Mixed Reality, SharePoint, SharePoint spaces

SharePoint spaces, a new dimension for your intranet

Everything you can imagine is real.  

-Pablo Picasso  

Last week at Microsoft Ignite we continued to build on the momentum of our 2018 SharePoint Conference in May – sharing the latest news, announcements, and investments we’re bringing to SharePoint Online as your intelligent and engaging intranet in Office 365.

In addition to delivering innovation to bring you an intelligent and engaging intranet, we’re also continuing our journey to introduce a new dimension to your intranet through SharePoint spaces.

SharePoint spaces introduces immersive, mixed reality experiences for your intranet—which enable you to view and interact with content from every angle and visualize and manipulate data and product models in real-time. SharePoint spaces mainstreams mixed reality, empowering everyone to create visually compelling spaces that are available to anyone, on any device.  

With SharePoint spaces you can build immersive experiences with point-and-click simplicity with smart templates to create a mixed reality environment complete with beautiful surroundings, ambient sounds, rich textures, and lighting. You can then add content, which can include 2D, 3D or 360 content you already have in Office 365, allowing you to repurpose your existing data, documents, and images.  

Mixed reality has the potential to help customers and businesses across the globe do things that, until now, have never been possible. Mixed reality experiences help businesses, educational organizations, the public sector, and healthcare institutions complete crucial tasks faster, safer, more efficiently, and to create new ways to connect to customers and partners.  

Learn how our customers are using SharePoint spaces and explore the many possibilities with SharePoint spaces…  

www.exploresharepointspaces.com

Standard
Security and Compliance

What’s new in security, compliance & administration for SharePoint & OneDrive from Microsoft Ignite

Innovation in the cloud drives tremendous business value, and it delivers new capabilities to the IT professionals who work tirelessly to support, configure, administer, and secure their organizations’ content and services.  Office 365 empowers you to support sophisticated requirements for security and compliance, to manage day-to-day operations, and to maximize the value of Office 365 to people in your organization.

We’ve built Office 365 with global scale, exceptional reliability, and support for compliance across industries and geographies on top of intelligent security that keeps your service and content protected and private, we give you granular and dynamic controls so that you can manage access and distribution of your organization’s sensitive information. We’ve equipped you with detailed activity and usage reports. And we’ve brought the innovations born in Office 365 to SharePoint Server 2019? with out-of-the-box capabilities and connected, hybrid experiences.

Today at Microsoft Ignite 2018 we announced many of the new capabilities that are available now and coming soon to Office 365 and while our list of news is too big for a single blog, here you’ll find a summary of these announcements.

SharePoint site classification labels

Across your organization, you probably have different types of content that require different security requirements to comply with industry regulations and internal policies. 

Using Microsoft Information protection labels you can now apply consistent security and access policies to SharePoint Sites based on the sensitivity of the site. You can create sensitivity labels and associate them with policies in the new Microsoft 365 Security and Compliance Center. You can then apply these labels to files, emails, groups, Sites and Teams to automatically enforce consistent policies across your content.

Automation application of retention labels

Data is your company’s most important asset, with the automatic application of retention labels you can ensure your most important assets are compliant to meet your corporate or regulatory requirements.  These retention labels can be created by importing the content types that you already use in SharePoint to help streamline the application of retention policies across all your content in SharePoint.

Learn more about unified labeling management in the Security and Compliance Center at https://techcommunity.microsoft.com/t5/Security-Privacy-and-Compliance/Announcing-the-availability-of-unified-labeling-management-in/ba-p/262492.

Label analytics

Information is growing at exponential rates and we’re making it easier for you to stay informed on how retention and sensitivity labels are being used to classify, retain, and protect your organization’s content in the cloud.

Using label analytics you can now get insights into how content is being labeled, including which labels are used most, and what emails and files they’re being applied to and also explore user activity to identify who’s been applying labels, investigate unusual trends, and more.

Learn more about unified labeling, analytics, file plan and more at https://techcommunity.microsoft.com/t5/Security-Privacy-and-Compliance/Updates-to-Advanced-Data-Governance-Unified-labeling-analytics/ba-p/261876.

Files Restore for SharePoint and Microsoft Teams

Data loss is non-negotiable, today we announced Files Restore for SharePoint and Microsoft Teams.

