Warning: "continue" targeting switch is equivalent to "break". Did you mean to use "continue 2"? in /home/s1087068/public_html/wp-content/plugins/revslider/includes/operations.class.php on line 2758

Warning: "continue" targeting switch is equivalent to "break". Did you mean to use "continue 2"? in /home/s1087068/public_html/wp-content/plugins/revslider/includes/operations.class.php on line 2762

Warning: "continue" targeting switch is equivalent to "break". Did you mean to use "continue 2"? in /home/s1087068/public_html/wp-content/plugins/revslider/includes/output.class.php on line 3706

Warning: "continue" targeting switch is equivalent to "break". Did you mean to use "continue 2"? in /home/s1087068/public_html/wp-content/themes/jupiter/framework/includes/minify/src/Minifier.php on line 227

Warning: Cannot modify header information - headers already sent by (output started at /home/s1087068/public_html/wp-content/plugins/revslider/includes/operations.class.php:2758) in /home/s1087068/public_html/wp-includes/rest-api/class-wp-rest-server.php on line 1831

Warning: Cannot modify header information - headers already sent by (output started at /home/s1087068/public_html/wp-content/plugins/revslider/includes/operations.class.php:2758) in /home/s1087068/public_html/wp-includes/rest-api/class-wp-rest-server.php on line 1831

Warning: Cannot modify header information - headers already sent by (output started at /home/s1087068/public_html/wp-content/plugins/revslider/includes/operations.class.php:2758) in /home/s1087068/public_html/wp-includes/rest-api/class-wp-rest-server.php on line 1831

Warning: Cannot modify header information - headers already sent by (output started at /home/s1087068/public_html/wp-content/plugins/revslider/includes/operations.class.php:2758) in /home/s1087068/public_html/wp-includes/rest-api/class-wp-rest-server.php on line 1831

Warning: Cannot modify header information - headers already sent by (output started at /home/s1087068/public_html/wp-content/plugins/revslider/includes/operations.class.php:2758) in /home/s1087068/public_html/wp-includes/rest-api/class-wp-rest-server.php on line 1831

Warning: Cannot modify header information - headers already sent by (output started at /home/s1087068/public_html/wp-content/plugins/revslider/includes/operations.class.php:2758) in /home/s1087068/public_html/wp-includes/rest-api/class-wp-rest-server.php on line 1831

Warning: Cannot modify header information - headers already sent by (output started at /home/s1087068/public_html/wp-content/plugins/revslider/includes/operations.class.php:2758) in /home/s1087068/public_html/wp-includes/rest-api/class-wp-rest-server.php on line 1831

Warning: Cannot modify header information - headers already sent by (output started at /home/s1087068/public_html/wp-content/plugins/revslider/includes/operations.class.php:2758) in /home/s1087068/public_html/wp-includes/rest-api/class-wp-rest-server.php on line 1831
{"id":1399,"date":"2022-04-11T17:41:51","date_gmt":"2022-04-11T07:41:51","guid":{"rendered":"https:\/\/manganoit.com.au\/?p=1399"},"modified":"2022-04-11T17:41:51","modified_gmt":"2022-04-11T07:41:51","slug":"how-to-configure-your-microsoft-e5-licences-for-security","status":"publish","type":"post","link":"https:\/\/manganoit.com.au\/blog\/how-to-configure-your-microsoft-e5-licences-for-security\/","title":{"rendered":"How to Configure Your Microsoft E5 Licences for Security"},"content":{"rendered":"

How to Configure Your Microsoft E5 Licences for Security<\/h1>\n
Security is something all organisations must take seriously. Microsoft makes doing so easy with the security-specific tools included in its core E5 licences; offered as add-on licences; or bundled into the Enterprise Mobility + Security E5\/A5\/G5, Microsoft 365 E3\/A3\/G3, Microsoft 365 E5\/A5\/G5, Microsoft 365 E5\/A5\/G5 Security, and Microsoft 365 Business Premium packages.<\/p>\n
If your organisation currently holds E3 licences, you may be wondering whether upgrading to E5 is worth it. In fact, Elston, a Mangano IT<\/a> client and one of Australia\u2019s largest privately owned and operated financial services companies, recently faced this question.<\/p>\n
Given their organisation\u2019s compliance demands, we counselled the team that moving to E5 licences would be a better match for the aggressive security posture they wanted to pursue. After supporting Elston in implementing and configuring their E5 licences, the industry leader is now well-equipped to securely access and manage its Microsoft cloud environment, as well as remain in compliance with critical regulatory standards.<\/p>\n

