for project-based work (for example, launching a product or creating a digital war room). Or, teams can be ongoing, to reflect the internal structure of your organization.

A team created in Teams will create an Office 365 Group, a SharePoint Online site  and an Exchange Online group mailbox.

overview_of_security_and_compliance_in_microsoft_teams_image1

Teams also provides a calling and meetings experience that is built on the next generation cloud-based infrastructure that is also used by Skype and Skype for Business.

common use cases for each application in Office 365.

Microsoft Teams icon.

  • Leveraged by users and teams who are looking to collaborate in real-time with the same group of people.
  • Helps teams looking to iterate quickly on a project while sharing files and collaborating on shared deliverables.
  • Allows Users looking to connect a wide range of tools into their workspace (such as Planner, Power BI, GitHub, etc.).

Microsoft Outlook icon.

  • Leveraged by users who prefer to collaborate in the familiar environment of email and/or a more formal, structured manner.
  • Provides specific business processes that require email usage to transmit documents and information inside and outside corporate boundaries.
  • Communicates and connects with users who are outside of immediate workgroups or organizations.

Yammer icon.

  • Leveraged to help connect users across the organization to organize around communities of practice and share best practices.
  • Improves cross-functional workflows through an open and transparent feed-based platform
  • Fosters executive-employee engagement with two-way conversations between leadership and the wider employee base
  • Ignites your frontline workforce to share and receive knowledge and expertise

Skype for Business icon.

  • Leveraged for real-time communication and collaboration both internally and externally with customers/partners.
  • Provides meetings with audio, video and content with small or large teams (including Town Halls with up to 10,000 participants).
  • Offers enterprise telephony functionality.

Microsoft SharePoint icon.

  • Leveraged for sites and portals (e.g. company news & announcements, search, and document collaboration).
  • Implements business process automation on document libraries and lists of information by integrating Microsoft Flow and PowerApps.
  • Full-powered SharePoint team site automatically provisioned for every Microsoft Team for file storage, team news, pages, lists and more.

Location of data in Microsoft Teams

 Data in Teams resides in the region based on tenant affinity. Currently, Teams supports the Americas, EMEA, and APAC regions.

* As of November 1, 2017, Teams offers data residency in the United Kingdom for new tenants only. A new tenant is defined as any tenant that hasn’t had a single user from the tenant sign in to Microsoft Teams.

Security and compliance

Microsoft Teams delivering  advanced security and compliance capabilitie such as:File encryption.Auditing and Reporting,Compliance Content Search,eDiscovery,Legal Hold,two-factor authentication, single sign-on through Active Directory, and encryption of data in transit and at rest.

Teams is Tier C-compliant at launch. This includes the following standards: ISO 27001, ISO 27018, SSAE16 SOC 1 and SOC 2, HIPAA, and EU Model Clauses (EUMC)

More Details: Overview of security and compliance in Microsoft Teams

licensing for Microsoft Teams

The following Office 365 subscriptions enable users for Teams:

image

By default, the Teams license is enabled for all users with eligible Office 365 subscriptions.

more details about licensing for Microsoft Teams

Turn Teams on or off for your entire organization

By default, Teams is turned on for all organizations.

As an administrator for your organization, you can assign user licenses to control individual access to Teams, and you can allow or block what content sources can be used in Teams.

Sign in to the Office 365 Admin center with an account that has Global Administrator privileges.

  1. Go to Settings > Services & add-ins.

    Screenshot of the Settings section in the Office 365 admin center with Services & add-ins selected.

  2. On the Services & add-ins page, click Microsoft Teams.

    Screenshot of the Services & add-ins page with Microsoft Teams selected.

  3. To turn on Teams for the organization use the license picker and select each license then set the toggle to On and then click Save.

    Screenshot of the Microsoft Teams settings page showing the toggle set to On to enable Microsoft Teams.

 

More Details about Teams:

Visit the Teams product roadmap to stay on top of what’s coming next in Teams and decide the best time for your organization to move to Teams.