Files Restore is now available for SharePoint document libraries, protecting your shared files in SharePoint, Teams, Outlook groups, and Yammer groups connected to Office 365 groups and uses the same recovery capabilities that protect your personal files in OneDrive for Business.

Files Restore is a complete self-service recovery solution that allows site administrators restore document libraries from any point in time during the last 30 days and rewind changes using activity data to find the exact moment to revert to.

SharePoint admin center updates

While our new user experiences are designed to be simpler, more intuitive, and more powerful we also believe administration should be just as simple, just as intuitive, and just as powerful. To that aim, we’re adding new controls and capabilities SharePoint Admin center to include:

  • The ability to manage all sites, including group connected team sites, communication sites, and hub sites
  • Controls such as Device Access and Sharing Policies through a richer menu to manage and control how information is accessed and shared.
  • A new command surface that provides an actionable command bar, hub site and classification management control
  • Enhancements to the site creation experience empowering admins with more settings and control such as storage and classification
  • Several new options in the settings page including ability to control the defaults for user created sites
  • A new simple way to track and manage tenant level storage and site level storage limits

In addition to these new capabilities, you’ll soon be able to also change site URLs and manage site creation settings.

Multi-geo capabilities for SharePoint

Multi-geo capabilities with SharePoint support your global data residency needs by storing SharePoint data in more than one selected Office 365 data center regions or countries. Microsoft commits to provide in-geo data residency, business continuity and disaster recovery for your core customer data at rest.

With multi-geo capabilities for SharePoint you can have a single Office 365 tenant that can span across multiple geos and enable a unified communication and collaboration experience across your global organization. You can migrate various on-premises satellites data silos into a single Office 365 tenant and at the same time meet your data residency needs. Your users are now connected to the people and content that matter most, regardless of where they work.

For IT, you can use powerful Office 365 admin tools to easily create and manage satellite sites and if needed move user data between geos to meet your data residency business needs. Get reports on where each user’s data is stored and audit trail of activities of all users in your global enterprise. Tailor sharing, security, and compliance policies separately for each geo—all from a familiar admin experience.

To learn more about Multi-Geo Capabilities in Office 365 see https://products.office.com/en-us/business/multi-geo-capabilities.

External sharing integration with Azure AD B2B

Last year at Ignite we introduced a new external sharing experience where recipients could access the shared content in a secure way by entering a one-time passcode sent to their email address without the need of creating or remembering passwords. This year, we’re taking it a step further by integrating the one-time passcode sign-in experience with the Azure AD B2B platform. This enables external users to exist in your Azure AD directory as Guests which can be managed in the way you are already familiar with. This integration also brings the one-time passcode experience when sharing SharePoint sites and lists with external user.

SharePoint Migration Tool Improvements

In addition to these capabilities to help streamline your journey to Office 365 we announced several new capabilities we’re bringing to the SharePoint Migration Tool.

The SharePoint Migration Toolis designed to simplify your journey to the cloud through a free, simple, and fast solution to migrate content from on-premises SharePoint sites and file shares to SharePoint or OneDrive in Office 365.  The SharePoint Migration Tool allows you to accelerate your journey to Office 365 overcoming obstacles typically associated with migration projects.

With the SharePoint Migration Tool you can evaluate, address, and migrate the information that matters the most to your organization, the libraries, lists, and now complete SharePoint 2013 sites that form the foundation of the SharePoint experience.  Using the SharePoint Migration Tool you can start your migration today and take advantage of the full suite of features and security capabilitiesthat Office 365 offers. 

In addition to adding support for full site migrations with the SharePoint Migration Tool, we’re also refreshing the user experience and have made generally available its Windows PowerShell cmdlets to support automating your migration to Office 365.

Learn more about how we secure your data with SharePoint and OneDrive in Office 365 and how customers are achieving success at https://aka.ms/SharePoint-Security.

Thank you again for your support of SharePoint and OneDrive. We look forward to your continued feedback on UserVoice and hope to connect with you at Ignite or another upcoming Microsoft or community led event.

Frequently Asked Questions

Q:  When will SharePoint site classification labels be available?

A:  SharePoint site classification labels will begin rolling out to Targeted Release in December 2018.

Q:  When will Files Restore for SharePoint and Microsoft Teams be available?

A:  Files Restore for SharePoint and Microsoft Teams will begin rolling out to Targeted Release in December 2018.

