Friday, December 15, 2017

Change Authentication Code Phone Number if Teams ask for verifikation

If you are switching to one of your guest tenants or in some other cases, Teams ask for a Microsoft Secure Code, sending those digit to your registered phone number.

This feature for securing your account is part of the your Azure AD user settings, which requires you committing changes there.

You have 4 options, you can chose from receiving the Microsoft Authenticator Token:
- Authentication Phone
- Office Phone
- Alternate authentication phone
- Authenticator app

Either one or multiple Authenticators you might have set and need to change them according to your need.

  1. Sign in to
  2. Select your account name in the top right, then select profile.
  3. Select Additional security verification.

It is important to configure a secondary authentication phone number. Because your primary phone number and your mobile app are probably on the same phone, the secondary phone number is the only way you will be able to get back into your account if your phone is lost or stolen.

Follow those illustrations making changes you require:

 2. Click your account icon/picture and select "Profile"

3. Click "Additional security verification"

4. Change the Phone number to the new and add the secondary phone number

Sunday, December 10, 2017

Focused Mailbox not shown - solution

You might have experienced two issues related with not having the FOCUSED MAILBOX shown on your Outlook client.

- Either its not shown on all client
- or its shown one one client but on another not

First you need to have activated Outlook with an account related to a dedicated Office 365 tenant where focused mailbox is enabled on a Organization Level.
Even if one client shows up focused mailbox and another not, simply changing the accounts to the same subscription account will not activate the focused mailbox.

It all comes back to the same solution:

To check whether your focused inbox is turned on, please run powershell commands referring to the steps below and send us a screenshot. Please be informed that you need to involve your admin to perform this.

2. Run the following commands:

Get-FocusedInbox –Identity “ email address”
Get-OrganizationConfig | fl *focus*

You must activate it on your Exchange Org:
Get-OrganizationConfig -FocusedInboxOn $True

Here its an example of how it was done:

Focused Mailbox not shown:

Login to Exchange Tenant, checked Org Level (undefined) and user was enabled.

Change and verify the Exchange Tenant settings:

Restart Outlook and it behave as expected

Saturday, December 9, 2017

Office 365 Group Calendar in Teams

I stepped over an interesting possibility, making TEAMS more to your prefered Modern Workplace Team Tool.

You are able to add your Teams Calendar (from Office 365 Groups) into a Apps Tab.

This enables you to seeing your related appointment faster.

Disadvantage is, you can navigate through Outlook Web App as usual. This is generally not an issue an further more, it allows you also writing emails from within TEAMS!
Not, you only see in OWA the content from the user you logged in with.

Ok, lets start:

Got to Outlook Web App

go to your Group Calendar related to your TEAM.
Copy the entire URL...

Open TEAMS and click "add" new App

Chose "Website"

Name the Tab "Calendar"
Paste the URL
Click Save

You are ready and will see the Teams Calendar now within teams

Hope you find this helpful and experiment with more possible Tabs/ Apps in Teams.

Friday, December 1, 2017

Teams sharing files with external non-teams members

Sharing files with external guest is a native SharePoint feature.

Teams relays on Office 365 Groups. Any O365 Group can be used and is required for activating a MS Teams.

Therefore the basic settings once a Teams was created, which automatically creates an Office 365 has external non-teams-guest sharing disabled by default.

The structure for external file sharing is:

1. Organizational Setting (Tenant Level)
Admin centers > SharePoint/sharing

2. SharePoint Site Collection
Admin centers > SharePoint/site collections/sharing

3. Office 365 Groups setting

We need now managing external sharing for Office 365 Group site collections.

We can share files from within Teams either as Teams link or native SharePoint link.
As per default setting, the Teams Groups 365 Group site collection will NOT allow sharing with external, non-member guest users.

This you will see even if the global tenant level has activated the external access to file and the global SharePoint settings allow those sharing.

Next we need activating it explicitly on the Office 365 SP Site Collection.

If you update only a dedicated Office 365 Site Collection:

Set-SPOSite -Identity -SharingCapability SharingOption
Updating the sharing setting for all sites in a tenant   You can use the following script to update the sharing setting for all of your sites:

$userCredential = Get-Credential

Connect-SPOService -Url -Credential $userCredential

$sites = Get-sposite -template GROUP#0 -includepersonalsite:$false

Foreach($site in $sites)
Set-SPOSite -Identity $site.Url -SharingCapability SharingOption
Write-Host("External Sharing Capability updated for all sites.")
  • TenantName - The name of your Office 365 tenant.
  • SharingOption - The sharing option that you want to use, from the table above.