Security Features Exclusive to Microsoft E5 Licences<\/h2>\n
If you\u2019re thinking about a similar transition, there are several security features you\u2019ll want to be aware of within Microsoft\u2019s E5 licences.<\/p>\n
Although the company\u2019s E3 licences do include a number of inbuilt security features, E5 licence-holders gain access to an even greater level of protection. For instance, E5 licences may include access to the following features, depending on the specific licence being utilised.<\/p>\n
\n
Azure Active Directory Premium 1 & 2<\/li>\n
Microsoft Defender for Office 365<\/li>\n
Azure Information Protection Plan 2<\/li>\n
Microsoft Defender for Endpoint<\/li>\n
Microsoft Defender for Identity<\/li>\n
Microsoft Defender for Cloud Apps<\/li>\n
Advanced eDiscovery and advanced audit tools<\/li>\n
Information protection and governance capabilities<\/li>\n
Insider risk management tools<\/li>\n<\/ul>\n
That\u2019s in addition to the security features included with E3 licences, such as Microsoft Defender Antivirus, Credential Guard, Data Loss Prevention for files and emails, Microsoft Advanced Threat Analytics, BitLocker, Device Guard, and more.<\/p>\n
Configuring Microsoft E5 Licences for Security<\/h2>\n
Once you\u2019ve made the move to E5 licences, there are a number of features you\u2019ll want to configure. Here\u2019s where to start:<\/p>\n
Enable Microsoft\u2019s Security Defaults<\/h4>\n
Within Azure Active Directory, all Microsoft 365 tenants are equipped with defaults that enable five of the most common security features and controls, including:<\/p>\n
\n
Requiring all users to register and use Azure Multi-Factor Authentication<\/li>\n
Requiring that Administrators use Multi-Factor Authentication<\/li>\n
Blocking any Legacy Authentication protocols used by the organisation<\/li>\n
Forcing all users to perform Multi-Factor Authentication, as needed<\/li>\n
Protecting privilege access<\/li>\n<\/ol>\n
To turn these on, take the following steps (though note that you won\u2019t be able to use these controls if you\u2019ve implemented any custom Conditional Access policies):<\/p>\n
\n
Log in to your Azure Portal as a Security Administrator, Conditional Access Administrator, or Global Administrator<\/li>\n
Click \u2018Azure Active Directory\u2019<\/li>\n
Click \u2018Properties\u2019<\/li>\n
Click \u2018Manage Security Defaults\u2019<\/li>\n
Locate the \u2018Enable Security Defaults\u2019 toggle<\/li>\n
Switch it to \u2018Yes\u2019<\/li>\n
Click to save your changes<\/li>\n<\/ol>\n
Configure More Advanced Security Controls<\/h4>\n
To progress your security configurations beyond Microsoft\u2019s Security Defaults, consider implementing the following advanced controls:<\/p>\n
\n
Enable multi-factor authentication (MFA) using Conditional Access policies for Administrators<\/a> and users<\/a>. Note, however, that adding a single Azure Active Directory Premium (Plan 1 or Plan 2) for an Administrator won\u2019t licence it for every user (but will enable the features).<\/li>\n
Use Idle Session Sign-Outs<\/a> to automatically sign users out of their accounts if they remain inactive for a specified period of time. Doing so prevents unauthorised users from accessing accounts improperly.<\/li>\n
Block legacy authentication<\/a> through protocols like POP, SMTP, IMAP, and MAPI, which can\u2019t enforce second-factor authentication.<\/li>\n
Disable password expiration on either an organisation<\/a> or user<\/a> level. Though many people are surprised to hear it, the National Institute of Standards and Technology (NIST) actually recommends disabling password expiration, as it tends to make user passwords less secure.<\/li>\n
Implement a banned password list<\/a> that prevents users from selecting reused, common, or easy-to-guess passwords.<\/li>\n
Set up external sharing protections<\/a> at the tenant or application level in SharePoint to prevent the inadvertent sharing of sensitive or personally-identifying information.<\/li>\n
