Tuesday, August 31, 2021

The Microsoft Azure Cosmos DB security flaw and the impact on customers

On August 12, 2021, the cyber security researcher Wiz reported to Microsoft a vulnerability in Microsoft Azure Cosmos DB that potentially allowed intruders to gain access to customer’s database by using the Cosmos DB primary read-write key. According to Microsoft, the flaw was related to a data visualization feature called Jupyter Notebook. In a blog post, Wiz pointed out that this feature was introduced in 2019 but it has been enabled by default for new DBs since February 2021. What made me think whether my customers or my environments could have been affected.

In an official statement, Microsoft shares that this security issue was fixed immediately to keep the customers protected.

On August 29, 2021, Wiz published a very good blog post called Protecting your environment from ChaosDB that goes deeply and covers topics such as Who is affected, Find out which Cosmos DBs are affected by this vulnerability, and Actions to be taken (short-term and long-term actions/recommendations). If you use Cosmos DB in your applications, I recommend you to have a look at the following blog posts to better understand the overall situation and reach out the correct decision for your business scenario:


Better safe than sorry 😊

I ended up regenerating the primary read-write key of my Cosmos DBs. I also took this opportunity to regenerate the primary read-only key as well as the secondary read-write and read-only keys of all my Cosmos DBs to ensure all keys are new and my data is protected.

Sunday, August 22, 2021

Awarded the Microsoft MVP in Office Development - 2021/2022

The doorbell rang and someone from my family opened it. I knew the postman was supposed to deliver something special for me on that day but I wasn't sure whether he/she was at the door. I started thinking, "Maybe it is a friendly neighbor or a postman who isn't delivering the package I’ve been waiting for." Although I was keen to go and see what was going on, I couldn't because I was in the middle of a meeting.

Finally, the meeting was over; and I walked downstairs like a kid in a candy shop. The package was for me and the sender was Microsoft. Together with my family I opened the package and a beautiful “THANK YOU” appeared. The MVP award for 2021-2022 has just arrived!

I’m delighted to receive the MVP award also this year. 2020 was definitely exceptional and I hope the near future will allow us more and more to get back to what we used to call normal 😊 I’m also looking forward to meeting the community in person at events again. This is something I miss most about our awesome community!

This blog post represents an opportunity for me to say thank you to people who keep inspiring and motivating me:

  • Chris O’Brien: You’ve been an MVP for 14 consecutive years. Congratulation 🥳 Thanks for all the content you've been sharing with us via your blog, events, social media, and so on. You've been a source of inspiration to me.
  • Jeremy Thake: Although you aren't an MVP anymore, you keep contributing to our community with the awesome Microsoft 365 Developer Podcast. Thank you and Paul Schaeflein for the content you share and the speakers you invite. Also, thank you for the great work you’ve done on the Microsoft Graph docs.
  • Vesa Juvonen and Waldek Mastykarz: The Microsoft 365 PnP Weekly is a success and you guys have been playing a very important role in impacting our community.
  • A huge thanks to all of you who has been sharing your knowledge with us. As Vesa Juvonen says, "YOU ARE AWESOME".
I also want to say thanks to the Valo Teamwork team for the peer programming, the brainstorming, and innovation sessions we have. It’s been a pleasure to work with you and to be part of Valo. Thanks also to the Microsoft Graph docs team for the tireless and amazing work you do and for the huge impact you have in our community. Very special thanks to my wife and kids for everything 😊 I loved each and every second we spend together ❤

#MVPBuzz





Sunday, June 27, 2021

Graph API News: Tag support in Microsoft Graph APIs

The Microsoft Graph Teams team has just released new API support for interacting with tags in a team. Developers can now list, create, get, update, and delete tags. Additionally, support for listing, getting, and deleting members from tags in a team is also available.

Tags in Microsoft Teams provide a simple way for user categorization based on common attributes. For example, I’ve created tags in my development teams to reach Designers, Developers, Testers etc. After a tag is created, users can @mention it in a channel. For example, a chat message that contains @Designers reaches the group of users specified in the @Designers tag. For more information about tag management in Microsoft Teams, see Manage Tag in Microsoft Teams.

The APIs support application permissions and currently they’re only available as BETA endpoints. Keep in mind that BETA APIs in Microsoft Graph are subject to change and production usage isn’t supported.

The following examples show the HTTP requests for listing, creating, getting, updating, and deleting tags associated to a team.

Get a list of the tags:

GET https://graph.microsoft.com/beta/teams/{teamId}/tags

Create a tag in a team:

POST https://graph.microsoft.com/beta/teams/{teamId}/tags

Read a tag:

GET https://graph.microsoft.com/beta/teams/{teamId}/tags/{tagId}

Update a tag:

PATCH https://graph.microsoft.com/beta/teams/{teamId}/tags/{tagId}

Delete a tag:

DELETE https://graph.microsoft.com/beta/teams/{teamId}/tags/{tagId}

The following examples show the HTTP requests for listing, getting, and deleting members from a tag in a team.

