{"id":14055,"date":"2018-06-06T00:00:00","date_gmt":"2018-06-06T05:00:00","guid":{"rendered":"https:\/\/centricconsulting.com\/post\/operations-monitoring-office-365_portal\/"},"modified":"2023-09-07T16:42:45","modified_gmt":"2023-09-07T20:42:45","slug":"operations-monitoring-office-365_portal","status":"publish","type":"post","link":"https:\/\/centricconsulting.com\/blog\/operations-monitoring-office-365_portal\/","title":{"rendered":"Asset Protection: Operations and Monitoring in Office 365"},"content":{"rendered":"
<\/p>\n
Have you just been handed your Office 365 tenant and been told to support<\/a> it?<\/p>\n Hopefully not, but in smaller environments, I can see the potential for that happening.<\/p>\n If you\u2019re a large enough organization, you are likely transitioning teams from their on-premises duties to new cloud responsibilities<\/a>. We typically recommend the following guideline for a support team: <\/b><\/p>\n When we work with clients to plan, rollout, or remediate Office 365, we look at the IT structure as a whole, the number of users, what workloads are being rolled out, and how current support structures can be modified for the cloud.<\/p>\n Your first-level help desk will be key in taking some of the repetitive tasks away from your admins, and a knowledge base that is kept up-to-date will provide a reference to help them.<\/p>\n If you are the help desk and<\/i> the global admin, keep a knowledgebase for yourself in a SharePoint list for easy reference.<\/p>\n It\u2019s up to us as consumers to ensure we are aware of the level of service we can expect, and that we are monitoring the availability of our own tenants.<\/p>\n If you have a service fall below the SLA documented by Microsoft, you will need to have some proof of that outage. Keep an eye on the Service Health dashboard in the Admin Center. Need service SLA documentation? Click here<\/a>.<\/p>\n Service incidents can be found in your Office 365 Admin Portal and come in two varieties:<\/p>\n Monitor the message center at least weekly, if not more often, for updated change notifications, any actions required and expected outages. The Security and Compliance center has default alert policies configured to send admins email messages in a variety of circumstances such as: a mail flow rule has been created, malware is detected, an unusual volume of email has been detected, unusual external user activities have been detected and more.<\/p>\n The Security and Compliance center dashboard is a good place to start for a visual look at anomalies. Take a look at the landing page and the Threat Management section for daily graphs of activity.<\/p>\n Besides the Admin portal you can also use the following to monitor service availability:<\/p>\nOperational Support Structure<\/h2>\n
\n
Service Availability Monitoring<\/h2>\n
\n
\n
Enhancing Monitoring and Supportability<\/h2>\n