Transcript
Upon initial login to Cloud Commander, we'll be brought to the Users page. This is where, at a high level, we can quickly look at deleting, revoking session, resetting multi-factor authentications, passwords, or editing our users. And we'll see similar options from the little three vertical dot menu here. And while these simple actions are quick and easy to take, clicking in to a user will give us more control. Underneath the summary, we'll see those options repeated with additional details on that particular user. We'll have the ability to quickly look at adding roles or groups to a user as needed. Inside the roles section, we'll be able to add assignments based off of that user's scope to vary organizations as we would need. The end users will be limited to their own organization, and technicians or admins inside Cloud Commander will have the ability to customize scope across the appropriate organizations within the tool. We can also add Microsoft Entro roles in a very similar fashion to the way we just looked at adding our platform roles. We'll also get license control for our users with the ability to configure services or unassign existing licensing and look at assigning licensing for our users. As indirect CSPs, we'll have the ability to manage our licensing. As direct CSPs, we'll have the ability to procure and manage licensing for our end users. Please note, indirect CSPs will still need to go through their reseller to procure licensing. And here we'll see we can configure and confirm the addition of a license to that particular user. And again, we can quickly unassign. We'll see authentication methods for the user and whether or not there are any system or user authentication preferences. Inside the command log, we'll see everything that's been done to that particular user, more often than not focusing on the automate portion of the user dashboard. Where here we'll be able to choose a command block, such as set max receive size for their mailbox, click add command job, review whether or not we have the capabilities to perform that function for that user, enter in our appropriate inputs, and then to confirm the running of that particular job. We will get a nice little notification and we can come to the command log to quickly see that particular item running. Underneath that user, again, the command log will show actions taken. And here we see it in progress again. For user control, we'll also have the groups and underneath settings, the user permissions sections. Groups and user permissions will allow us to add permissions to our users either through a group as necessary by clicking into the group, coming to members, and looking at adding assignments where we're able to add groups or users from that organization. We'll be able to assign roles to our group here in the same fashion we saw to end users. And underneath the permissions section, we'll be able to select individual permission sets that we would like to assign to a specific organization. So here I'll choose myself. Any users or groups at that particular organization. We'll just pick the test group. Choose a scope where we're able to use those permissions, confirm, and move forward. Giving us nice global and individual control over our users. Now we mentioned command logs. The command logs report that we briefly saw at the global level or underneath the user will show us everything that's been done for those particular users. When we kick into a particular command log, we'll get details as to what happened and any output items that we may need. We'll also see Microsoft secure score and available license reporting. Two Power BI based reports that show us secure score by the selected organizations as well as available licensing for the organization selected. We'll also have the Azure management log. Of course, the command log for Azure. Underneath the licenses section, if we are a direct CSP, we'll be able to see and interact with our licenses as well as add new subscriptions. Coming in at a brief overview, we will see our licensing particulars and then clicking into one we'll also be able to look at subscription ID as well. Underneath security, we will see authentication methods for every organization associated with our partner center except for our own. So all of our end users here and if there are any system authentication or user preferences that we may need to look at viewing, we can quickly and easily filter as well as at a glance see them. Moving to the top of the left hand pane here, we're going to come to dashboard and this is where we'll introduce the Azure section of Cloud Commander. Here we'll be able to add a glance, see our Azure resources and their health status, see our VMs by power state and any alerts by severity that we may need to see. The audit log will show us actions that have been taken and the alerts will of course show us the alerts. We'll get a little bit more granular into the alerts dashboard and if I had any populated here, I'd be able to filter them by things like alert time, alert name, severity, alert state or condition as well as affected resource types. Underneath the assets section, we'll continue with Azure very quickly to get an overview of our resources quickly and easily filterable by resource type, subscription, resource group or location as well as customer. Selecting an available resource will show you additional information as necessary on that particular resource. For our VMs, we see here resource properties, storage and infrastructure items and clicking into that resource will show us dependencies, networking, give us the ability to restart, start, stop or deallocate or reallocate that particular resource with some basic monitoring showing a CPU utilization, credits and memory. Underneath the VM section, we get a little bit more granular where we're seeing just our VMs not just our resources as a whole and here we'll be able to sort by things like is the resource available, unavailable, unknown or degraded. Coming in, we can select the checkbox to quickly take action upon those particular VMs. Again, showing our resource properties, storage and infrastructure at a glance. Clicking into the resource, we'll see the same screen that we saw earlier where we see our dependencies, our device details, our network particulars as well as that basic monitoring and we can quickly and easily sort. All of these reports that we're seeing including the user ones are easily exportable. We can take, filter down as we would need and export to Excel or PDF at command. Moving to devices and applications, we're going to enter the Intune world inside Cloud Commander where we're going to quickly and easily see devices that are and are not compliant. Selecting a device will bring up some additional details like last sync time and refresh time. Clicking into a device, we'll get the ability to see some details recent actions, hardware details as necessary for that particular device, applications assigned policies and command logs. Selecting a device will give us the ability to refresh, sync or reboot and coming to our hamburger menu here, we'll be able to reboot remote lock, rename, change primary user and remote wipe the device with the ability to sync to Intune or refresh the device inside the dashboard. In conjunction with that for Intune, we have configuration profiles where we can affect change on our devices or users configuration with everything from our device description restrictions like app store templates, power settings. Coming through, we'll see endpoint protection items. We'll see list configuration policies share or secure assessment templates, shared multi user device templates, Windows health monitoring items and the like. Underneath compliance profiles or policies, we'll see the Windows 11 compliancy template. In both of these sections, selecting the appropriate policy or profile we would like to apply will give us the apply button where we'll come in, review the organizations that we are going to apply this to and select as necessary, review whether or not we have the capabilities to apply this at that particular organization, set our variables and values as needed, choose to apply to all users or all devices as needed, click next and get into our summary where we're quickly and easily able to review what we're going to set and click confirm to apply that particular policy or profile. Giving us a easy to use but very powerful tool inside Cloud Commander. The last section we'll take a look at here is going to be regarding onboarding. The Microsoft Cloud access section underneath settings will give us the ability to not only authenticate our partner center upon setup, but also come in and look at enabling our organization. Putting a organization into the enabled status will bring it to the needs approval status where I can come and copy that approval link and on behalf of my end user using their admin credentials, I can approve the GDAP relationship between that client, my partner center and then of course I've already authenticated the GDAP relationship between my partner center and Cloud Commander. Moving that client into the awaiting Microsoft status, once the client gets through the awaiting Microsoft status we will see them enter into the approved or issues found status. The approved status means we have full functionality of Cloud Commander within the tool and the issues found status gives us the review limitations link, allowing us to quickly see what we may not have access to and if necessary provide information to remediate that particular issue. Typically the issues found is going to be for our indirect CSPs and more often than not it's related to our Azure connection. Lastly inside onboarding we also have the ability to enter an account name, subscription ID, resource group name and hybrid worker group name so that we can look at synchronizing with our hybrid users giving us the ability to manage them in the same fashion that we would our cloud users. That is Cloud Commander in a nutshell. Again a powerful but easy to use tool that allows us in a multi-tenant environment to manage M365, Azure and Intune and Antra for our cloud clients.
