Experiencing Data Latency for Log Analytics – South UK – 02/20 – Resolved

by | Feb 20, 2022 | Technology

This article is contributed. See the original author and article here.

Final Update: Sunday, 20 February 2022 16:57 UTC

We’ve confirmed that all systems are back to normal as of 02/20, 16:52 UTC. Our logs show the incident started on 02/20, 07:34 UTC and that during the duration of incident customers in South UK using Azure Log Analytics, Log Search Alerts & Azure Sentinels services may have experienced intermittent log data gaps and/or incorrect alert activation.
  • Root Cause: The failure was due to a recent deployment to one of the backend instances of our service to become unhealthy leading to a backlog of data to be processed.
  • Incident Timeline: 02/20, 07:34 UTC through 02/20, 16:52 UTC
We understand that customers rely on Azure Log Analytics as a critical service and apologize for any impact this incident caused.

-chandar
Update: Sunday, 20 February 2022 16:25 UTC

Root cause has been isolated to an outage in a backend system which caused ingested data to back up and not be processed. To address this issue, the backend team has rolled back the deployment Azure Log Analytics is now working as expected , though ingestion data is still backed up and data sent to the system which got stuck. Some customers using Azure Log Analytics, Log Search Alerts & Azure Sentinels services may experience intermittent log data gaps and/or incorrect alert activation and/or latency. We estimate 2 hours before all log data gaps and/or incorrect alert activation and/or latency is addressed.
  • Work Around: none
  • Next Update: Before 02/20 18:30 UTC
-Surya
Update: Sunday, 20 February 2022 12:30 UTC

We continue to investigate issues within Log Analytics. Root cause is not fully understood at this time. Some customers using Azure Log Analytics, Log Search Alerts & Azure Sentinels services in UK-South region continue to experience intermittent log data gaps and/or incorrect alert activation and/or latency. We are working to establish the start time for the issue, initial findings indicate that the problem began at 02/20 07:34 UTC. We currently have no estimate for resolution.
  • Work Around: none
  • Next Update: Before 02/20 16:30 UTC
-Surya
Initial Update: Sunday, 20 February 2022 09:55 UTC

We are aware of issues within Log Analytics and are actively investigating. Azure Log Analytics, Log Search Alerts & Azure Sentinels customers using workspaces in UK-South-0 may experience intermittent log data gaps and/or incorrect alert activation and/or latency .
  • Work Around: none
  • Next Update: Before 02/20 13:00 UTC
We are working hard to resolve this issue and apologize for any inconvenience.
-Surya

Lesson Learned #185: Could not find any endpoints error message using PingFederated

by | Feb 19, 2022 | Technology

This article is contributed. See the original author and article here.

Today, I worked on an interesting service that our customer faced the following error message “Error code 0xA190; state 41360 – Could not find any endpoints.” using SqlCmd/ODBC in combination with -G to connect to Azure Active Directory.


 


We have the following environment:



  • ReadHat Enterprise version 7.9

  • Customer is using a 3rd party tool to validate the users called PingFederated. 


 


Troubleshooting done:


 



  • Using other driver JDBC our customer is able to connect. 

  • Using sqlcmd in Windows Operating System is able to connect. 

  • Taking a network trace with tcpdump we were able a connectivity and reset the connection due to this error.

  • Without using PingFederated in Linux using the native Azure Active Directory call the connection is success.


 


In this such situation, we engaged our colleagues of Azure Product Team lient Tools and they identified an issue with ODBC and Pingfederated that has been resolved in version 17.9+ as you could see in this URLList of bugs fixed – ODBC Driver for SQL Server | Microsoft Docs . Installing, for example, the version 18.0 the issue has been fixed too.


 


 


Enjoy!

CISA Insights: Foreign Influence Operations Targeting Critical Infrastructure

by | Feb 18, 2022 | Security, Technology

This article is contributed. See the original author and article here.

CISA has released CISA Insights: Preparing for and Mitigating Foreign Influence Operations Targeting Critical Infrastructure, which provides proactive steps organizations can take to assess and mitigate risks from information manipulation. Malicious actors may use tactics—such as misinformation, disinformation, and malinformation—to shape public opinion, undermine trust, and amplify division, which can lead to impacts to critical functions and services across multiple sectors.
 
Current social factors—including heightened polarization and the ongoing global pandemic—increase the risk and potency of influence operations to U.S. critical infrastructure. CISA encourages leaders at all organizations to review the CISA Insights and follow the guidance to assess risk and increase resilience.

Microsoft Compliance Manager (MSCM) Ninja Training: Q1 2022

Microsoft Compliance Manager (MSCM) Ninja Training: Q1 2022

by | Feb 18, 2022 | Technology

This article is contributed. See the original author and article here.