 

Related Posts:

https://www.itblog.co.il/microsoft-teams/

Posted in Office365, Teams, Teams | Tagged , , | Leave a comment

Office 365 Teams – Audio Conferencing and Calling Plans

Posted on December 25, 2017 by Idit Bnaya

Microsoft Teams,  now provides Audio Conferencing and Phone System with Calling Plans capabilities to meet additional business requirements by extending the Teams meeting and calling experience to include external parties connected via the Public Switched Telephone Network (PSTN).

The new calling capabilities providing call history, hold/resume, speed dial, transfer, forwarding, caller ID masking, extension dialing, multi-call handling, simultaneous ringing, voicemail, and text telephone (TTY) support.

Audio Conferencing

Audio Conferencing in Office 365 allows participants to join your Teams meetings from any telephone.

Licensing for Audio Conferencing

Audio Conferencing license is available as part of Office 365 E5 subscription plans, or as an add-on to Office 365 E1 or Office 365 E3 subscription plans.

Note -If you already use Skype for Business Online PSTN Conferencing today, you can immediately take advantage of Audio Conferencing in Teams.

To schedule meeting using outlook you can use the Teams meetings addin for outlook

image

More details: Set up Audio Conferencing for Skype for Business and Microsoft Teams

Calling Plans

Calling Plans is an Office 365 feature powered by Skype for Business

You can now use Teams to make and receive phone calls to or from land lines and mobile phones via PSTN

Note: Before you begin you need to Find out if Calling Plans  is available in your country/region. Country and region availability for Audio Conferencing and Calling Plans

To enable the Calls tab in Teams and allow your users to make and receive PSTN calls,the first thing you need is Phone System (formerly Cloud PBX), which is included with Office 365 E5 and available as an add-on to other Office 365 plans. From there, you can subscribe to a Calling Plan (formerly known as PSTN Calling) for any number of users in your organization. you will need provision users for Phone System and Calling Plans. To learn how to set this up, read Set up Calling Plans.

calling_in_teams

How To enable Teams to begin receiving calls

To enable Teams to begin receiving calls, you’ll need to update Teams interop policy, using a remote Windows PowerShell session with the Skype for Business

*-CsTeamsInteropPolicycmdlets, to redirect calls to Teams. For more information about Teams interop policy, see Microsoft Teams and Skype for Business Interoperability.

How to configure Teams to use the default policy

Grant-CsTeamsInteropPolicy -PolicyName Global -Identity user@domain.com

How to configure Teams to receive PSTN calls

Grant-CsTeamsInteropPolicy -PolicyName tag:DisallowOverrideCallingTeamsChatTeams -Identity user@contoso.com

Note -Users that have been provisioned with Phone System and Calling Plans licenses for use with Skype for Business Online, and configured with the default global Teams interop policy, will have the Calls tab enabled in Teams and can place outbound PSTN calls from Teams without administrators having to take any administrative action.

 

More details: Configuring Calling Plans in Microsoft Teams

 

Related Posts:

Teams & Flow– Send the team RSS Feed

Teams Powershell – Create new Team and add users from CSV

Posted in Office365, Skype for buiness, Teams | Tagged , , , | Leave a comment

Teams & Flow– Send the team RSS Feed

Posted on December 21, 2017 by Idit Bnaya

Microsoft Flow is a cloud-based software tool that allows employees to create and automate workflows across multiple applications and services without the need for developer help.
With Microsoft Flow, you can quickly and easily build custom automations  without needing to write a single line of code.

Microsoft Teams connector for Flow enables you to alert your team of any new activity by posting messages to an existing Teams channel.

Using the Teams connector in Flow, you can create workflows to automate complex processes while keeping your team in the loop about what’s happening.

A very cool and useful connector is “RSS feed news to Teams”
I use it as a KB to my IT team for professional sites like Microsoft TechNet,Blogs and more..