For SharingOption, use one of the following parameters:
DisabledExternal user sharing (share by email) and guest link sharing are both disabled.
ExternalUserSharingOnlyExternal user sharing (share by email) is enabled, but guest link sharing is disabled.
ExternalUserAndGuestSharingExternal user sharing (share by email) and guest link sharing are both enabled. This is the default setting.
ExistingExternalUserSharingOnlyExternal user sharing (share by email) is available only for external users that are already in the directory.

Verifying your Sharing Options:

(Get-SPOSite -Identity

Happy trying...!

Further References:

Thursday, November 9, 2017

Teams PowerShell download

Microsoft Teams PowerShell


Teams Cmdlets module


PS> Save-Module -Name MicrosoftTeams -Path <path>  


Open a Windows PowerShell console.
Run the Install-Module cmdlet as shown here.

PS> Install-Module -Name MicrosoftTeams -RequiredVersion <version>

MS Teams cmdlets:



Connect-MicrosoftTeams -AccountId
$group = New-Team -alias "ProductA" -displayname "Product A Planning" -AccessType "private"
Add-TeamUser -GroupId $group.GroupId -User ""
Add-TeamUser -GroupId $group.GroupId -User ""
Add-TeamUser -GroupId $group.GroupId -User ""
New-TeamChannel -GroupId $group.GroupId -DisplayName "Sales"
New-TeamChannel -GroupId $group.GroupId -DisplayName "Marketing"
New-TeamChannel -GroupId $group.GroupId -DisplayName "Service"
Set-TeamFunSettings -GroupId $group.GroupId -AllowCustomMemes true
Set-TeamPicture -GroupId $group.GroupId -ImagePath C:\Users\you\Downloads\download.png

Hide users from address book in Skype for Business

SfB On-Premise is making use of the Exchange GAL.
If you don't want users or other resources to appear in address book / GAL search in the Skype for Business client there is an easy way. Hiding contacts from GAL, by changing an AD related attribute. This could be e.g. hiding Helpdesk Team Members

This is the Exchange attribute for hiding users from the Global Address List (GAL). If this is set to TRUE, which indicates it doesn’t need to appear on the GAL, Lync will also ignore this user for the Address Book.

This sets the attribute "msExchHideFromAddressLists" to True.
It also clears the attribute "ShowinAddressBook" 

This is the Script:

$users = Get-CsAdUser -Filter {name -Like "*HelpDesk*"}
foreach ($object in $users)
      Set-ADObject -Add @{msExchHideFromAddressLists=$true} -Identity $object.DistinguishedName
      Set-ADObject –clear ShowinAddressBook -Identity $object.DistinguishedName

In this example i hide all the "HelpDesk" users from showing up in address book search.
You can change the filter to an OU too.

After running the script the objects will no longer show when you do an address book search in your Skype4B or Lync client.

Alternative ABSConfig.exe (SfB Resource Kit):

Alternative 2:

You could move users into a different OU, which should be hidden and force the CsUserReplicatorConfiguration to run only on specific OUs (DN).
Set-CsUserReplicatorConfiguration -Identity global -ADDomainNamingContextList @{Add="dc=fabrikam,dc=com"}

Exchange, SfB and SharePoint are consolidating information. Exchange and SfB share a common Contact Data Strore, (Unified Contact Store UCS), 

Monday, October 23, 2017

Violation of Terms of Service Disable in Process - Phishing Mail

Dear friends and my blog reads!
if you receive and mail like this. PLEASE IGNOR.
This is a Phishing attack mostly not from your Tenant.
But it would not be wrong, if you let all users change their passwords.

The link below has been changed and is therefore save.


From: Microsoft Office [mailto:office@microsoft]
Send: Freitag, 20. Oktober 2017 16:45
To: SfB USer Group NRW <>
Subject: Violation of Terms of Service Disable in Process

Microsoft Office365

Dear Sfbusergroup-nrw

If these disable modifications were made without your consent, please log in to your email
setting by checking blow office365

Cancel Disable Process
Thanks for taking these additional steps to keep your email safe.
Privacy | legal notices

Microsoft Office
Boulevard, Suite 200
13031 West Jefferson
Los Angeles, CA
90094 USA

You're receiving this message because you're a member of the SfB USer Group NRW group. If you don't want to receive any messages or events from this group, stop following it in your inbox.