Does achieving your organization’s regulatory and compliance requirements keep you up at night?  Do you wonder how you will ever be able to adhere to all the controls and ensure your companies compliance with required regulations?  Do you want to ensure that you are on top of your compliance game and that the appropriate policies and guidance are followed and enforced?  Look no further, Microsoft Compliance Manager (MSCM) is the tool to help you achieve these goals and more.  This training is designed to help guide you from fundamental concepts on your MSCM journey to Advanced concepts.  Once completed you will have a firm understanding of the tool, its capabilities, and use.


 


Microsoft Compliance Manager has a ton of data, tutorials, videos etc. that can sometimes be overwhelming.  Leaving you asking questions such as “where do I start”, “how do I achieve compliance”, “how do I recognize when my organization falls out of compliance”.  We’ve sifted through the vast resources Microsoft has to offer for MSCM and developed this training to guide you – all in one location, in a simple easy to follow format!  If there is anything we can do to improve this training, please do not hesitate to leave a comment below and we will be sure to review it.


The overall structure of this training is split into 3 main knowledge levels.  They are:


 


garyasp_0-1645126456037.png


After each level, we will offer you a knowledge check based on the training material you have just finished! Since there’s a lot of content, the goal of the knowledge checks is to help ensure understanding of the key concepts that were covered. Lastly, there’ll be a fun certificate issued at the end of the training! Disclaimer: This is not an official Microsoft certification and only acts as a way of recognizing your participation in this training content.


 


We plan to update this training on a quarterly basis to ensure that you all have the latest and the greatest training materials.  Please do check back often for new training content.  The newly added training content will be tagged with “[New!]” at the end of the training title.  For those of you who have already gone through the training before, you can view those [New!] training contents directly. 


 






















 


garyasp_17-1645126851107.png  Docs on Microsoft


 


 garyasp_18-1645126851108.png Blogs on Microsoft

 


garyasp_19-1645126851109.png Product videos


 


 garyasp_20-1645126851110.png Webcast recordings

 


garyasp_24-1645126983021.png Tech Community


 


 garyasp_22-1645126851111.png Interactive guides

 


⤴ External Sites


 


 garyasp_23-1645126851112.png GitHub

 


Module 1. MSCM – Fundamentals [Beginner Level]














































Training Title

Description

Resources

MSCM Overview:  Introduction to Microsoft Compliance Manager

In this track we will show where MSCM fits in the overall M365 ecosystems and discuss its high-level components.


 garyasp_1-1645126765534.png  MSCM Introduction Video
garyasp_2-1645126765540.png  MSCM

Getting started with MSCM


 

In this track we will go over best practices and pre-deployment planning considerations to include key MSCM service features and capabilities.

garyasp_3-1645126765541.png  Introduction to MSCM


garyasp_2-1645126765540.png  Compliance Manager Quick Start


garyasp_25-1645127192152.png  Deployment Acceleration Guide

 

Assessment Types and working with assessments (workflow and tracking)

In this track we will discuss the different assessment types in MSCM, how you can use them to help your organization succeed and use MSCM for continuous monitoring / assessment.


 garyasp_2-1645126765540.png  Build and Manage Assessments in MSCM

 


 

Automated Compliance Scoring

In this track we will discuss your overall scope, setup / run automated testing, evaluate your automated score (understanding it), and gain a firm understanding of improvement actions, user history and automated testing.


 garyasp_2-1645126765540.png  Compliance Score Calculation

Assigning Improvement Actions  & action types (RBAC)

In this track we will discuss how you assign remediation and score improvement tasks to different personnel within your organization.


 garyasp_2-1645126765540.png  Assign and complete improvement actions in MSCM
garyasp_22-1645126851111.png  MSCM Interactive guide, review from 2 minutes 12 seconds to 38 seconds

MSCM Recommendation Wizard

In this track we will give you a good starting place to understand your organization’s regulatory and compliance requirements.  By asking a few brief questions we can show you the templates that may apply to your organization!


 garyasp_9-1645126765549.png  MSCM Recommendation Wizard Tutorial

Automation with MSCM

In this track we will explore how you can automate your MSCM capability and ensure you have up to date knowledge of your current regulatory compliance status.

Material for this track is currently in development – stay tuned!

 


Knowledge Check – Microsoft Compliance Manager Fundamentals


 


Module 2. MSCM – Intermediate [Associate Level]




































Training Title

Description

Resources

Introduction to Templates:  Template library, premium templates, and universal templates

In this track we will show you the various types of assessment templates are available to you whether included in your licensing or requiring an additional purchase including templates that can cover non-Microsoft services giving your broader tracking capabilities in your compliance journey.

garyasp_2-1645126765540.png  Learn about assessment templates in Compliance Manager


 


garyasp_0-1645148088735.png  Simply Compliance and reduce risk with our 150+ assessment templates or bring your own assessment


garyasp_29-1645128251812.png  MSCM Interactive Guide, review from 16 minutes 58 seconds


 


 

Creating an Assessment from a template

In this track we will upon the knowledge gained in the previous track to show you how to create an assessment for both Microsoft and non-Microsoft products.

garyasp_2-1645126765540.png  Create an assessment template in Microsoft Compliance Manager


 


garyasp_30-1645128268212.png  MSCM Interactive Guide, review from 15 minutes 40 seconds to 5 minutes 42 seconds


garyasp_0-1645148088735.png Creating an Assessment in MSCM
 Importing Templates Don’t see a regulation assessment you need to help your organization? Create your own assessment template that can be used over and over again based on your needs. garyasp_2-1645126765540.png  Create an assessment template in Microsoft Compliance Manager

garyasp_30-1645128268212.png  MSCM Interactive guide, review from 10 minutes 10 second to 3 minutes 58 seconds

Regulatory and Compliance updates


 With MSCM we are constantly monitoring and evaluating regulatory and compliance requirements.  When updates occur, we update our assessment templates to account for such changes, and put you in control of when to update your in progress assessment to match.   garyasp_31-1645128594831.png  MSCM Updates to templates tutorial
Improving Compliance Score In this track we will look at improving your compliance score by looking at your current configurations in your tenant and validating them against Microsoft 365 best practices. garyasp_2-1645126765540.png   MS Compliance Configuration Analyzer for MSCM
garyasp_30-1645128268212.png  MSCM Interactive Guide go to 19 minutes, 37 seconds 

 


Knowledge Check – Microsoft Compliance Manager Intermediate


 


Module 3.  Microsoft Compliance Manager – Advanced [Expert Level]































Training Title

Description

Resources

Extending Templates

In this track we will take the knowledge on templates previously covered and expand.  We will show you how you can take templates and expand them to meet your regulatory and compliance needs.


 garyasp_2-1645126765540.png  Extend assessment templates in Microsoft Compliance Manager
garyasp_0-1645146991384.png  Extend Templates in MSCM

garyasp_30-1645128268212.png  MSCM Interactive Guide review from 3 minutes 58 seconds to 2 minutes 55 seconds

Integration of Excel into MSCM and how to use it to modify templates


 

In this track we will discuss how you can use MS Excel to update and modify your templates.


 garyasp_35-1645129297816.png  Format assessment template data in Excel for Microsoft Compliance Manager

garyasp_33-1645129219248.png  Using MS Excel to Manipulate and or Create templates in MSCM

MSCM Scenario

In this track we will create a brief scenario to show how to meet a specific regulatory compliance requirement.

MSCM Scenario

Microsoft Compliance Manager Considerations & Wrap Up


 

In this final track we will cover common questions asked, provide some useful tips and wrap up this training!

Material for this track is currently in development – stay tuned!

 


Knowledge Check – Microsoft Compliance Manager Advanced


 


Once you’ve finished the training and the knowledge checks, please go to our attestation portal to generate your certificate –  you’ll see it in your inbox within 3 to 5 business days.  Attestation Portal Link


 


We have a great lineup of updates for the next rendition (next quarter).  If you’d like anything covered, please comment below.  In addition, please reach out to us if you have any content that you would like to include as well. 


 


We hope you all enjoy this training! 


 


Feedback


Let us know if you have any feedback or relevant use cases/requirements for this portion of Microsoft Defender for Cloud Apps by emailing mipcompcxe@microsoft.com  and mention the core area of concern.


 


Learn More


For further information on how your organization can benefit from Microsoft Compliance Manager:  


 






















































Microsoft Compliance Manager One stop shop

Microsoft Compliance Manager One Stop Shop Resource Page

Microsoft 365 Roadmap Website

https://www.microsoft.com/en-us/microsoft-365/roadmap

Microsoft 365 Compliance Documentation

https://docs.microsoft.com/en-us/microsoft-365/compliance/

Microsoft Compliance Manager FAQ

FAQ 

Join our preview program

https://aka.ms/MIPC/JoinPreviews


https://aka.ms/MIPC/Previews

Community Resources

https://aka.ms/MIPC/CommunityResources

Webinar Series

https://aka.ms/MIPC/Webinars 

Youtube Channel

http://aka.ms/MIPC/YouTube

Read our latest blog posts

https://aka.ms/CompBlog

Ask a question on Yammer

https://aka.ms/MIPC/AskMIPTeam

Follow us on Twitter

https://twitter.com/MIPnews using the tag #MicrosoftIP

Email us

mipcompcxe@microsoft.com