In this post I will demonstrates how to create the flow –  “RSS feed news to Teams”:

1. First you need to connect to FLOW – you can connect from Office365 portal and select from My apps page “Flow”

image_thumb36

Or you can go directly to Flow website –https://flow.microsoft.com and enter your Office365 Credentials

2.  Click on – “Create from Template”

image

2. Type “Teams” in the search pane

image

3. Select “RSS feed news to Teams “

image

4. There are two connection in this flow , RSS ans Teams , In my case it connects automatically with my Office365 credentials to both, Once connected, Press on continue image

5. Type the following (this is the default settings you can change it according to your needs)

I created a team for “Teams updates” and the RSS feed is for the Microsoft Teams blog  – When a new feed item appears it will notify my team about it.

RSS feed URL  – Add The RSS URL

Team id – Choose a team from the list

Chanel ID – General

Message – Write the message according to your needs.

image

6. Click on Save flow

7. If you finished you can click on “Done

image

Once done the new flow will show up in “My flows” from there you can edit,delete,export and see analytics about the flow. 

image

 

Another way  to add RSS to Teams is by using RSS connector as shown in this blog – https://community.spiceworks.com/how_to/139770-how-to-set-up-an-rss-feed-in-microsoft-teams

 

Good Luck Smile

Posted in Flow, Office365, Teams, Teams | Tagged , | Leave a comment

Teams Powershell – Create new Team and add users from CSV

Posted on December 19, 2017 by Idit Bnaya

לאחרונה מיקרוסופט הוציאה תמיכה  של פקודות המותאמות   ל-Teams דבר המאפשר  לאנשי ה-IT

לבצע פעולות יומיומיות פשוטות ביעילות על ידי שימוש באוטומציה.

בעזרת הפקודות נוכל לבצע פעולות כמו:

  • יצירת צוותים חדשים
  • ערוצים חדשים בקבוצה
  • הוספת  והסרה מספר רב של חברים
  • הגדרת הרשאות

ועוד..

רשימת הפקודות המלאה:

 

 התקנת ה-Module מתבצעת על ידי הרצת הפקודה:

    install-module MicrosoftTteams 

3

התחברות ל- Teams מתבצעת על ידי הפקודה:

          Connect-MicrosoftTeams

4

Office365   של   Credentialsבהופעת חלון ההתחברות יש להתחבר עם ה

5

לאחר התחברות מוצלחת יופיע בחלון ה-PowerShell ה-Account שלכם

6_thumb[1]

על מנת לראות את כל הפקודות האפשריות ל- Module מריצים את הפקודה : Get-Command -Module MicrosoftTeams

7_thumb[1]

יצירת Team חדש :

New-Team -DisplayName “Idit Bnaya New Team” -AccessType Private

על מנת לראות את רשימת ה- Teams יש להריץ Get-Team

* שימו לב, בתוצאה הדיפולטיבית יופיע רק ה- Group ID של ה-Teams, ערך חשוב מאוד כיוון שניתן ליצור Teams באותו שם אז ה-GroupID הוא הערך החד ערכי

סקריפט ליצירת Team  חדש והוספת משתמשים מקובץ CSV

תנאים להרצת הסקריפט

1.  יש להריץ את ה-Module של Teams ולהכניס משתמש עם הרשאות מתאימות

2. יש ליצור קובץ CSV עם כותרת בשם User ומתחתיה UserPrincopalName של המשתמשים אותם רוצים להכניס ל-Team

לדוגמא:

8_thumb

3 יש לשמור את הסקריפט לקובץ Ps1 או להריץ עם ISE

4. הסקריפט מקפיץ Inputbox שבו מכניסים את שם ה-Team

בהצלחה wlEmoticon-smile[2]

_________________________________________________________

<#Beginning#>

<#########################################################################

.DESCRIPTION

Create A new team and add members from CSV file

.INPUTS

Team Name

.OUTPUTS

Create a csv file with a list of the users (for log)

.NOTES

Written By: Idit Bnaya

Personal Blog (English): https://www.itblog.co.il

Microsoft Blog (Hebrew): https://blogs.microsoft.co.il/iditbna

############################################################################>

#InputBox

[System.Reflection.Assembly]::LoadWithPartialName(‘Microsoft.VisualBasic’) | Out-Null $TeamName = [Microsoft.VisualBasic.Interaction]::InputBox(‘Enter the team name’, ‘Team name’)