Saturday, August 19, 2017

Outlook 2016 Pro Plus freezing with Windows 10

With the recent update to Windows 10 Creators Update, a lot user have some issues with Office 2016 Pro Plus Click-2-Run.

This is due to changes made in Windows 10 Core with directly impact Office Pro Plus.
One of this issue is that Outlook 2016 is freezing after certain time, mostly if you try replying to an Email. 
You could only fix this once you kill the Outlook process and restart Outlook (either /safe safemode) and restart Outlook again.

The solution update your Office 2016 Pro Plus will also not solve this problem. Change made to Windows 10 require a REPAIR task to Office Pro Plus.

Navigate to "Feature & Apps" and click MODIFY Office 2016 Pro Plus, chose repair

The Option :
- Quick Repair will mostly fix the issue already.
- Online Repair, will with download from MS Cloud fix def. your problems.

Wednesday, August 16, 2017

OneNote Screen Clipping not working with Windows 10 Creators Update

Microsoft wants you working different ;)

Or in other words, both teams Office and Windows did align.

Here is what to do:

If you can disable Windows Sniping Tool
Group Policy follow the screen shot

Than or change your Hot Key :

HEX 83 is the default Key WIN+SHIFT+S

and or you might fully disable the Global Windows Hot Key WIN+S

reg.exe add HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced /v DisabledHotkeys /t REG_SZ /d S /f

Reboote your computer

now it should work as usual and you can work proper with OneNote again.


Friday, August 4, 2017

Microsoft Teams Bandwidth Calculator

Bandwidth Calculator for Microsoft Teams

The Bandwidth Calculator for Microsoft Teams provides you with an estimate of the expected bandwidth generated by Microsoft Teams within your organization. By inputting your user count and expected behavior, the resulting calculation will better prepare you to successfully leverage Microsoft Teams in your environment. The Bandwidth Numbers generated are based on typical bandwidth values and will provide a starting point for further optimization. Should you want to learn more about aligning the tool more to your specific needs and the possible caveats, you can find further explanation about the tool is added below or watch our training recording here: Teams Academy: Bandwidth Calculator

the Calculator can be download at:

OneNote Screen Clipping not working Windows 10 Creator Update

There are two function overwrite in Windows 10 Creator Update from July 2017.

[WIN]+[SHIFT]+S and [WIN]+S.

The first shortcut opens now Windows 10 Snipping Tool and copies the image into the ClipBoard. But this is the common key combination for OneNote 2016 Screen Clipping.

There are two work arounds.

reg.exe add HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced /v DisabledHotkeys /t REG_SZ /d S /f

and using group policy forbidding Win 10 Screen Clipping Tool to run.

Run Local Group Policy Editor
navigate to:
[User Configuration] -> [Administrative Template] -> [Windows Component] -> [Table PC] -> [Accessories]

From there change the Policy for [Do not allow Snipping Tool to run] set it to [Enabled]

Thursday, August 3, 2017

Set Expiration for SharePoint Online Anonymous links in Office 365

Set Expiration for SharePoint Online Anonymous links

The below PowerShell command will set a mandatory 30 DAYS limit on all Anonymous links (or external sharing links) generated from SharePoint Online and OneDrive for Business.

If you do not see the parameter listed for the Set-SPOTenant command, update the SharePoint Online PowerShell to the latest version.

Set-SPOTenant -SharingCapability ExternalUserAndGuestSharing
Set-SPOTenant –RequireAnonymousLinksExpireInDays 30

This PowerShell command disable the expiration entirely.

Set-SPOTenant –RequireAnonymousLinksExpireInDays 0

identified your settings:

another good blog article is found here:

Login to SharePoint Online:

Monday, July 31, 2017

Skype for Business Online cmdlets

Sometime its easier know where we copied our important cmdlets to.


Broadcast cmdlets

Group Search cmdlets

SfB and Teams can make use of Groups in Office 365, but the Groups ownership belongs to Exchange Online

Internet Protocol (IP) phone cmdlets

Online Audio File cmdlets

Online Carrier PortabilityIn cmdlets

This cmdlet if for Microsoft internal use only.

Online Schedule cmdlets

Online Time Range cmdlets

Online User

Online Voice User cmdlets