Forum Discussion

Deleted's avatar
Deleted
Sep 23, 2016

Documenting Office365 Configuration set for Tenant

Hello All,

 

I am in the process of documenting our entire O365 tenant so that we can maintain a baseline of our O365 infrastructure. I would like to collect some of the important points for Services configured under E3 plan.

 

Exchange Online

Sharepoint Online

SFB

Delve

Yammer

 

I know get-organizationconfig will provide me the entire configuration about ORG. i would like to know like this which all are key components to document.

  • Dean_Gross's avatar
    Dean_Gross
    Silver Contributor
    The reports at https://support.office.com/en-us/article/Reports-in-the-Office-365-Security-Compliance-Center-7acd33ce-1ec8-49fb-b625-43bac7b58c5a and at https://support.office.com/en-us/article/View-and-download-reports-about-service-usage-in-Office-365-30E5558F-D3C0-4A3B-A0D5-58FC7750C0AD?ui=en-US&rs=en-US&ad=US should help you get started.

    Screen shots are also very helpful, but have limited lifetime because the screens are changed by MS.

    Given that MS changes the APIs without notice you will never be able to fully define a comprehensive detailed baseline. You need to determine which settings truly matter to your org and then you can use the reports above to audit any changes.
  • I think first thing you need to have clear is how deeply you want to document your Office 365 deployment and also the amount of time/work you want to dedicate to this task....I'm saying this because there are many third party tools that could help you on this task. Also bear in mind Office 365 reports.
    • Jason Dunbar's avatar
      Jason Dunbar
      Brass Contributor

      Hi folks - this is something I've been looking at too.

       

      Scenario: an administrator makes a change to the Sharing outside your organisation setting, within the Sharing settings screen in the SharePoint admin center. I need to be able to determine the change that was made; if possible the previously configured state or value, and of course when. 

       

      Ideally, I'd like to document a baseline configuration and then gather activities from the audit log (either from Office 365  Security and Compliance, or though PowerShell remote session to Office 365 Admin API). Of course, what's not ideal, is that somebody has to manually click through the admin center once a month to determine if the current state matches the baseline.

       

      How does one query the audit log for the setting mentioned in the above scenario?

      Is there a better approach altogether that I'm missing?

      • Carly Logan's avatar
        Carly Logan
        Copper Contributor

        Would love to know if you have solved this.  I have been struggling with this for several weeks myself.

    • Deleted's avatar
      Deleted
      Hi Juan,

      Thanks for the response. I need the direction for same.

Resources