Q:  When will the updates to the SharePoint admin center begin rolling out?

A:  These updates will begin to become available in Q1CY2019.

Q:  When will content type to label support be available?

A:  Content type to label support will be available in November 2018.

Standard
Events, OneDrive for Business, SharePoint, SharePoint Conference

SharePoint Virtual Summit 2018

Join us at the SharePoint Virtual Summit, for the live-stream coverage of the opening keynote at SharePoint Conference North America on May 21, 2018.

At this free online event, you will hear from Microsoft Corporate Vice President Jeff Teper and General Manager Seth Patton as they share the latest product innovations and roadmap across SharePoint, OneDrive, Yammer, Microsoft Teams, and Office 365.

See live demos illustrating how you can transform your workplace and learn how to tap into rich experiences across your intranet to inform and engage people. We’ll show how people can collaborate and work together, connect with expertise and knowledge across their organizations, and realize new ways to digitize business processes to enable an agile workforce.

When: Monday, May 21st, 9:00 am PDT
Add this to your calendar

Register today to reserve your seat at https://onlinexperiences.com/scripts/Server.nxp?LASCmd=AI:4;F:QS!10100&ShowKey=49205 or keep watching here on May 21st, 2018.  (Live stream and on-demand will be available at 09:00 A.M. on 5/21/2018).

https://mediastream.microsoft.com/events/2018/1805/SPCNA/player/SPCNA.html?cid=synd-TECHNETWB

Learn more about the SharePoint Virtual Summit 2018 and how to transform the way you work at https://resources.techcommunity.microsoft.com/sharepoint-virtual-summit-2018/.

Standard
Migration, SharePoint

The Microsoft SharePoint Migration Tool v2 is now Generally Available

Last month we announced open beta for the next generation of the SharePoint Migration Tool with new capabilities to include support for SharePoint Lists, programmatic destination site creation and more.  Today we’re pleased to announce this version (v2) of the SharePoint Migration Tool is now generally available.

The SharePoint Migration Tool is designed to simplify your journey to the cloud through a free, simple, and fast solution to migrate content from on-premises SharePoint sites and file shares to SharePoint or OneDrive in Office 365.  The SharePoint Migration Tool allows you to accelerate your journey to Office 365 overcoming obstacles typically associated with migration projects.  With the SharePoint Migration Tool you can evaluate and address the information that matters the most to your organization, the Libraries, and now Lists that form the foundation of the SharePoint experience.  Using the SharePoint Migration Tool you can start your migration today and take advantage of the full suite of features and security capabilities that Office 365 offers.

Keep reading to learn more about what’s new in v2 or download now at https://aka.ms/SPMT.

Getting Started

You can download the SharePoint Migration Tool at http://aka.ms/SPMT.  Through v2 of the SharePoint Migration Tool you’ll have available to you the innovation we’re delivering to help you bring your information to the cloud and take advantage of the latest collaboration, intelligence, and security solutions with Office 365.

What’s new in V2

List Support

New List support allows you to migrate SharePoint Server 2013 Lists to include the following List Templates:

  • GenericList
  • DocumentLibrary
  • Survey
  • Links
  • Announcements
  • Contacts
  • Events
  • Tasks
  • DiscussionBoard
  • PictureLibrary
  • XMLForm
  • GanttTasks
  • Posts
  • Comments
  • Categories
  • MySiteDocumentLibrary
  • IssueTracking

New On-Premises AuthN Support

Improvements in the AuthN support now allow you to connect to more on-premises sources with support for AD FS and more, to include:

  • NTLM
  • Kerberos
  • Forms
  • ADFS
    • MFA
    • SAML Claims
  • Client certificates

Site Structure Creation

Now when migrating your on-premises Lists and documents the SharePoint Migration Tool will create the source site collection or the list for you if it doesn’t already exist, so you don’t have to manually create a destination site. Simply either enter a URL that exist or a valid new URL for the site and the tool will do the rest.

JSON Support

In the current version of the SharePoint Migration Tool you were limited to CSV as a repository for bulk migrations, now on top of supporting a CSV format for automated migration we will also support JSON which will allow you even more fine grain level of control.