#create New Team

New-Team -DisplayName $TeamName -AccessType Private

#get-team | Select-Object DisplayName,GroupId (for test)

#Import Users from CSV file

$TeamsUsers = Get-Content -Path c:\temp\TeamsUsersinput.csv

#Save The GroupID of the New Team in a varaiable

$groupID = Get-Team | ?{$_.DisplayName -eq $TeamName} |select GroupId

# Add the Users from the CSV file to the new Team we created

ForEach ($user in $TeamsUsers) {

add-teamuser -user $user -GroupId $groupID.GroupId}

#Export The Result to a CSV File

Get-TeamUser -groupid $groupID.GroupId |export-csv -Path c:\temp\”teamusers-$($TeamName)”.csv –NoTypeInformation

<#End#>

 9_thumb[198]

 

Posted in Office365, PowerShell, Scripts, Teams, Teams | Tagged , , , , | Leave a comment

Error After Renew certificate ADFS 3.0–This page cannot be displayed

Posted on July 2, 2017 by Idit Bnaya

image

First lets go over the correct steps to renew the Certificate

Step1: Check the current signing certificates:

  • Open ADFS  PowerShell command window, and run the following command:

Get-ADFSCertificate –CertificateType token-signing

  • If you only see one certificate, and the NotAfter date is within 5 days, you need to generate a new certificate.

Srep:2 Renew the token signing certificate manually:

  • To generate a new certificate, execute the following command

Update-ADFSCertificate –CertificateType token-signing

  • Verify the update by running the following command again:

Get-ADFSCertificate –CertificateType token-signing

Step 3: Update the new token signing certificates for the Office 365 trust

  • Run:

Connect-MsolService

  • Enter the Office 365 Global Admin credentials
  • Run:

Update-MSOLFederatedDomain –DomainName “Domain.com”

STEP 4:Check if the certificate is updated correctly

  • Open ADFS  PowerShell command window, and run the following command:

Get-AdfsSslCertificate

  • Look at the value: CertifiacteHash
  • Check that the CertifiacteHash is the same as the thumbprint of the new certificate and not the old one

image

  • If the thumbprint is not the same or you see only one cert and not two run the following:

Set-AdfsSslCertificate  -thumbprint “the new thumbprint”

image

  • Run:

Get-AdfsSslCertificate

Check that the CertifiacteHash is correct.

Go over step 3 again (Update-MSOLFederatedDomain –DomainName “Domain.com”)

 

Good luck Smile

Posted in ADFS | Tagged , , , | 1 Comment

Upgrade brocade FC switches firmware Step-By-Step guide

Posted on April 18, 2017 by Idit Bnaya

Upgrade brocade FC switches firmware Step-By-Step guide

Brocade switches have two firmware partitions, this means that their firmware can be upgraded without downtime, this process is done as follows:

The upgrade process will upgrade the firmware of one boot partition, then reboot that partition without interrupting the normal operation, next the switch will change the updated partition to be the active partition and only then upgrade the second partition firmware immediately.

There is also an option to stage the installation and have only one firmware partition updated but this option will cause a disruptive update, disconnecting all the connections to the switch, this is done by adding “firmwaredownload -s” parameter to the update command (You can look for example screenshots below).

Preparation:

Before we begin we need a few things ready:

a. An FTP or sFTP server for saving a backup of the existing configuration and also downloading the new firmwares to the switches

b. Download the firmwares from the vendor’s website (in my case it’s from EMC)

Before you download the latest firmware from the vendor’s site you need to know what is your proper upgrade path (which version need to be installed first in order to avoid disruptive installations or lost of configuration).

To find my current firmware I login to the switch and run:

“firmwareshow”

clip_image001[4]

*This screenshot was taken after I’ve already did the first update from 6.4.x.

Finding out the proper upgrade path is a bit tricky because there isn’t a concentrated location of all the proper paths, if I want to upgrade from version 6.4.X to 7.4.X I need to search for the document that describes how to update to version 7.4.X and see if 6.4.X can be updated without disruption.

