Office365 Security: Local Active Directory Expires Attribute does not disable Office365 Account

Jon Prange, Director of Managed Services | September 21, 2018

During some recent testing, we have discovered that the Local Active Directory attribute AccountExpires does not properly synchronize with Azure Active Directory (AAD), which is used with Office365. Many organizations use this feature (AccountExpires) to set a future date for an account expiration as part of their termination policy for future terminations but also for contractors and consultants.

Some organizations utilize Active Directory Federated Services (ADFS) to authenticate users, meaning that the user authenticates their sign in with the local directory so this will prevent the user from using local resources (logging into computers, VPN connections into the network, etc.) as well as Office365 services (Exchange, Sharepoint, Skype). Other organizations rely on Azure Active Directory to authenticate users and, while this does disable the user from using local resources, it does not prevent the user from signing into Office365 and using those services.

The only way to prevent the user from signing into Office365 in this scenario is through one of two methods:

  1. Disable the local account which will then be synchronized to Azure Active Directory using Azure AD Connect
  2. Edit the Sign In Status in the Office365 Console and change it to blocked

This has been reported to Microsoft as a big security flaw since it would allow users that an organization expects to be prevented from accessing resources to still access all of the Office365 services.

 

If you have any questions regarding this, simply contact our team via our web form and we’ll setup a call to discuss.

Be Aware of New Google Calendar Scams

If you think that you can easily decipher phishing emails and other sophisticated scams, you might be wrong. New cyber security research shows that scammers are becoming increasingly sophisticated with their ploys by utilizing the integration between Google Calendar,...

Customer story: Chesterfield County

Watch how Virginia's Chesterfield County Department of Social Services recently transformed its outdated workplace using cloud technology. Using Microsoft Dynamics 365, the department streamlined manual processes and siloed data to improve efficiency and productivity...

Protect your data in files, apps, and devices, within and across an organization

Mobility has become a staple of the modern workplace, offering flexibility to employees and greater productivity to employers. However, this flexibility often requires that employees use their own devices to work when out of office. So how can you protect your data without losing the benefits of “bring your own device?”

Tools such as Azure Active Directory and Microsoft Intune can help you manage access to your data and company networks without invading employee privacy.

At Interphase Systems, Inc., we want you to get the most out of what technology has to offer. Contact us to learn more.

Customer Story: BP deploys Microsoft 365 to improve user experience and security

In an ever-changing security landscape, how do you keep users, devices, and data across 80 countries protected? For BP, they use Windows Defender Advanced Threat Protection that can compile information and identify possible threats more effectively than ever before. So effective in fact, that they put it on all 30,000 Windows 10 devices they have deployed across the world.

And this is just one of the many security tools from Microsoft 365 Enterprise E5 that BP is relying on to remain secure as they continue to transform their company.

You don’t need to be a company the size of BP to take advantage of the same security tools and capabilities BP has implemented to secure the modern workplace.

Are you ready to transform your organization? Interphase Systems has the team, the process and the tools to get you there. Learn more about BP’s security journey in this video, and contact Interphase Systems to help you secure your organization’s information.

Discover threats quickly, remediate immediately, and mitigate the impact of malware and breaches

A truly comprehensive security system does more than just provide “locks” for the entrances to a network, it searches for and reacts to threats that may have already entered the system.

The Advanced Threat Protection integrated throughout Microsoft 365 monitors and protects everything from data, to endpoints, to user identities. These tools are always working behind the scenes to keep your business secure, keeping you in the loop without overwhelming you with information.

At Interphase Systems, Inc., we believe in securing your business with a holistic strategy. Contact us to learn more.