Show Transcript
Hide Transcript
Thank you for choosing to learn more about Quest's On Demand solutions-- specifically, our Skype for Business Policy Management module. All of our On Demand solutions are SaaS offerings, meaning you do not need to implement any new infrastructure in order to use and enjoy these products. I'm Shawny Reiner, a Strategic Systems Consultant with Quest, and I'll be taking you through a brief demo today that shows you how easy it is to manage Skype policies using our product.
This demo is going to focus on an important compliance requirement to ensure sensitive information isn't shared with unknown entities. In this scenario, our employee Michael works for a health care provider. HIPAA is extremely strict regarding patient privacy, and one of the protocols Michael must adhere to is ensuring patient information is shared with appropriate individuals only.
One area of risk is Skype conferencing. As IT admins, we need to ensure only known parties can join. While we are using the health care industry as an example here, many industries have these same security risks and compliance needs. And without controls, there's no guarantee that unknown parties might obtain sensitive information using many methods, including anonymously joining Skype conferences.
So first I'd like to show you our On Demand environment. What you're looking at is the Home page. And when you subscribe and log in, you'll be able to use the modules that you've subscribed to.
And as you can see, we have many, and we have many coming in the future. But we're going to use the Skype for Business Online module today. So I'm going to go into that one, and it's going to connect through my tenant.
And as you can see, it says, Acting on my Azure AD TitanCorp tenant. Now, the methodology behind our policy management modules is a collection of policies grouped inside hierarchical rules, and then applied to groups of users. And these groups and users reside in your Azure AD tenant, and they can be Cloud-only or hybrid objects.
And let me show you what a rule looks like. So you can see you have many options of creating this rule. Now, our module provides you several benefits over native capabilities.
So one of the main benefits is that you can apply policies to groups of users, rather than just individuals. Natively, you can only apply to individual users. This can be very tedious and administratively difficult when you need to apply to many, many users. Even using PowerShell script, you still have to create that CSV or a list of users that the PowerShell runs again so it knows who to apply those policies to.
The next benefit is that we dynamically update these policies for you. So again, in the native world, if you apply a policy and then say, for example, a bunch of new people are hired or you need to make a change to that policy in the settings, you then have to rerun your PowerShell, update that CSV. Somehow you have to keep this all documented. And this can be very ineffective, very time-consuming.
With our module, all you have to do is manage your group memberships and the changes take effect dynamically for you. And then finally, we log the activities of these changes, giving you an important proof that you are, indeed, compliant. So these benefits combine to offer you better management, tighter controls, and that proof that you need. And all of this increases the effectiveness of your security controls and compliance.
So now what I want to do is create this rule for you to show you what this looks like. So first, obviously, you want to give it a name. In this case, we're going to restrict anonymous access to conferencing. So I'm just going to name it that. You can name it whatever makes sense in your organization.
Next, we need to give it a group-- or you can still apply to users if that's what you need to do, but you can also apply to groups. And these are going to search through the tenant that you have created. All my groups are under Skype-- or that have the name Skype in them. So I'm going to pick a group, here. And I think I'll use Skype Demo Group 1 and add that.
Finally, as you can see, in a policy or a rule, you can apply a policy to all the various areas that impact Skype. And those combine, or make a collection of policies and settings, within this one rule. So this is a conferencing policy.
And as you can see, I have a-- no anonymous inbound or outbound policy. And so I'm simply going to create that, add that one in here. I could, if I wanted to, add additional policies under these other categories. Next I need to enable it, and simply Save. What happens is a little pop-up comes up that says it's in the process of provisioning that and that it'll be ready in a few seconds.
So now let me show you what this looks like in the client. So first I'm going to show you what it looks like when there's no policy applied, or it's unrestricted. So this is my everyday Skype for Business, and I am allowed to set this up however I want.
So when you set up a conference call and it joins, you have options over here in the meeting. And as you can see, I have an option of allowing anyone into my meeting. Now, I'm going to log in as my user that is part of that group. Skype user 2, in this case, is who I'm going to use. And he's a member of the group that I applied the policy to. So first let me sign out.
And then I'll start a meeting and show you the options. So now, if you take a look at here, the only options this person has are people that he would know who he's inviting-- anyone from his organization, the meeting organizer, or the people that I invite. So that is how that policy works. So as you can see, it's very easy to manage policy, and it's very effective I hope you enjoyed today's demo.
