Automating Microsoft Documentation

M365 DOCUMENTATION

Project Links
Screenshots
Project Description
User Story
Technologies
Installation
Usage
Credits and Reference
Tests
Contributing
Questions
License

Project Links

https://github.com/msp4msps/m365_documentation

Screenshots

Project Description

The following project was created to house scripts for documenting M365 tenants for customers that you manage. Today the documentation consist of CSV files and flexible assets in IT Glue. These scripts leverage the Secure Application model to create a secure connection to all customers under management in Partner Center.

Information Collected

Microsoft Users

DisplayName
FirstName
UPN
Role
JobTitle
LicensesAssigned
LastSignIn
createdDateTime
accountEnabled
AccountType
LastPasswordChange
PasswordExpiration
MFARegistered
ExchangeLastActive
MailboxStorageUsedGB
MailboxItemCount
HasArchive
AuthMethod:Phone
AuthMethod:Email
OneDriveLastActive
OneDriveStorageUsed
OneDriveFileCount
OneDriveViewed/EditedFileCount
OneDriveSyncedFileCount
OneDriveSharedInternalFileCount
OneDriveSharedExternalFileCount
SharePointLastActive
SharePointViewed/EditedFileCount
SharePointSyncedFileCount
SharePointSharedInternalFileCount
SharePointSharedExternalFileCount
SharePointVisitedPageCount
TeamsLastActive
TeamsChatCount
TeamsCallCount
TeamsMeetingCount

MS Groups

GroupName
Email
Group Type
Membership Type
Creation Date
Source
Security Enabled
Visibility
HideFromGal
Teams Connected
Owners
Members

MS Devices

DeviceName
Enabled
OS
Version
JoinType
UserName
ManagementType
Compliance
DeviceOwnership
RegisteredDate
LastActivityDate
AutopilotEnrolled
isEncrypted
SerialNumber

SharePoint Sites

Site Name
Site URL
Last Activity Date
Site File Count
Site Storage Used (GB)
Storage Allocated (GB)
Microsoft Group Connected

Exchange Settings

Legacy Auth Settings
Mail Transport Rules
OWA Policies
Accepted Domains
Mobile Device Policies
Retention Policies
Retention Policy Tags
Journal Rules
Antiphish Policies
Outbound Spam Policies
AntiSpam Policies
Malware Policies
Safe Attachment Policies
Safe Link Policies
DKIM settings

Azure AD Settings

Conditional Acces Policies
Legacy Auth Sign Ins
Named Locations
Self-Service Password Reset Settings
Can Users Register Applications
Can Users Consent for Applications

Intune Settings

Windows Compliance Policies
macOS Compliance Policies
iOS Compliance Policies
Android Compliance Policies
Windows Information Protection Policies
iOS App Protection Policies
Android App Protection Policies
Configuration Profiles
Applications
App Configuration Profiles

User Story

As an MSP, I would like granular documentation on users, groups, and organization settings that can help me be more proactive in managing customer environments.

Installation

Leverage the Create_Auth.ps1 file if you have not already created an app registration to garner tokens for authenticating to customer environments.
Leverage the Remove_AnonymidedReports.ps1 file to ensure all customers have reports that are not anonymized. You could do this at a per customer basis as well.
Fork the repo to modify the scripts or leverage the scripts to start documenting customer environments.

Usage

I would start by running single tenant scripts to see if that creates the information you are looking for and modifying accordingly. This is especially important in IT Glue where you may want to modify the format of the flexible asset.

Credits and Reference

Kelvin Tegelaar for his work on the Secure Application Model that makes this possible. Gavin Stone for his script on garnering info on Conditional Access policies which I reused here. I will be looking to add this information into CIPP at a later date.