This section allows you to
Before you configure an Office 365 tenant, make sure that you satisfy all prerequisites.
Configure Office 365 tenant:
- Click the Tenant Settings option found in the top right corner.
- Click the Add New Tenant button in the top-right corner of the O365 Tenant Settings page.
- Enter the Account Name of the Office 365 tenant.
- In the Password field, enter the password of the Office 365 tenant. If you are adding a MFA-enabled, Office 365 or federated account, generate the app password in the Office 365 portal, and enter the same in the Password field.
- It is better to have an Office 365 service account to configure in O365 Manager Plus. The service account must meet the following criteria:
Click Save to add the tenant.
- Global admin: Service account must have global admin permission so that all the reports and management tasks can be performed seamlessly. If the global admin permission could not be provided, the service account must have atleast View-Only Organization Management, View Only Audit Log and Service Administrator permissions. Without global admin rights, the management functions pertaining to the assigned rights alone could be performed.
- If you are using an MFA-enabled account, federated account, or 32-bit version of O365 Manager Plus, please contact firstname.lastname@example.org to setup Azure Active Directory Module to collect data.
Modify an existing Office 365 tenant:
You can edit the details of any existing Office 365 tenant or delete an Office 365 tenant.
- To edit an existing tenant, click on the icon located in the action column of the desired tenant.
- To delete an Office 365 tenant, click on the icon located in the action column of the desired tenant.
Make any existing Office 365 tenant the default tenant:
Making an Office 365 tenant the default tenant will make the particular tenant default across all tabs in the product.
- To make an Office 365 tenant the default tenant, click the icon located in the action column of the desired tenant.
Choosing Azure Environment:
Choosing region specific Azure cloud environment will help to meet region-specific regulations and requirements. O365 Manager Plus supports Office 365 tenants created in Azure Germany, Azure China, and Azure US government cloud deployments.
- If you are a user of Azure Germany, Azure China, or Azure US government cloud, then you must select the same environment in O365 Manager Plus.
Rest API based authentication
For configuring MFA enabled/Federated accounts in O365 Manager Plus, Rest API based authentication must be enabled for those accounts. Please follow the below mentioned steps to enable it.
To enable Rest API based authentication
- Enable Rest API Access. Go to Step (2), if already enabled.
- Select Tenant Settings found in the top right corner.
- Select 'i' icon found in the Rest API Access column, near the Office 365 tenant you want to configure.
- In the pop-up, under Authentication Settings, select Authenticate Help Desk Technicians using Rest API.
Configured Office 365 tenants
This table gives you details on the Office 365 tenants configured by you. The columns in the table include:
- Actions: You can make the tenant as the default one, refresh the tenant data, edit the tenant, and delete them using the options found under this column.
- Office 365 Tenant: This column shows the configured tenant name.
- Account name: This column shows the Office 365 user account used to configure the tenant.
- Domains: The column shows the number of domains under this tenant. Upon clicking shows the details of the domains.
- REST API Access: This column shows any of the below values:
- Enable now: It denotes that the REST API access has not been enabled. Upon clicking you will be redirected to Office 365 where you have to grant access to this application (O365 Manage Plus).
- Enabled: It denotes that the REST API access is enabled successfully.
- Update Access: It denotes that the REST API application scope has to be updated. Upon clicking you will be redirected to Office 365 where you have to grant access to this application (O365 Manage Plus).
- Is MFA Enabled: This column shows any of the following values:
- True: This denotes that MFA is enabled for the user account used in configuration.
- False: This denotes that MFA is not enabled for the user account used in configuration.
- Unknown: This denotes that the MFA status of the user account shown in the Account Name column could not be determined. This situation arises when both the MSOL and REST API session fail.
- Status: This column shows the status of the tenant configuration. It shows either Success or Failed, which are self-explanatory. Upon clicking the More Details option found in this column, you can see a table with the below values:
- Global Administrator: This denotes whether the configured account is a Global Admin or not.
- REST API Session: This field denotes whether the REST API session was successful or not. If failed, you can use the Enable Now option found under the REST API Access column to enable it, or follow the steps in this document to enable it manually.
- MSOnline Session: This field denotes whether the MSOnline session was successful or not.
- Exchange Session: This field denotes whether the Exchange Online Remote Powershell session was successful or not.
O365 Manager Plus requires Microsoft .NET version 4 and PowerShell version 3 installed in your system.
- To check if Microsoft .NET Framework 4 is installed, open Command Prompt from Run. Enter the following command reg query
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\NET Framework Setup\NDP\v4\full" /v version. Check the displayed version. If the version 4 is not installed, install Microsoft .NET Framework 4 from here.
- To check if the correct version of PowerShell is installed, type PowerShell from Run. Run the command $PSVersionTable. If the version is below 3 or if PowerShell is not installed, install PowerShell V 3.0 from here
O365 Manager Plus is licensed based on the number of users. This section allows you to manage licenses and select the users that you wish to manage. O365 Manager Plus is licensed based on the number of users that you wish to manage. To manage licenses, click Manage Licenses. (Click Tenant Settings found in the top right corner → Manage Licenses). The Manage Licenses screen displays the following information at the top of the table.
- Total License Count – This shows the number of licenses purchased.
- Managed Users – This shows the number of users being managed by the product.
- Available License Count – The number of unused licenses is shown here.
To modify the users to be managed:
- Click on the icon under the Action column to manage all users for that tenant.
- Click on the icon under the Action column to stop managing all users for that tenant.
- To handpick the users to be managed, click the Total Number of Users in the Managed Users column. This will open a pop-up.
- In the pop-up, select the type of users that you wish to see, i.e., only the managed users, or the unmanaged, or both.
- Click icon to search for the user by name
- Click the drop-down box on the right hand side of the pop-up to manage the number of users that will be displayed.
- Select the check-boxes against each user to manage/unmanage them.
- Click OK to save the selection.
In some cases, the number of Office 365 users managed and the number of licenses purchased might be different. In such cases, when new users/ additional licenses are added, the product automatically adds users to the managed users list.
Case 1 - Licenses purchased is greater than the number of users managed : In such a case, all existing users will be managed by the product. When new users are added, the product will automatically link the unused licenses with the new users.
Case 2 - Licenses purchased is lesser than the total number of users : In such a case, only the selected users will be managed by the product. When additional licenses are purchased, the unmanaged users will automatically be added to the managed users list based on availability of licenses.
NOTE: If you haven’t installed the Azure AD module, the pop-up while clicking the count in Managed Users column, gives details on mailboxes.