Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

SharePoint Saturday Netherlands 2019 - Citizen dev. and the admin

162 views

Published on

On June 29th Daniel Laskewitz and myself presented #SPSNL. Our subject? Citizen dev. and (or vs.) the admin. The slides can be found here.

Published in: Technology
  • Be the first to comment

  • Be the first to like this

SharePoint Saturday Netherlands 2019 - Citizen dev. and the admin

  1. 1. Citizen developer vs. the admin Win/Win or Win/Lose?
  2. 2. Admin & compliance Citizen development
  3. 3. Daniel Laskewitz (citizen dev) Business productivity consultant Sogeti Netherlands Microsoft MVP Business Solutions International speaker Blog: https://www.o365dude.com/ Twitter: @Laskewitz Mail: Daniel.Laskewitz@sogeti.com
  4. 4. Albert Hoitingh (admin) Solution Architect Motion10 Microsoft MVP Enterprise Mobility Microsoft Certified Security Administrator Associate International speaker Blog: https://Alberthoitingh.com Twitter: @Alberthoitingh Mail: Albert.Hoitingh@Motion10.com
  5. 5. Today’s agenda Three real-life scenario’s 1. From the citizen dev.’s perspective 2. From the admin’s perspective 3. The theory behind the scenario Additional information
  6. 6. Scenario one He creates a (relatively) simple Flow… Let’s go…
  7. 7. Environments in Flow Data region & security • System administrator (aka. Environment Admin) • Users • P2 license required for multiple environments • Watch out with Default Data loss prevention (DLP) • Works “on save” – for now • Suspends Flow until restriction is lifted • Can be worked-around (connect using different accounts) • Call Microsoft!
  8. 8. DLP Roadmap But also: real-time DLP! https://docs.microsoft.com/en-us/business-applications-release- notes/April19/microsoft-flow/data-loss-prevention-enhancements
  9. 9. Scenario two Scenario two – He’s still on it… Let’s go…
  10. 10. Admin-connectors • Specific management connectors • Powerplatform, Security Graph, Microsoft Cloud App Security • Used for reporting and actions During the demo we used a Flic to trigger the Flow
  11. 11. PowerPlatform connector Used for: Automating administrative tasks on the PowerPlatform Scenario: Use Flow to manage your PowerPlatform. For example, create a list of all environments with a click of a Flic Possible actions: • Create an environment • Create a DLP rule • Delete an environment
  12. 12. Used for: Managing Flows using Flow  Possible triggers: Any (for example a button) Scenarios: Use Flow easily change the owners of certain flows. Or create a list of all Flows with a click of a Flic Possible actions: • List Flows • Stop a Flow (as shown) • Create a Flow Similar connector: PowerApps for Admins Flow admin connector
  13. 13. Microsoft Graph Security connector Used for: Using signals from the Microsoft Graph Security. Possible triggers: Any alert available in the graph Scenarios: Use Flow to post an alert from the Microsoft Security Graph to the Teams environment of your security team. Or create a Flow to manage alerts by this team. Possible actions: • Get alerts • Update alerts • Get subscriptions
  14. 14. Works both ways: Create a Flow based on an alert in MCAS Or Trigger a Flow from an MCAS policy Scenarios: Follow up an alerts from MCAS – allowing for more complex workflows based on an alert. For example: Microsoft Cloud App Security
  15. 15. Scenario three Scenario three – Will he never stop? Let’s go…
  16. 16. Our Citizen Developer (1) Daniel@Tenant.onmicrosoft.com (2) Daniel@Hotmail.com (1)Connector A DLP Rule: Not allowed Bug or working as designed?
  17. 17. Our Citizen Developer (1) Daniel@Tenant.onmicrosoft.com (2) Daniel@Hotmail.com (1) Connector A (2)ConnectorB DLP Rule: Not allowed Bug or working as designed?
  18. 18. Bug or working as designed? • Going around the tenant has been a “work- around” • For quite some time now…. • Only option at this moment: “Call Microsoft”
  19. 19. What if I need more options? • Powerplatform admin-center • Office 365 audit-log and alerts • PowerShell • Multifactor authentication
  20. 20. PowerPlatform admin-center • Now in preview • Custom (3rd party) also available
  21. 21. Office 365 • Auditlog • Requires the correct permissions • Info retained for 90 (E3) or 365 (E5) days • Custom admin-dashboard
  22. 22. • Environments: http://tinyurl.com/y8mu2zzv • Connectors: http://tinyurl.com/y75x4y4c • PowerShell: http://tinyurl.com/yafhxh6w • Connector Browser App: http://tinyurl.com/y75x4y4c • Custom admin dashboard: http://tinyurl.com/y66bwe75 • Sample Flow for reports: http://tinyurl.com/y4yno8vm • Auditlog: http://tinyurl.com/yaxt87te • GDPR: http://tinyurl.com/y3sa6cwm References
  23. 23. https://powerapps.microsoft.com/en- us/blog/powerapps-enterprise- deployment-whitepaper/ References
  24. 24. Thank you so much! Albert Blog: https://Alberthoitingh.com Twitter: @Alberthoitingh Daniel Blog: https://www.o365dude.com/ Twitter: @Laskewitz
  25. 25. Thanks for attending

×