Searching Google for this:

“Brocade Fabric OS Upgrade Guide, [x.x.x]”

Where [x.x.x] should be replaced with the version you want to upgrade to helped me to find the paths:

This is an example of the upgrade path of version 7.4.0 table:

clip_image003[4]

As you can see in order to have a nondisruptive upgrade I need to upgrade from version 7.3.X,

Searching again for the upgrade to 7.3.X I’ve found again that the only version that will work without disruption is 7.2.X:

clip_image004[4]

In my case I continued until 7.0.X and found out that in order to update from 6.4.X I need to do a 5 step process updating from 6.4 to 7.0 then to 7.1, 7.2, 7.3 and finally 7.4 in order to avoid disruptions, but in my case this is a lab ENV so I’ve jumped two version at one of the times.

It’s a long process indeed but it prevents down time which totally worth it.

Now, after noting all the needed versions we need to download the proper files, for all the brocades its basically the same firmware if downloaded from any vendor but its recommended to use your vendor’s firmware, in my case it’s EMC so I will show screenshots from EMC’s site.

Downloading the firmwares

Login to: https://support.emc.com/downloads

Search and select: “Connectrix – Brocade”

clip_image006[4]

Then select your switch from the list and download the proper versions, pay attention to the checksum link and verify each downloaded file’s MD5 check some after download to verify that the downloaded file is full (I use “http://implbits.com/products/hashtab/” to generate the MD5 of the files)

clip_image008[4]

Now we have the zip files, after unzipping and sorting the directories it should look like this:

clip_image009[4]

*not all brocades versions share the same sub-versions of the Fabric OS so if you plan to update more then one brocade type you should look for the proper sub-versions for each one, in my case I had three different versions and to avoid mistakes and also save some download time (each file is between 800MB to 1.2GB) I searched all the versions for shared sub-versions, that way I’ve downloaded each major version only once.

Next step is to backup our current configuration:

Login to the switch and run these commands:

“cfgsave”

“configupload”

clip_image011[4]

Now I have a file called “config.txt” on the root of my FTP server, in case of a problem that will cause my switch to lose its configuration I will be able to restore the old configuration by using the “configDownload” command, this is a disruptive action and will require to run the “switchDisable” command before it can be run:

clip_image012[4]

The error that you see: “configDownload: Edge Hold Time (0) is out of range (80..500)”

Mentions that the config.txt file that I’ve generated in the previous step contains an invalid configuration at the “Edge Hold Time” or “EHT” section of the config.txt file, I’ve opened the file with notepad, searched for “edgeHoldTime” and noticed that in my file it was configured to: “0”.

Depending on your switched current version you should change the value from “0” to either 220 or 500:

clip_image014[4]

You can refer to this table for the proper value:

clip_image015[4]

After changing the value to 220 and saving the file I was able to download the configuration back to the switch:

clip_image016[4]

And also run the “switchenable” command again to start working again.

Now lets start the update process:

You should use the “firmwaredownload” command and supply all the information it asks, its very straight forward and easy to understand and it looks like this:

clip_image018[4]

Connecting to the switch right after it boots up and running firmwareshow a few time returned the following output which shows the progress of the update:

clip_image020[4]

And I’m done with the first update, now you should repeat the same thing with all the other versions until you reach your final version.

A few examples of things you should not do and how do they look like:

Trying to update from 7.0.X straight to 7.4.X generates the following error:

clip_image022[4]

Trying to update from 7.0.X straight to 7.3.X generates the following error:

clip_image024[4]

Now when I run the same try but with adding the “-s” flag I get the following warning:

clip_image026[4]

In my case because it’s a lab ENV I did upgraded using this way but if you don’t want down time you shouldn’t use this option.

A few examples of special cases:

Running “firmwareshow” after jumping two versions using the “-s” flag, and then running “firmwareCommit”:

clip_image027[4]

Running “configdownload” without running the “switchDisable” command first:

clip_image028

Posted in Brocade | Tagged , | Leave a comment
Follow

Get every new post delivered to your Inbox

Join other followers