Power BI connector that provides insight into the current state of how Microsoft 365 is configured and whether best practices have been implemented
Перейти к файлу
Isaiah Williams 719d89a4ab
Template update (#125)
2020-09-11 08:56:21 -05:00
.github Audit and template update (#114) 2020-08-27 12:11:03 -05:00
controls Updating the info link for the SecureBootEnabled control (#54) 2020-07-17 09:31:25 -05:00
src/SecMgmtInsights Template update (#125) 2020-09-11 08:56:21 -05:00
templates Template update (#125) 2020-09-11 08:56:21 -05:00
.gitignore Adding the Azure Functions app (#20) 2020-06-18 15:12:14 -05:00
BUG_BASH.md Audit function update (#117) 2020-09-01 13:40:38 -05:00
CODE_OF_CONDUCT.md Initial CODE_OF_CONDUCT.md commit 2020-06-10 06:49:35 -07:00
CONTRIBUTING.md Adding guidance for contributing (#30) 2020-06-23 08:14:11 -05:00
LICENSE Initial LICENSE commit 2020-06-10 06:49:36 -07:00
README.md Function update (#105) 2020-08-23 13:30:26 -05:00
SECURITY.md Initial SECURITY.md commit 2020-06-10 06:49:38 -07:00
secmgmt-insights-connector.sln Function update (#105) 2020-08-23 13:30:26 -05:00

README.md

Security and Management Insights Connector

Microsoft 365 provides several advanced security and management features that empower you to improve your, or your customers, security posture. Knowing what features are configured and whether they adhere to the recommended configurations is challenging. Using this connector, you will be able gain insights what components have been adopted and how they are configured.

Bug Bash

As enhancements are made to the connector and new features added it can be difficult to test for every scenario. While we strive to ensure the solution is free of any complications and issues, there is a chance something might make it through testing. This means there is a possbility that the connector might not behave as expected. With this in mind from time to time we will have a virtual bug bash where everyone is encouraged to create bugs for any unexpected behavior. Often these events will happen when significant changes are made to the connector. See our bug bash guide for more details.

Getting Started

Prior to utilizing this connector to gain insights from your, or your customers, environment there are some required actions that need to be taken. The remaining sections of this article will guide you through fulfilling the prerequisites, installing the connector, and how to leverage on the templates. If you have any questions about this process please open an issue for help.

Prerequisites

If you do not already have Power BI Desktop installed, then download and install it. Once installed you will want to perform the perform the following

  1. Start Power BI Desktop on the device where you plan to install the connector
  2. Click file -> options and settings -> options
  3. Click security under the global section
  4. Click (Not Recommended) Allow any extension to load without validation or warning

This step is required because by default the connector that will be installed is not digitally signed. It is not signed because during the installation process an application identifier value will be injected that is unique for your environment. See handling Power Query Connector signing for details on the signing the connector if you are interested.

Installation

To simplify the process of creating and configuring the dependent resources for the connect, the Install-SecMgmtInsightsConnector cmdlet has been added to the Security and Management Open PowerShell module. You can leverage the following PowerShell to install the connector on the device invoking the command

Install-Module SecMgmt

# When prompt for credentials you will need to specify an account that has the ability to create an Azure Active Directory application.
Connect-SecMgmtAccount

# Use the following if you are planning to gain insights for a single tenant.
Install-SecMgmtInsightsConnector -ApplicationDisplayName 'Security and Management Insights'

# Use the following line if you plan to use the connector to gain insights for customers you have through the Cloud Solution Provider program.
Install-SecMgmtInsightsConnector -ApplicationDisplayName 'Security and Management Insights' -ConfigurePreconsent:$true

When you invoke the above a new Azure Active Directory application will be created, for use with the connector. Then the latest version of the connector is downloaded, configured, and installed on the local device.

Template

Once the prerequisites have been fulfilled and the connector has be installed, you can start building reports that incorporate functionality from the connector. You can start from scratch or leverage one of the following templates

Name Description
Customer template Coming soon - Template that is intended to be used if you are looking to get insights for your own tenant
Partner template Template that is intended to be used by partners to gain insights for their customers

Contributing

This project welcomes contributions and suggestions. Most contributions require you to agree to a Contributor License Agreement (CLA) declaring that you have the right to, and actually do, grant us the rights to use your contribution. For details, visit https://cla.opensource.microsoft.com.

When you submit a pull request, a CLA bot will automatically determine whether you need to provide a CLA and decorate the PR appropriately (e.g., status check, comment). Simply follow the instructions provided by the bot. You will only need to do this once across all repos using our CLA.

This project has adopted the Microsoft Open Source Code of Conduct. For more information see the Code of Conduct FAQ or contact opencode@microsoft.com with any additional questions or comments.