I would never use a VPN which just an aggregate for all your traffic and a target by governments and hackers. Most websites nowadays are already encrypted via HTTS so it's just redundant encryption by a VPN. But hey, to each their own.

@@BillAnt I think you have misunderstood the product. It's not there for encryption of traffic. It's there for filtering and control of it.

OK, thanks.

Without a VPN, China blocks this site so I think I will stick with what I know works:-)

It's an interesting point you make. This kind of service gives MS and similar players much insight into how companies govern their employees.

​@@johnwade7430no thank you

If you don't trust your service provider, change provider or run your own service. Easy.

AOV has always been pretty rocky for us... looking forward to trying this out!

😂🤣 Hehe no one has ever said that before. I’m delighted to have you on board 👍🙂

You'd think eh :-)

wishfull thinking. Do you have an eternity?

Absolute power corrupts absolutely, lord Acton

Microsoft have never stolen anything before.. Not even Javascript, I mean Microsoft Jscript was something completely different, and that it got the same bugs as the original javascript must just be a coincidence.

I was going to say the same thing. "Where have I seeen that before". Microsoft is a copycat

twingate has been great so far

At the moment I have not personally played a lot with this product. And as you can see it’s currently in public preview so pricing and availability have not yet been confirmed. I apologise that I can’t give you a more definite answer.

We have had GSA in production use already since may-june '23 and to answer your question; yes, GSA will entirely replace the need for a client vpn.

We are a small (10k user) municipality with E5 licenses on our main users. We are seeing that Microsoft are finding more and more "special" and "premium" licenses, and I can guarantee that our politicians never will agree to these. So, will these features be available to our existing clients? Microsoft, you do not have a great track record for these exciting changes to be available for existing users/licences. In my opinion, our (really expensive) E5 licences are buried down to E3 level over the years. Soon to come close to E1.

I agree

Interesting question. In relation to NTFS, whatever permissions you set locally, will waterfall downwards. Group Writeback only works if you have hybrid enter ID, and in this case is unnecessary. This is yet another layer that Microsoft are adding into it in tune technologies that will make the need for active directory, unnecessary

seamlessly

@andymalonemvp What did the speaker, Jeremy use as a Webcam/DSLR/phone, he looks like he was in real.

Still in preview so some features may not be 100%

As I believe the web app, proxy service will remain as a standalone feature, but has been for Intune

Lol I thought the same thing, so many wierd servers that Windows connects to and do something.. thats why I moved over to Linux now.

Exactly my thoughts. 👍

Haha NOT! I wouldn't trust Microsoft with anything

Yep. They got over that problem and for the past few years have been making some of the most secure and well integrated prods.

@@dimitriyates2701 and that is why hijacking 365 accounts is popular.

Actually, they’re the same tools

Don’t be silly

Intune provides an equivalent service

No details as of yet I’m expecting not I suspect it may be an extra cost, let’s wait and see though.

It’s not a firewall. But has firewall elements

No news on licensing yet I’m afraid.

@@AndyMaloneMVP probably because there won't be. Why would they drop pricing that enterprises currently pay without a second thought in their Enterprise Agreement renewals, PLUS continue to add more opex 🤣 It's just really unfortunate that what we once got for licensing is now less. Imho, things like paying for System Center should get you Azure credits as well, especially if it's like getting access to this sort of technology. It's an extension of the product set.

I’m sure these will be added in to conditional access policies

Yes it will

Not yet I'm afraid.

This is the first thing I always look for when I see these new products because for us price is almost always the primary driver. If it's going to cost us more than we can afford, I won't bother wasting my time and energy digging into it more. Unfortunate to not have this information available. If they don't have a per user cost but know it'll be included in existing SKU's (eg E3/5, Business Premium, etc) then at least state that.

Price: Money AND your Privat Datas free to MS including all your picture datas they will say its in the name of fighting crime/criminals but i tell you its not they are not the police.

This. Need to have pricing when demonstrating products. Can’t assess value of technology unless the costs are known. Demonstrating without pricing might generate awareness but really is a waste of time when we try our best to be informed buyers. We have similar SSE solutions from Palo Alto. We have E5 and MDE and MDfCA. I’m renewing my Palo Alto solutions.

Yes coming shortly👍

It will be yes

It’s way better than on prem

Remember this is a corporate solution which can be managed by your IT. This is not a personal feature.

@@AndyMaloneMVP I appreciate this, but having everything in the cloud although makes life easier, it also locks you in pretty badly, and often charges go up, I personally would limit cloud services where possible. I was thinking more about sales reps, consultants etc who travel a bit.

Wait till you see Internet access feature coming soon

Ping Jeremy on that one :-)

There is still a domain on premises with DCs for the domain joined servers like we showed with the fileshare and Hyper-V server. The user's device however doesn't need to be domain joined or hybrid joined for this to work. It's issued the tickets needed after the conditional access challenge by the Private Access cloud service with gateway connector in place.

@@DeployJeremy is this already working, because I'm testing from a EntraID Joined system to connect to SMB file share, but seems to be not receiving Kerberos ticket at this moment, access denied... Is it also working in combination with Windows Hello for Business? At this moment I receive a popup with Windows Hello PIN, after that access denied to fileshare... I see in logging it's trying to connect with the fileshare.... Or do I have to wait for future release?

@@martinzonderland1543 It is already possible, but needs to be documented for implementation as it moves toward general availability. Documentation is in the works now, but no ETA yet for publishing.

No it’s not intended for that

At present I'm not up to date with the exact technical details. Please checkout the links in the video as well as learn.microsoft.com

No idea sorry

Trouble, Microsoft do cave into China’s demands. The company’s Web browser is a case in point. So I doubt myself whether this would be at all useful.

🤪

You mean that you use some commercial VPN service that is well-known and blocked by streaming services? You can run your own VPN service at home so that you have access to all your local things on your network and then nobody in the world can tell that you're not home. They won't be able to block you, because from a technical point of view, you are home.

Don’t think of yourself personally, watch the video fully and you’ll understand

@@AndyMaloneMVP I did, no thanks

No details yet

App Proxy is now integrated in to CA

@@AndyMaloneMVP You still need the agent on-premise i guess?

You trust their 2 factor authentication dont you?

@@b3at2 do they have one 😂🤣

So youve seen the scriptkiddy youtube video? Old news, it has already been fixed years ago, lazy admins just havent enabled the boot up PIN-codes..

@@laxativee scriptkiddy?never heard about that one