Customise Azure Active Directory account lockout thresholds<\/a> to suit your organisation\u2019s needs (by default, smart lockout features are active, and the default setting is 10 failed sign-ins).<\/li>\n
Design mobile application management (MAM) policies<\/a> that protect app data organisation-wide without compromising end-user productivity. For example, you may want to block users\u2019 ability to access company data from BYOD endpoints or to move it from one device to another.<\/li>\n
Limit email auto-forwarding<\/a> to prevent the malicious exfiltration of company data to external recipients. Exchange Online allows you to manage forwarding based on remote domains, use rule-based account controls (RBAC), and implement transport rules, as needed.<\/li>\n
Control how Administrators<\/a> and end-users<\/a> can grant consent to un-managed applications.<\/li>\n<\/ol>\n
That said, given the breadth of security features enabled with E5 licences – as well as the unique circumstances posed by different IT environments – working with a partner like Mangano IT to configure different settings is a smart choice.<\/p>\n
Not only can we help your organisation determine the appropriate Microsoft licensing for your needs, but our customised Security Assessment process<\/strong> can also identify your unique risks. Because we go above and beyond automated assessments, we\u2019re able to determine not just your particular vulnerabilities, but also plan and implement the specific configurations needed to mitigate them.<\/p>\n
For more information on Mangano IT\u2019s approach to Microsoft security, connect with our team of security specialists today<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"
How to Configure Your Microsoft E5 Licences for Security Security is something all organisations must take seriously. Microsoft makes doing so easy with the security-specific tools included in its core E5 licences; offered as add-on licences; or bundled into the Enterprise Mobility + Security E5\/A5\/G5, Microsoft 365 E3\/A3\/G3, Microsoft 365 E5\/A5\/G5, Microsoft 365 E5\/A5\/G5 Security,…<\/p>\n","protected":false},"author":14,"featured_media":1433,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[11,12],"tags":[],"yoast_head":"\nHow to Configure Your Microsoft E5 Licences for Security - Mangano IT<\/title>\n<meta name=\"description\" content=\"IT security is crucial for FSI firms. If your firm holds Microsoft E3 licences, you may be wondering whether upgrading to E5 is worth it.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/manganoit.com.au\/blog\/how-to-configure-your-microsoft-e5-licences-for-security\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"How to Configure Your Microsoft E5 Licences for Security - Mangano IT\" \/>\n<meta property=\"og:description\" content=\"IT security is crucial for FSI firms. If your firm holds Microsoft E3 licences, you may be wondering whether upgrading to E5 is worth it.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/manganoit.com.au\/blog\/how-to-configure-your-microsoft-e5-licences-for-security\/\" \/>\n<meta property=\"og:site_name\" content=\"Mangano IT\" \/>\n<meta property=\"article:published_time\" content=\"2022-04-11T07:41:51+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/manganoit.com.au\/wp-content\/uploads\/2022\/04\/blog_e5.png\" \/>\n\t<meta property=\"og:image:width\" content=\"792\" \/>\n\t<meta property=\"og:image:height\" content=\"300\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Rach Blackwood\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Rach Blackwood\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"5 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/manganoit.com.au\/blog\/how-to-configure-your-microsoft-e5-licences-for-security\/\",\"url\":\"https:\/\/manganoit.com.au\/blog\/how-to-configure-your-microsoft-e5-licences-for-security\/\",\"name\":\"How to Configure Your Microsoft E5 Licences for Security - Mangano