Get a list of tag members in a team:

GET https://graph.microsoft.com/beta/teams/{teamId}/tags/{tagId}/members

Get details of a tag member in a team:

GET https://graph.microsoft.com/beta/teams/{teamId}/tags/{tagId}/members/{tagMemberId}

Delete a member from a tag in a team:

GET https://graph.microsoft.com/beta/teams/{teamId}/tags/{tagId}/members/{tagMemberId}

I assume the roll out for these new APIs is still taking place. So, no worries if you can’t use them yet in your environments! I’m eager to learn more about it and consider possible implementation scenarios for the products I manage.

Thanks for reading,
Jarbas

Monday, April 19, 2021

Speaking at Beetroot webinar about Employee Onboarding in the Digital Age

I'm looking forward to speaking at Beetroot AG webinar on April 21st, 2021.

Since the administration of Covid-19 vaccines is a slow process in many countries, several organizations are still looking for a digital solution to onboarding challenges in times social distancing is the need of the hour. Regardless of the ongoing pandemic, flexible work is here to stay as it helps to overcome demographical and other timely challenges and brings additional benefits for both employees and employers. In cooperation with Daniel Schnyder (Co-Founder and Managing Partner at Beetroot AG, consulting company in Switzerland), I have organized a free webinar about onboarding experience. We will address cultural, organizational, and psychological aspects of an onboarding process. Thanks Mario Niederhauser (work and organizational psychologist at Beetroot) for helping us preparing the webinar’s content.

Both pre-boarding and onboarding are fundamental for a good employee orientation. If these processes are not well planned and executed, contract termination might be a consequence. Along with the topics already mentioned in the introduction of this blog post, we will show how Microsoft 365 empower organizations during the employee onboarding process. Although, the Microsoft 365 platform does not replace essential human aspects in an onboarding process, it offers excellent tools that combined with 3rd-party can leverage the way how talents start at companies.

Let's get in touch if you're also going to participate in this event!


Event information:

Registration page in German

Thursday, March 25, 2021

Speaking at HIRSCHTEC webinar about onboarding process in times of social distancing - Recap

Last week I held another webinar about onboarding experience in times of social distancing. The more I reflect on this topic, the more I want to discuss with others about it. The ongoing pandemic has forced us to change our ways of working. Working from home is no longer an option, but for many the only way to go. This also impact onboarding processes where the onboarding experience happens in a hybrid or completely remotely.

From my point of view, one of the biggest challenges currently is to ensure good communication between the organization and new employees. At the end of the day, it is not only about getting new talents up to speed, but making them feel welcome and proud of working in the organization. Microsoft 365 has good tools that can help HR departments and team leaders to create a structured and consistent onboarding process where the manager, IT and HR departments, the mentor and finally the new talent can participate and collaborate.

In my last webinar, I talked to attendees of the HIRSCHTEC webinar about the different roles in the onboarding process as well as presented them an innovative way for employee onboarding using Microsoft Teams. I also showcased how this process can be automated and simplified using a third-party solution. While getting the webinar ready, I worked closely to Anna Luft and Malte Zimmermann. Thanks Anna and Malte for the coordination and special thanks to Malte for being my co-speaker in that webinar.

Wednesday, February 10, 2021

Speaking at SharePoint Klubi about Employee Onboarding in the Digital Era

Odotan innolla SharePoint Klubissa puhumista 💛 I'm looking forward to speaking at SharePoint Klubi on February 11th, 2021.

SharePoint Klubi is an initiative from Sininen Meteoriitti (now Valtti Kumppanit) consultants to share the latest news about Microsoft 365 ecosystem with their customers. I will be speaking about Employee Experience in the context of employee onboarding. The onboarding process plays a central role in the overall employee experience. If this process is not well planned and executed, the new talent might decide during the onboarding process to not continue working at the company or the company might end up after the probation period with someone who doesn't have the right skills for the position. 

Microsoft recently announced Microsoft Viva as a solution to increase employee experience. This is indeed a timely topic and requires attention as the so called "new normal" will not disappear completely after the current global pandemic. Well, at least, I believe that remote work will become more and more common in the future because of its flexibility and possible cost saving factors for companies.

I want to say thank you to Valtti Kumppanit consultants for this opportunity. Let's get in touch if you're also going to participate in this event!


Event information:

Home page in Finnish


Tuesday, February 9, 2021

Speaking at I4-YOU webinar about Employee Onboarding in the Digital Age

I'm looking forward to speaking at I4-YOU webinar on February 10th, 2021.

I4-YOU is a consultancy company from Netherlands focused on delivering real solutions to their customers. Tomorrow, I will be speaking with Maurits Mes (Adoption Specialist at I4-YOU) about employee experience with a focus on employee onboarding in times when working remotely has become the new normal. We will also showcase how Microsoft Teams and Valo Teamwork can increase the onboarding experience.


Working closely with the I4-YOU team has been very inspiring. Iris van Sligtenhorst (Marketing Specialist at I4-YOU), Maurits and Peter de Graaf (CEO at I4-YOU) have been very cooperative and professional with the webinar organization. We have been planning the webinar already since December 2020 and I am really happy about the time we spent together as well as for the content we created.

Let's get in touch if you're also going to participate in this event!


Event information: