Page 4 of 4

New Office 365 Admin Center Reaches General Availability

In a totally unsurprising move, Microsoft is retiring the old-style Office 365 Admin Center from January 31, 2017. The new-style Admin Center soon then be the only option for administrators to manage tenants.

Well, that’s not actually true. As we’ve explored in the past, PowerShell is often needed to solve administrative challenges and get work done. In any case, the new admin console is now the default. That is, until it’s replaced by a new design. Continue reading → New Office 365 Admin Center Reaches General Availability

Office 365 Ports

Below are the ports required for Office 365

Purpose

Credentials Used

Source

Source Port

Destination

Destination Port

Office 365 Portal and help content

Logged on user

Client computer

Ephemeral Ports

Portal.office.com

Home.office.com

*.office365.com

*.office.com

*.office.net

TCP 80 & 443

Authentication and support services

Logged on user

Client computer

Ephemeral Ports

*.microsoftonline.com

*.microsoft.com

*.live.com

*.windows/net

TCP 80 & 443

CDNs used for portal authentication

Logged on user

Client computer

Ephemeral Ports

*.microsoftonline-p.com

*.microsoftonline-p.net

*.microsoftolineimages.com

*.msecnd.net

TCP 80 & 443

CDNs used for portal authentication

Logged on user

Client computer

Ephemeral Ports

*.msocdn.com

TCP 80 & 443

Default tenant namespace (mail routing)

Logged on user

Client computer

TCP 80,25 & 443

*.onmicrosoft.com

TCP 80,25 & 443

Global DNS LBS

Logged on user

Client computer

TCP 80 & 443

*.glbdns.microsoft.com

TCP 80 & 443

Azure AD (MFA)

Logged on user

Client computer

Ephemeral Ports

*.phonefactor.net

TCP 80 & 443

Certificate Revocation list

Logged on user

Client computer

TCP 80 & 443

TCP 80 & 443

Azure Rights Management

Logged on user

Client computer

Ephemeral Ports

*.aadrm.com

*.azurerms.com

*.cloudapp.net

TCP 80 & 443

DirSync

Machine^ &Service Account

DirSync Server

TCP 80 & 443

*.microsoftonline.com

*.windows.net

+Certificate Revocation List

TCP 80 & 443

Azure AD Connect

Service Account

Azure AD Connect Server

TCP 80 & 443

*.microsoftonline.com

*.windows.net

+Certificate Revocation List

TCP 80 & 443

STS ADFS Proxy Server

None

Client Computer

TCP 443 w/clientTLS

ADFS Proxy

TCP 443 w/clientTLS

ADFS Proxy

None

ADFS Proxy (WAP)

TCP 443

ADFS Proxy

TCP 443

Introducing Conditional Access by Network Location for SharePoint and OneDrive for Business

 

Introducing Conditional Access by Network Location for SharePoint and OneDrive for Business

As showcased at Ignite in September 2016, we are bringing network location-based conditional access policy to SharePoint and OneDrive for Business to First Release starting 20 January 2017.

 

CloudSecurity.png
Continue reading → Introducing Conditional Access by Network Location for SharePoint and OneDrive for Business