What’s next…

Through continued innovation across migration scenarios we’ll be adding more capabilities over time to the SharePoint Migration Tool, including support for more SharePoint versions, site structure migrations, and more.  Subscribe here to stay up to date on future announcements for SharePoint and Office 365.

Wrapping Up…

Whether you’re looking to migrate from file shares on-premises to SharePoint or OneDrive or from on-premises versions of SharePoint, the SharePoint Migration Tool is designed to support the smallest of migrations to large scale migrations with support for bulk scenarios.

Learn more about the SharePoint Migration Tool at https://support.office.com/en-us/article/Introducing-the-SharePoint-Migration-Tool-9c38f5df-300b-4adc-8fac-648d0215b5f7.

Prepare your environment for migration using the SharePoint Migration Assessment Tool by learning more at https://www.microsoft.com/en-us/download/details.aspx?id=53598.

The SharePoint Migration assessment tool is a simple command line executable that scans the contents of your SharePoint farm to help identify the impact of migrating your server to SharePoint Online with Office 365.

Standard
Events, Hybrid, Migration, SharePoint, SharePoint Conference

Hybrid SharePoint & Office 365 Learning Opportunities at SharePoint Conference North America

Attending SPCNA? Come learn about hybrid scenarios with SharePoint and Office 365 in a post-conference workshop.

As an attendee of the workshop you’ll receive a $500.00 Azure Pass, a complete SharePoint Server 2016 environment and an Office 365 Tenant that you can use to build your skills and complete hands on labs, both while at the workshop and even after the event. If you’ve already registered for the conference you can add the workshop to your registration by creating a new workshop-only registration at http://sharepointna.com/.  If you register for this workshop before May 21st, you’ll receive an additional $200.00 off of the workshop registration when using the Discount Code HYBRID. If you haven’t registered for the conference, there’s still time left. Visit http://sharepointna.com/ for details and use the Discount Code HYBRID to save $200.00 off of the conference pass.

Space is limited to 100 so add or register today.

Workshop Details:

Ramping up with Microsoft SharePoint Server & Office 365 hybrid scenarios

Speakers:

  • Neil Hodgkinson
  • Jason Himmelstein
  • Bill Baer
  • Aimme Triplett

This workshop will have hands-on labs. Bring your own fully charged laptop.

Cloud computing has become a popular way to reduce capital and operational expenditures, renew IT innovation, and gain the advantage of more rapid software delivery to meet the needs of business. However, compliance, data sovereignty, sensitivity concerns, or a significant investment in customization may limit your organization’s ability to take advantage of this. Today you can maximize your on-premises investment by upgrading to SharePoint Server 2016 and using hybrid scenarios in Office 365 to seamlessly leverage the cloud. This workshop is designed to give you the deep technical knowledge to deploy SharePoint Server 2016 as well as design and implement the latest hybrid scenarios including search, auditing, taxonomy and more.

Attendees will receive instructor led training on best practices for implementing a variety of hybrid scenarios and workloads, training materials, to include documentation and presentations and a dedicated lab environment including a SharePoint Server 2016 farm and an Office 365 Tenant that can be used to complete hands on labs during and after the event.

Standard
Administration, OneDrive for Business, Security and Compliance, SharePoint

Unmanaged Device Access Policies are Generally Available

In March 2017 we introduced device-based policies for SharePoint and OneDrive, that enable administrators to configure Tenant-level policies.

Device-based access policies for SharePoint and OneDrive help administrators ensure corporate data is not leaked onto unmanaged devices such as non-domain joined or non-compliant devices by limiting access to the content to the browser, preventing files from being taken offline, printed, or synchronized with OneDrive.

On September 1st, 2017 we continued to evolve our conditional access investments to address the ever-changing security landscape and business needs by introducing new levels of granularity with conditional access that allow administrators to scope device-based policies at the site collection level.  In addition, this granular policy can be configured to allow users on unmanaged devices to edit Office Online documents in the browser.

Today we’re pleased to say that these policies are now available worldwide, in addition to new site-scoped policies that are available with this update.  This is our major milestone in the conditional access policy journey in SharePoint and OneDrive.

In a world that’s mobile, social, and about getting things done you’re expected to manage a growing number of devices, both managed and unmanaged that can access corporate content.  The corporate boundary as a result, has shifted from the firewall to the employee.  The need for protecting access from the unmanaged devices is ever increasing. This unmanaged device access policy is the right solution for your need.