IT\",\"isPartOf\":{\"@id\":\"https:\/\/manganoit.com.au\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/manganoit.com.au\/blog\/how-to-configure-your-microsoft-e5-licences-for-security\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/manganoit.com.au\/blog\/how-to-configure-your-microsoft-e5-licences-for-security\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/manganoit.com.au\/wp-content\/uploads\/2022\/04\/blog_e5.png\",\"datePublished\":\"2022-04-11T07:41:51+00:00\",\"dateModified\":\"2022-04-11T07:41:51+00:00\",\"author\":{\"@id\":\"https:\/\/manganoit.com.au\/#\/schema\/person\/1defab879e8be97fbe8d29ae5308a08a\"},\"description\":\"IT security is crucial for FSI firms. If your firm holds Microsoft E3 licences, you may be wondering whether upgrading to E5 is worth it.\",\"breadcrumb\":{\"@id\":\"https:\/\/manganoit.com.au\/blog\/how-to-configure-your-microsoft-e5-licences-for-security\/#breadcrumb\"},\"inLanguage\":\"en-AU\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/manganoit.com.au\/blog\/how-to-configure-your-microsoft-e5-licences-for-security\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-AU\",\"@id\":\"https:\/\/manganoit.com.au\/blog\/how-to-configure-your-microsoft-e5-licences-for-security\/#primaryimage\",\"url\":\"https:\/\/manganoit.com.au\/wp-content\/uploads\/2022\/04\/blog_e5.png\",\"contentUrl\":\"https:\/\/manganoit.com.au\/wp-content\/uploads\/2022\/04\/blog_e5.png\",\"width\":792,\"height\":300,\"caption\":\"Lady at laptop typing\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/manganoit.com.au\/blog\/how-to-configure-your-microsoft-e5-licences-for-security\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/manganoit.com.au\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"How to Configure Your Microsoft E5 Licences for Security\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/manganoit.com.au\/#website\",\"url\":\"https:\/\/manganoit.com.au\/\",\"name\":\"Mangano IT Solutions\",\"description\":\"\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/manganoit.com.au\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-AU\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/manganoit.com.au\/#\/schema\/person\/1defab879e8be97fbe8d29ae5308a08a\",\"name\":\"Rach Blackwood\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-AU\",\"@id\":\"https:\/\/manganoit.com.au\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/be9aefd1e4cf6668c919bdbbfd08872a?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/be9aefd1e4cf6668c919bdbbfd08872a?s=96&d=mm&r=g\",\"caption\":\"Rach Blackwood\"}}]}<\/script>\n","yoast_head_json":{"title":"How to Configure Your Microsoft E5 Licences for Security - Mangano IT","description":"IT security is crucial for FSI firms. If your firm holds Microsoft E3 licences, you may be wondering whether upgrading to E5 is worth it.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/manganoit.com.au\/blog\/how-to-configure-your-microsoft-e5-licences-for-security\/","og_locale":"en_US","og_type":"article","og_title":"How to Configure Your Microsoft E5 Licences for Security - Mangano IT","og_description":"IT security is crucial for FSI firms. If your firm holds Microsoft E3 licences, you may be wondering whether upgrading to E5 is worth it.","og_url":"https:\/\/manganoit.com.au\/blog\/how-to-configure-your-microsoft-e5-licences-for-security\/","og_site_name":"Mangano IT","article_published_time":"2022-04-11T07:41:51+00:00","og_image":[{"width":792,"height":300,"url":"https:\/\/manganoit.com.au\/wp-content\/uploads\/2022\/04\/blog_e5.png","type":"image\/png"}],"author":"Rach Blackwood","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Rach Blackwood","Est. reading time":"5 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/manganoit.com.au\/blog\/how-to-configure-your-microsoft-e5-licences-for-security\/","url":"https:\/\/manganoit.com.au\/blog\/how-to-configure-your-microsoft-e5-licences-for-security\/","name":"How to Configure Your Microsoft E5 Licences for Security - Mangano