Skip to content

MAHARJAN-BINOD

"Innovate, Implement, Inspire."

Menu
    • Azure (AZ) – MAIN
      • Azure Communication Service
      • Azure-Site-Recovery
    • Blog
    • Group Policy Series
    • Microsoft365 – MAIN
      • M365-Intune
      • SharePoint-Online (SP-Online)
    • My Blogs
    • Office-Online-Server (OOS)
    • Windows-Server-Update-Service (WSUS)
    • MAHARJAN-BINOD
    • Active-Directory (AD) – MAIN
      • ACTIVE DIRECTORY CERTIFICATE SERVICES
      • ACTIVE DIRECTORY DOMAIN SERVICES
      • AD Security Hardening
      • AD-PowerShellScript
      • AZURE-ADCONNECT
      • DOMAIN NAME SERVER (DNS)
      • FILE-SERVER
      • GPOs
    • Exchange – MAIN
      • Exchange-Server-2019-CU13
      • Exchange-Server-2019-CU15
      • Exchange-Server-SE
      • MFA-FOR-OWA

binod.maharjan

MICROSOFT-365

DLP Scenario 2: The Admin’s Dilemma: How to Block Malicious Zip Files Without Breaking HR

Every systems administrator eventually faces “The Request.” A sneaky piece of malware bypasses your standard email gateway because it was tucked inside a password-protected .zip or .7z file. The standard …

MICROSOFT-365

DLP Scenario 1: Securing Financial Data and Sensitivity Labels

We’ve all heard the advice: train your employees, and your data will be safe. But at MAHARJAN, the security team noticed a harsh reality—awareness alone isn’t enough to stop accidental …

MICROSOFT-AZURE

Azure Series: Part 02 — Operations: Connectivity & Scaling

Azure Series: Part 02 Day 2 Operations: Connectivity & Scaling Mastering Public IPs, Azure DNS, Managed Disks, and VM Resizing Posted on May 28, 2026 By Binod Maharjan “Welcome back! …

MICROSOFT-AZURE

Building a Secure 2-Tier Architecture in Azure

Azure Series: Part 01 Building a Secure 2-Tier Architecture A Personal Guide to VNet Planning and VM Deployment Posted on May 28, 2026 By Binod Maharjan “I’ve learned that in …

MAHARJAN-BINOD

Deep Dive Part 5: Personalizing the Frontline—Customizing Endpoint DLP Toast Notifications

When Endpoint DLP blocks an application upload to WhatsApp or Viber, the user’s immediate reaction is usually confusion or a support ticket. The default Windows notification reads somewhat mechanically. To …

MAHARJAN-BINOD

Deep Dive Part 4: Troubleshooting & Forcing Endpoint DLP Policy Syncs

When you push a new Endpoint DLP policy to block apps like WhatsApp or Viber, waiting for the default cloud-to-device sync window can be incredibly frustrating. If you are trying …

MAHARJAN-BINOD

Deep Dive Part 3: Weaponizing Endpoint DLP for Cloud and Social Apps

Targeting data streams within Microsoft 365 environments is relatively straightforward. The real challenge emerges when users manipulate files outside your network perimeter—such as dragging a sensitive internal PDF onto the …

MICROSOFT-365

Deep Dive Part 2: Locking Down Microsoft Teams External Chats

While email transport is a mature boundary, Microsoft Teams represents a massive blind spot for many organizations. When external users join your tenant as guests, or when your staff engages …

MICROSOFT-365

Deep Dive Part 1: Guarding Exchange Online (Email)

Email remains the number one vector for corporate data exfiltration. Whether intentional or accidental, a simple typo in the “To” field can push highly sensitive corporate assets into the wrong …

MICROSOFT-365

How to Stop Data Leaks Across Email, Teams, and Social Apps Using M365 E5 DLP

Picture this: An employee needs to finish a proposal over the weekend. To make things “easier,” they quickly drop a confidential internal spreadsheet into a personal WhatsApp Web window, or …

Posts navigation

Older posts
Newer posts
Copyright © 2026 MAHARJAN-BINOD. All rights reserved.