Articles in this section

See more

Setting up Microsoft Partner Access

Jeff Farris
  • Updated
Follow

Connecting your Office 365 account to your CloudRadial tenant allows you to pull in users and set up various data flows that give users more visibility into their 365 account. Since the July 30, 2019 release, CloudRadial has relied exclusively on a partner application for performing Office 365 data gathering.

  • Note: You will need to have access to a Windows computer to perform this setup and be members of the Microsoft Partner Program to access your current Microsoft Partner Number (MPN).

We'll follow three main steps:

  1. Running the PowerShell script
  2. Inputting Microsoft information
  3. Tying Microsoft data to specific companies in CloudRadial

Alternatively, those without delegated admin access can still tie in Office 365 to a company as long as they have access to an account with administrative access to the O365 tenant. 

  1. (Optional) Tying in Office 365 without Delegated Admin Access

Step 1: Running the PowerShell Script 

Why are we doing this? Running this script allows CloudRadial to see the setup information and hook into the data sent out by Office 365. Without it, we wouldn't be able to pull in information about the users and their usage. In one script, this ensures that we have the right access in the areas that we need.

In the CloudRadial Tenant

  1. Log into your CloudRadial tenant
  2. Navigate to Partner > Settings 
  3. Click on Microsoft Partner under Setup at the top right

    1.png

  4. Click on the PowerShell Script tab at the top
  5. Click the Copy to Clipboard text to get a copy of the script
  6. Swap back to the Setup tab. Leave this window open - we'll need to input four codes that we'll get from the PowerShell script.

          2.png

On Your Windows Computer 

  1. Open Windows PowerShell ISE editor as an Administrator using the Windows search bar
    • Administrator access is required to install the correct PowerShell modules (MSOnline and AzureAD). Use the 64 bit version of ISE.

         3.png
             
  2. If not enabled in PowerShell ISE already, open a Script Pane
    • Click View at the top
    • Click Show Script Pane

      4.png

  3. Paste the PowerShell script copied earlier into the Script Pane. Do not paste the script into the blue area of the editor.
  4. Click the Execute Script button (Green Arrow)

    5.png

  5. Press Enter in the blue area of the editor to start the script
  6. Follow the prompts in the script. It will prompt you to download a few modules to run the script - it's important to click "Yes" and "Yes to All" to ensure the script executes correctly
  7. You'll be asked to log into Microsoft during a portion of the script. Log in with a user that has Global Admin Access.
  8. Once the script completes, you'll see 4 values that you'll need to setup the CloudRadial-Office 365 connection. Don't close out of PowerShell - just swap back over to your CloudRadial tenant.

    6.png 

Step 2: Inputting Microsoft Information

Why are we doing this? Now that we've got the permissions we need, we need to tie various IDs and keys into CloudRadial to secure the connection. Once it's all set, we'll be able to read Office 365 data and add a lot more value to the portal for your clients.

  1. Return to the open Setup tab under the Microsoft Partner setup in CloudRadial
  2. Copy and paste the values for AppId, AppSecret, TenantId and Realm that were provided at the end of the PowerShell script in the blue area pictured above
  3. Enter your Microsoft Partner Number
    • If you're not sure what this is, you can find it by visiting partner.microsoft.com
    • Once at the partner site, click on Dashboard
    • Click on the Settings Gear on the top right
    • Click on Partner Settings

                                        7.png
                                        
    • Once on the Partner Profile page, look for the Program info area and find/copy your MPN ID
    • Head back to the CloudRadial window
    • Paste it into the Microsoft Partner Number (MPN) field
  4. Select the two Microsoft Cloud Agreements that apply to your customers. You'll need to choose one Microsoft Cloud Agreement and one Microsoft Customer Agreement.

        8.png
          
  5. Press the Submit button at the end of the page to save your settings.
  6. Refresh your page to ensure that CloudRadial is displaying the latest information from Office 365

If everything has worked successfully, saving your settings will initiate a request to retrieve your clients and populate your clients in the Partner > Office 365 tab in CloudRadial.

Important Note: It may take anywhere from a few minutes to an entire day, depending on Microsoft server load and data volume, to sync everything into CloudRadial the first time.

Step 3: Tying Microsoft Data to Specific Companies in CloudRadial

Why are we doing this? Once the connection is successful, we'll need to finish the job by tying the Office 365 Tenant Identifier to the clients to ensure that the right data comes in for the right clients. This is something that should be completed when clients are first loaded into the portal, but it can always be completed at a later date.

  1. Navigate to Partner > Clients in CloudRadial
  2. Click on the 3 blue dots on an existing client
  3. Click Edit

               9.png
                                
    • Note:  The following steps apply both when editing an existing client in CloudRadial or when adding a brand new one

  4. Once in the Company editing panel, look for the Office 365 Tenant Identifier field
  5. Toggle if you're a Delegated Administrator for that company
    • Delegated Administrator access is only available to Microsoft CSPs. You can learn more about joining the free CSP program by clicking here
  6. If you're a Delegated Administrator, you'll be able to use the Lookup button to find their company identifier in Office 365. If not, skip to step 10.
  7. Press enter on the blank field to load entries, or type the first few letters of the company you're trying to find and then press enter

    10.png

  8. Click on the corresponding company 
  9. The ID will now be in place. Click Submit at the bottom of the panel. 

(Optional) Tying in Office 365 without Delegated Admin Access

(Optional) For those without Delegated Administrator access, you'll need to tie in Office 365 information locally on a per-client basis without the use of the Lookup button. Follow these steps:

        1. Navigate to Partner > Clients 
        2. Press + Add at the top right to add a new client
        3. Fill out any relevant information and click Submit at the bottom to create the company
        4. Click on the 3 blue dots on that client 
        5. Click Impersonate Admin (All Features)

                        11.png
                               
    1. Once in their company portal, navigate to Account > Settings
    2. Under the Office 365 section, press the two buttons to connect both options using an account with administrator access  
      • Administrative Access Application allows for that company's Office 365 data to flow into CloudRadial
      • User Login Access Application allows users to use their Office 365 credentials to log into CloudRadial

        12.png
              
    3. Once complete, the client will be set up. Repeat these steps for any client that you don't have delegated access for.

The data from Microsoft will now be flowing into the relevant areas of CloudRadial. They will now also have access to log into CloudRadial using their Office 365 credentials. Setup is complete - simply repeat the ID entry steps for any loaded up clients or for new clients added to the portal.

Related articles

Comments

1 comment

Date Votes
  • Duncan Whitcombe

    Just followed this through. The AppId came out blank which was disappointing, After trying to trouble shoot the script I just logged into o365 admin and found the AppId for the graph application and pasted that in. It worked :)

    0
    Comment actions Permalink

Please sign in to leave a comment.