Login

u/Ok-Stretch-7850

▲ 8 r/entra+1 crossposts

OpenEntraBaseline

Hello r/microsoft365

We already have the incredibly useful and truly helpful OpenIntuneBaseline so how about creating an OpenEntraBaseline as well?

The goal is to build a baseline aligned with the CIS Benchmark, enforcing security recommendations in a consistent and transparent way. This would allow us to harden new environments quickly or spin up secure test environments without starting from scratch every time.

And honestly, who could build this better than all of you? You work with these services every single day, you know every trick, every bug, every quirk.

So let’s combine our collective knowledge and create the OpenEntraBaseline together. Let’s merge the CIS Benchmark with our real‑world experience and deliver something valuable for all Microsoft admins out there. In the end, we all benefit from a stronger, shared foundation.

If you’re interested, drop a comment I appreciate every bit of help 😄

If enough people join in, I’ll set up a Discord channel and a Git repo so we can collaborate properly

reddit.com
u/Ok-Stretch-7850 — 3 days ago
▲ 99 r/entra+2 crossposts

Built a Runbook That Finds Unused Enterprise Apps Automatically, Sharing It With You :)

It’s the weekend, which finally gives me time to finish things I’ve been building for way too long.
I’ve been working on this Azure Automation Runbook on and off for quite a while, and today I finally wrapped it up. Of course, I wanted to share it with you all.

In short:
The Runbook automatically identifies inactive Enterprise Apps (Service Principals) in your Entra tenant.
It checks the Microsoft Graph Beta sign‑in logs to see which tenant‑created apps had zero sign‑in activity in the last 30 days.
If inactive apps are found, it generates a clean HTML report and sends it via email.
If everything is healthy and no unused apps exist, it stays quiet, no unnecessary notifications 😉

As always, the full code is available in my GitHub repository, which I’ve linked below.

https://github.com/Mau2rice0/World-of-M365/tree/main/Entra/Reporting/UnusedEnterpriseAppsReport

If you have ideas, feedback, or want to see additional features, let me know, maybe that’ll be my next weekend project.

#Azure #M365 #Entra

reddit.com
u/Ok-Stretch-7850 — 5 days ago
▲ 18 r/AZURE+1 crossposts

Automated Microsoft 365 Service Health Reporting

Most of us have been there: users suddenly report issues with a Microsoft 365 service, and as an admin you’re left wondering whether the problem is on your side or if Microsoft is having an outage.

Checking the M365 Admin Center can help, but it takes time and many helpdesk staff don’t even have access to it.

To solve this, I created an Azure Automation Runbook that regularly checks the Microsoft 365 service health status and sends an email only when there’s an actual issue (degradation or outage).

Key benefits:

  • No personal admin access to the Microsoft 365 portal required
  • Notifications can go directly into your ticketing system
  • Issues are often detected before users notice them
  • A quick look at your inbox in the morning is enough
  • No unnecessary notifications only real incidents

The script is available in my Git repository:
https://github.com/Mau2rice0/ServiceHealthNotificationService/tree/main

If you’re interested, feel free to try it out and share your feedback.

#Microsoft365 #AzureAutomation #M365Admin #Helpdesk

reddit.com
u/Ok-Stretch-7850 — 6 days ago