Blogs by Ashwin

Problem An error message that looks like one of the following appears when you attempt to migrate a mailbox from Exchange Online to an on-premises environment or activate or disable an archive mailbox for an existing Exchange Online user: Error- UserAlreadyBeingMigratedException: The user '<User Email Address>' already has a pending request. Please remove the existing request and resume the current batch or start a new batch for this user.  Mailbox '<User Display Name>' has a completed move request associated with it. Before you create a new move request for the mailbox, run the Remove-MoveRequest cmdlet to clear the completed move request. Mailbox '<User Display Name>' has move status <move status>. You can't enable or disable an archive while the mailbox is being moved.   When you run the Get-MoveRequest | fl  command to examine the move request, you verify that the request is a Microsoft 365 datacenter move request. This is indicat...

  Symptom You are unable to add an archive to a mailbox that has not yet been migrated to Microsoft Office 365 Dedicated/ITAR vNext. Additionally, mailbox that was moved from Dedicated cannot be used to deprovision an archive.  Cause The system anticipates that an on-premises Exchange installation will handle all management when Exchange Online is set up in a hybrid architecture. This keeps the web directory and the on-premises directory up to date.  Exchange Server is frequently not installed on-premises by dedicated users. However, the objects behave as though they are a part of a hybrid deployment as a result of the migration from Dedicated. Installing Exchange on-premises for the vNext transition is not necessary, although management is advised to have Exchange deployment on-premises to make the move smoother and reduce total expenses. Due to this, some users might not be able to control the archives for mailboxes that were moved from Dedicated.  Resolution Follo...

  Symptoms A user may experience following symptoms: First-  The user receives a "mailbox is full" warning message for a mailbox that hasn't reached the storage limit. Second-  When the user deletes email messages, "The operation could not be completed" warning message is displayed. Third-  The user can't change or accept a calendar invitation.  Cause If the mailbox size is greater than the mailbox quota, this problem arises. As it excludes the Recoverable Items folder, the user's view of the mailbox size is inaccurate. Users cannot see this folder.  Resolution Here is how to resolve this issue: Verify the storage quotas of the user's mailbox by running the cmdlet- Get-Mailbox user@contoso.com | fl ProhibitSendReceiveQuota , RecoverableItemsQuota Then, verify the status of the mailbox quota by running this cmdlet- Get-MailboxStatistics user@contoso.com | fl StorageLimitStatus , TotalItemSize , TotalDeletedItemSize If the StorageLimitStatus value isn...

  Introduction The Logic Apps connector for Microsoft Security Copilot enables you to interact with Copilot through an Azure Logic Apps workflow. The connector exposes two connector actions:  Submit a Security Copilot prompt- Provide a natural language prompt to initiate a new investigation with Security Copilot. Once finished, the evaluation outcome will subsequently be returned to your workflow.  Submit a Security Copilot promptbook- Using a promptbook, initiate an evaluation of a new Security Copilot promptbook and send the results back to your Azure Logic Apps workflow.  Prerequisites Tenant- Make sure that the tenant administrator grants access to Microsoft Security Copilot prior to utilizing the connector.  User Authentication- This connector is limited to delegated permissions using the OAuth Authorization Code flow. The individual who creates the connection to the connector while designing the Azure Logic Apps workflow needs to have access to Microsoft S...

  Introduction Whoisfreaks enhances your cybersecurity approach through its domain and IP intelligence solutions. Tailored for analysts, researchers, and brand proprietors, the platform delivers exceptional insights and monitoring functions to safeguard your digital assets. Keep ahead of potential threats, maintain brand integrity, and make informed choices with reliable, real-time data. Our platform effortlessly integrates with current systems, boosting workflow efficiency and productivity.  Before You Begin Sign-in to Microsoft Security copilot. Access Manage Plugins by selecting the Plugin button from the prompt bar. Choose Settings to configure your Whoisfreaks plugins. Select Save and begin prompting in Security Copilot. Troubleshoot Whoisfreaks Plugins Errors Occur- Make sure the plugin is activated if you receive errors like "Couldn't complete your request" or "Unknown error occurred." Sign-out of Security Copilot and then back in again if the problem con...

  Introduction Together, Microsoft Security Copilot and Aviatrix have developed an AI-enabled plugin that enables users to use Microsoft Defender Threat Intelligence with Aviatrix to identify emerging threats and counter them by enforcing firewall policies. Microsoft LogicApps describe and enable integration with Aviatrix throughout Microsoft Security Copilot, Microsoft Defender Threat Intelligence, and Microsoft Sentinel.  Before You Begin Sign-in to Microsoft Security Copilot.  Access Manage Plugins by choosing the Plugin button from the prompt bar.  Next to Aviatrix, select Set up. Enter the Aviatrix controller username and password.  Save the changes. Troubleshoot Aviatrix Plugin Error occur- If you run into issues like "Unknown error occurred" or "Couldn't complete your request". Verify that the plugin is activated. If the lookalike period is set too lengthy, the query may try to get too much data, which could result in this error. Sign-out of Security Copi...

  Introduction Microsoft Security Copilot is compatible with various plugins, both from Microsoft and third parties. This blog outlines a number of examples of third-party plugins that can be utilized with Security Copilot. Each plugin serves a particular purpose. While some require authentication for integration with Security Copilot, not all do.  Find & Use Other Plugins Sign in to Microsoft Security Copilot. Access Manage Plugins by selecting the Sources button from the prompt bar. Scroll down to Non-Microsoft, and choose the plugin you want to use. One of the examples is described below- AbuselPDB Marathon Studios Inc. is the project manager for AbuselPDB. By offering a central location for webmasters, system administrators, and other interested parties to report and identify IP addresses linked to harmful activity online, they hope to contribute to the safety of the Web. The AbuselPDB plugin is compatible with Microsoft Security Copilot.  Know Before You Begin In...