IT","isPartOf":{"@id":"https:\/\/manganoit.com.au\/#website"},"primaryImageOfPage":{"@id":"https:\/\/manganoit.com.au\/blog\/how-to-configure-your-microsoft-e5-licences-for-security\/#primaryimage"},"image":{"@id":"https:\/\/manganoit.com.au\/blog\/how-to-configure-your-microsoft-e5-licences-for-security\/#primaryimage"},"thumbnailUrl":"https:\/\/manganoit.com.au\/wp-content\/uploads\/2022\/04\/blog_e5.png","datePublished":"2022-04-11T07:41:51+00:00","dateModified":"2022-04-11T07:41:51+00:00","author":{"@id":"https:\/\/manganoit.com.au\/#\/schema\/person\/1defab879e8be97fbe8d29ae5308a08a"},"description":"IT security is crucial for FSI firms. If your firm holds Microsoft E3 licences, you may be wondering whether upgrading to E5 is worth it.","breadcrumb":{"@id":"https:\/\/manganoit.com.au\/blog\/how-to-configure-your-microsoft-e5-licences-for-security\/#breadcrumb"},"inLanguage":"en-AU","potentialAction":[{"@type":"ReadAction","target":["https:\/\/manganoit.com.au\/blog\/how-to-configure-your-microsoft-e5-licences-for-security\/"]}]},{"@type":"ImageObject","inLanguage":"en-AU","@id":"https:\/\/manganoit.com.au\/blog\/how-to-configure-your-microsoft-e5-licences-for-security\/#primaryimage","url":"https:\/\/manganoit.com.au\/wp-content\/uploads\/2022\/04\/blog_e5.png","contentUrl":"https:\/\/manganoit.com.au\/wp-content\/uploads\/2022\/04\/blog_e5.png","width":792,"height":300,"caption":"Lady at laptop typing"},{"@type":"BreadcrumbList","@id":"https:\/\/manganoit.com.au\/blog\/how-to-configure-your-microsoft-e5-licences-for-security\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/manganoit.com.au\/"},{"@type":"ListItem","position":2,"name":"How to Configure Your Microsoft E5 Licences for Security"}]},{"@type":"WebSite","@id":"https:\/\/manganoit.com.au\/#website","url":"https:\/\/manganoit.com.au\/","name":"Mangano IT Solutions","description":"","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/manganoit.com.au\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-AU"},{"@type":"Person","@id":"https:\/\/manganoit.com.au\/#\/schema\/person\/1defab879e8be97fbe8d29ae5308a08a","name":"Rach Blackwood","image":{"@type":"ImageObject","inLanguage":"en-AU","@id":"https:\/\/manganoit.com.au\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/be9aefd1e4cf6668c919bdbbfd08872a?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/be9aefd1e4cf6668c919bdbbfd08872a?s=96&d=mm&r=g","caption":"Rach Blackwood"}}]}},"_links":{"self":[{"href":"https:\/\/manganoit.com.au\/wp-json\/wp\/v2\/posts\/1399"}],"collection":[{"href":"https:\/\/manganoit.com.au\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/manganoit.com.au\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/manganoit.com.au\/wp-json\/wp\/v2\/users\/14"}],"replies":[{"embeddable":true,"href":"https:\/\/manganoit.com.au\/wp-json\/wp\/v2\/comments?post=1399"}],"version-history":[{"count":5,"href":"https:\/\/manganoit.com.au\/wp-json\/wp\/v2\/posts\/1399\/revisions"}],"predecessor-version":[{"id":1404,"href":"https:\/\/manganoit.com.au\/wp-json\/wp\/v2\/posts\/1399\/revisions\/1404"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/manganoit.com.au\/wp-json\/wp\/v2\/media\/1433"}],"wp:attachment":[{"href":"https:\/\/manganoit.com.au\/wp-json\/wp\/v2\/media?parent=1399"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/manganoit.com.au\/wp-json\/wp\/v2\/categories?post=1399"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/manganoit.com.au\/wp-json\/wp\/v2\/tags?post=1399"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}

Configuring Microsoft E5 Licences for Security<\/h2>\nOnce you\u2019ve made the move to E5 licences, there are a number of features you\u2019ll want to configure. Here\u2019s where to start:<\/p>\n

Enable Microsoft\u2019s Security Defaults<\/h4>\nWithin Azure Active Directory, all Microsoft 365 tenants are equipped with defaults that enable five of the most common security features and controls, including:<\/p>\n

Configuring Microsoft E5 Licences for Security<\/h2>\n
Once you\u2019ve made the move to E5 licences, there are a number of features you\u2019ll want to configure. Here\u2019s where to start:<\/p>\n