1. Nerdio Help Center
  2. Nerdio Manager for MSP (NMM)
  3. NMM Video Tutorials

Monitoring (Part 2) - Customer Access Requirements

Avatar
Nerdio Accelerator

Applies to: Nerdio Manager for MSP (NMM) 

Version : 0.7.0 and greater

Disclaimer : Nerdio Manager for MSP is an automation and management solution. NMM Partners are responsible for understanding, and managing Microsoft Identity Services, M365 and Azure Resources. For Identity and Azure support, please contact your Distributor or Microsoft directly.

Nerdio Manager for MSP automates deployment and initial configuration of Azure Application Insights.  Accessing Azure Application Insights within your customers tenant using external identity will require the following steps.
  1. Guest User access to Customer Tenant
  2. Reader Permission to Customer Subscription
  3. Accessing Customer Directory and Subscription in Azure Portal

 

Step 1 - Invite yourself to the Customers AAD Tenant via GUEST Access

In this step we will focus on getting access to the clients Tenant via Guest User Access in AAD

 

       mceclip2.png

  • Fill out the necessary information and make sure you ACCEPT the Guest invitation once received.

Note - Examples Below

Email Invite

mceclip1.png

 

Guest User in Azure AD       mceclip2.png

 

 

Step 2 - Assign READER permission on the Customer Subscription

In this step we will focus on granting permission to the customers subscription

 

  1. Log in to the Microsoft Azure portal.

  2. In the left-hand menu, click All Services.

  3. In the General section, click Subscriptions.

  4. In the subscription table, click the applicable subscription.

    The Overview page for the subscription appears.

  5. In the menu for the subscription, click Access control (IAM).

    The Access control (IAM) page appears.

  6. Click the +Add button.

    A pop-up menu appears.

  7. Click Add role assignment.

  8. In the Add role assignment plane, in the Role drop-down, select Reader.

  9. In the Select field, search for the "Guest" User Object from Step1 

    mceclip1.png

  10. Click the Save button.

 

Step 3 - Switching to the Customer Directory in Azure

In this step we will focus on gaining access to the new Directory and Subscription, via the Azure Portal

 

When you go to view Monitoring you may not be able to see the Customer Subscription and Resources within your current Directory.  You will need to change Directories via Azure Portal to gain access.

If you see...

         mceclip0.png

            mceclip0.png
  • Select the Customer Directory
           mceclip1.png
  • You should now be able to see the Subscription and Resources
Important Notification
  • Remember to switch back if you're unable to see resources in other accounts after managing this Customer Directory

Was this article helpful?

1 out of 1 found this helpful
Have more questions? Submit a request

Related articles

Comments (0 comments)

Article is closed for comments.