What’s new in this update?

In this update to device-based policies at the site collection level you can:

  • Blocks users from accessing sites or the tenant from unmanaged devices
  • Allows users to preview only Office file types in the browser
  • Allows office file types to be editable or read-only in the previewer
  • Based on the sensitivity of a site’s contents, admins can now set access control from unmanaged devices on different sites to be full access, limited access, or block access

In the demonstration above, the Tenant is configured with a permissive device access policy, allowing full access from unmanaged devices to include desktop apps, mobile apps, and browsers.  The Marketing site inherits the policy configured at the Tenant; however, the Legal site has a policy configured less permissive than that configured at the Tenant level.  In addition, members of the Marketing site, while limited to browser only access on unmanaged devices, can continue to edit content they have access to provide a seamless collaborative experience.

Configuring Device Access Policies Overview

For complete instructions on enabling device-access policies refer to the support documentation at https://support.office.com/en-us/article/Control-access-from-unmanaged-devices-5ae550c4-bd20-4257-847b-5c20fb053622?ui=en-US&rs=en-US&ad=US.

Unmanaged device access policies can be configured with SharePoint Online Management Shell.

Before you get started using PowerShell to manage SharePoint Online, make sure that the SharePoint Online Management Shell is installed and you have connected to SharePoint Online.

NOTE

The Tenant-level device-based policy must be configured to Full Access prior to configuring site-scoped policies.

  1. Connect-SPOService -Url https://<URL to your SPO admin center>
  2. $t2 = Get-SPOSite -Identity https://<Url to your SharePoint online>/sites/<name of site collection>
  3. Set-SPOSite -Identity $t2.Url -ConditionalAccessPolicy AllowLimitedAccess

The following parameters can be used with -ConditionalAccessPolicy AllowLimitedAccess for both the organization-wide setting and the site-level setting:

-AllowEditing $false Prevents users from editing files in the browser and copying and pasting file contents out of the browser window.

-LimitedAccessFileType -OfficeOnlineFilesOnly Allows users to preview only Office files in the browser. This option increases security but may be a barrier to user productivity.

-LimitedAccessFileType -WebPreviewableFiles (default) Allows users to preview Office files and other file types (such as PDF files and images) in the browser. Note that the contents of file types other than Office files are handled in the browser. This option optimizes for user productivity but offers less security for files that aren’t Office files.

-LimitedAccessFileType -OtherFiles Allows users to download files that can’t be previewed, such as .zip and .exe. This option offers less security.

External users, because they most likely use unmanaged devices, access will also be controlled when you use conditional access policies to block or limit access from unmanaged devices. If users have shared items with specific external people (who must enter a verification code sent to their email address) and you want those external users to access shared items from their devices, then you can exempt them from this policy by running the following cmdlet.

Set-SPOTenant -ApplyAppEnforcedRestrictionsToAdHocRecipients $false

Licensing

    1. This feature has a dependency on Azure Active Directory Conditional Access Policy.
    2. To learn more about Azure Conditional Access policies work, refer to https://docs.microsoft.com/en-us/azure/active-directory/active-directory-conditional-access-azure-portal.

Resources

As workforces become more globally distributed and the productivity barrier extended beyond the firewall, device-access policies allow you to provide a seamless collaborative experience across an array of devices, both managed and unmanaged, while keeping your most sensitive content that way.  To learn more about security and compliance with SharePoint & OneDrive visit https://aka.ms/SharePoint-Security.

Standard
Migration, OneDrive for Business, Security and Compliance, SharePoint

A new customer resource for SharePoint and OneDrive security and compliance news, training, and more

Security is at the heart of what we do…

Microsoft has been building enterprise software for decades and running some of the largest online services in the world. We draw from this experience to keep making SharePoint and OneDrive more secure for users, implementing and continuously improving security-aware software development, operational management, and threat-mitigation practices that are essential to the strong protection of your services and data.

Today we’re pleased to announce a new resource center where you can get the latest news on our security and compliance investments for SharePoint and OneDrive in addition to presentations, free training, eBooks and more.

Check out our new resource center at https://aka.ms/sharepoint-security to learn how we provide security you can trust and control you can count on. As always, we want your feedback on what you’d like to see and how we can improve these resources. Let us know what you think at secfeedback@microsoft.com.

Standard