- Project Links
- Screenshots
- Project Description
- User Story
- Technologies
- Installation
- Usage
- Credits and Reference
- Tests
- Contributing
- Questions
- License
https://github.com/msp4msps/m365_documentation
https://tminus365.com
The following project was created to house scripts for documenting M365 tenants for customers that you manage. Today the documentation consist of CSV files and flexible assets in IT Glue. These scripts leverage the Secure Application model to create a secure connection to all customers under management in Partner Center.
Microsoft Users
- DisplayName
- FirstName
- UPN
- Role
- JobTitle
- LicensesAssigned
- LastSignIn
- createdDateTime
- accountEnabled
- AccountType
- LastPasswordChange
- PasswordExpiration
- MFARegistered
- ExchangeLastActive
- MailboxStorageUsedGB
- MailboxItemCount
- HasArchive
- AuthMethod:Phone
- AuthMethod:Email
- OneDriveLastActive
- OneDriveStorageUsed
- OneDriveFileCount
- OneDriveViewed/EditedFileCount
- OneDriveSyncedFileCount
- OneDriveSharedInternalFileCount
- OneDriveSharedExternalFileCount
- SharePointLastActive
- SharePointViewed/EditedFileCount
- SharePointSyncedFileCount
- SharePointSharedInternalFileCount
- SharePointSharedExternalFileCount
- SharePointVisitedPageCount
- TeamsLastActive
- TeamsChatCount
- TeamsCallCount
- TeamsMeetingCount
MS Groups
- GroupName
- Group Type
- Membership Type
- Creation Date
- Source
- Security Enabled
- Visibility
- HideFromGal
- Teams Connected
- Owners
- Members
MS Devices
- DeviceName
- Enabled
- OS
- Version
- JoinType
- UserName
- ManagementType
- Compliance
- DeviceOwnership
- RegisteredDate
- LastActivityDate
- AutopilotEnrolled
- isEncrypted
- SerialNumber
SharePoint Sites
- Site Name
- Site URL
- Last Activity Date
- Site File Count
- Site Storage Used (GB)
- Storage Allocated (GB)
- Microsoft Group Connected
Exchange Settings
- Legacy Auth Settings
- Mail Transport Rules
- OWA Policies
- Accepted Domains
- Mobile Device Policies
- Retention Policies
- Retention Policy Tags
- Journal Rules
- Antiphish Policies
- Outbound Spam Policies
- AntiSpam Policies
- Malware Policies
- Safe Attachment Policies
- Safe Link Policies
- DKIM settings
Azure AD Settings
- Conditional Acces Policies
- Legacy Auth Sign Ins
- Named Locations
- Self-Service Password Reset Settings
- Can Users Register Applications
- Can Users Consent for Applications
Intune Settings
- Windows Compliance Policies
- macOS Compliance Policies
- iOS Compliance Policies
- Android Compliance Policies
- Windows Information Protection Policies
- iOS App Protection Policies
- Android App Protection Policies
- Configuration Profiles
- Applications
- App Configuration Profiles
As an MSP, I would like granular documentation on users, groups, and organization settings that can help me be more proactive in managing customer environments.
Powershell
- Leverage the Create_Auth.ps1 file if you have not already created an app registration to garner tokens for authenticating to customer environments.
- Leverage the Remove_AnonymidedReports.ps1 file to ensure all customers have reports that are not anonymized. You could do this at a per customer basis as well.
- Fork the repo to modify the scripts or leverage the scripts to start documenting customer environments.
I would start by running single tenant scripts to see if that creates the information you are looking for and modifying accordingly. This is especially important in IT Glue where you may want to modify the format of the flexible asset.
Kelvin Tegelaar for his work on the Secure Application Model that makes this possible. Gavin Stone for his script on garnering info on Conditional Access policies which I reused here. I will be looking to add this information into CIPP at a later date.
Run against a single customer tenant
Open a pull request with any issues or feature enhancements.
Contact the author with any questions!
Github link: msp4msps
Email: msp4msps@tminus365.com