Automating Microsoft Documentation
Last updated
Last updated
M365 DOCUMENTATION
Project Links
Screenshots
Project Description
User Story
Technologies
Installation
Usage
Credits and Reference
Tests
Contributing
Questions
License
https://github.com/msp4msps/m365_documentation
The following project was created to house scripts for documenting M365 tenants for customers that you manage. Today the documentation consist of CSV files and flexible assets in IT Glue. These scripts leverage the Secure Application model to create a secure connection to all customers under management in Partner Center.
Microsoft Users
DisplayName
FirstName
UPN
Role
JobTitle
LicensesAssigned
LastSignIn
createdDateTime
accountEnabled
AccountType
LastPasswordChange
PasswordExpiration
MFARegistered
ExchangeLastActive
MailboxStorageUsedGB
MailboxItemCount
HasArchive
AuthMethod:Phone
AuthMethod:Email
OneDriveLastActive
OneDriveStorageUsed
OneDriveFileCount
OneDriveViewed/EditedFileCount
OneDriveSyncedFileCount
OneDriveSharedInternalFileCount
OneDriveSharedExternalFileCount
SharePointLastActive
SharePointViewed/EditedFileCount
SharePointSyncedFileCount
SharePointSharedInternalFileCount
SharePointSharedExternalFileCount
SharePointVisitedPageCount
TeamsLastActive
TeamsChatCount
TeamsCallCount
TeamsMeetingCount
MS Groups
GroupName
Group Type
Membership Type
Creation Date
Source
Security Enabled
Visibility
HideFromGal
Teams Connected
Owners
Members
MS Devices
DeviceName
Enabled
OS
Version
JoinType
UserName
ManagementType
Compliance
DeviceOwnership
RegisteredDate
LastActivityDate
AutopilotEnrolled
isEncrypted
SerialNumber
SharePoint Sites
Site Name
Site URL
Last Activity Date
Site File Count
Site Storage Used (GB)
Storage Allocated (GB)
Microsoft Group Connected
Exchange Settings
Legacy Auth Settings
Mail Transport Rules
OWA Policies
Accepted Domains
Mobile Device Policies
Retention Policies
Retention Policy Tags
Journal Rules
Antiphish Policies
Outbound Spam Policies
AntiSpam Policies
Malware Policies
Safe Attachment Policies
Safe Link Policies
DKIM settings
Azure AD Settings
Conditional Acces Policies
Legacy Auth Sign Ins
Named Locations
Self-Service Password Reset Settings
Can Users Register Applications
Can Users Consent for Applications
Intune Settings
Windows Compliance Policies
macOS Compliance Policies
iOS Compliance Policies
Android Compliance Policies
Windows Information Protection Policies
iOS App Protection Policies
Android App Protection Policies
Configuration Profiles
Applications
App Configuration Profiles
As an MSP, I would like granular documentation on users, groups, and organization settings that can help me be more proactive in managing customer environments.
Leverage the Create_Auth.ps1 file if you have not already created an app registration to garner tokens for authenticating to customer environments.
Leverage the Remove_AnonymidedReports.ps1 file to ensure all customers have reports that are not anonymized. You could do this at a per customer basis as well.
Fork the repo to modify the scripts or leverage the scripts to start documenting customer environments.
I would start by running single tenant scripts to see if that creates the information you are looking for and modifying accordingly. This is especially important in IT Glue where you may want to modify the format of the flexible asset.
Kelvin Tegelaar for his work on the Secure Application Model that makes this possible. Gavin Stone for his script on garnering info on Conditional Access policies which I reused here. I will be looking to add this information into CIPP at a later date.
Run against a single customer tenant
Open a pull request with any issues or feature enhancements.
