Configuring Web Portal

Configuring Web Portal

The Web Portal serves as the primary interface for managing various administrative tasks, including Microsoft 365 licensing, organizational unit (OU) structures, and Azure Administrative Units (AU). Below are the key configuration steps and recommendations to optimize the Web Portal deployment.

Microsoft 365 Licensing Management

The Web Portal provides robust tools for managing Microsoft 365 licenses:

• Assign licenses to users individually or in bulk.

• Monitor license consumption and compliance with your subscription plans.

• Use built-in rules to automate license assignments based on criteria such as group membership or attributes.

Virtual Administrative Units setup

Virtual Administrative Units (VAU) allow for the logical grouping of resources for easier management.

A single Virtual Administrative Unit can only map to one OU and its child nodes. For example, if your OU structure is Company/Users/Region, the VAU can represent this entire branch but cannot span multiple top-level OUs.

If your organization requires more flexible VAU configurations:

1. Split your OUs into manageable sections that align with VAU requirements.

2. Use custom query criteria to include multiple OUs in a single VAU (see Query Criteria section below).

Query criteria for VAUs

• Use Custom Queries - leverage LDAP filters to define the objects included in a VAU.

  Example: Include all users in RegionA and RegionB by specifying the distinguishedName attribute in the query.

• Test the query in a non-production environment to ensure expected results.

Azure Administrative Units

If your environment integrates with Entra ID, setting up Azure Administrative Units (AU) is highly recommended to enhance cloud management. In general, an Azure AU functions as follows:

• Simplifies delegation by grouping users, devices, or groups for specific management tasks.

• Integrates seamlessly with Cayosoft rules and policies.

Configure Azure AUs

1. Create Cayosoft VAUs to manage Azure AU mappings effectively. Refer to Cayosoft Containers Guide for details.

2. Use the Add to Azure AD Administrative Units rule to automate assignments:

3. Add users or groups to AUs based on organizational policies or attributes.

Best practices for Web Portal configurations

• Enable features and extensions only as needed to reduce complexity and potential errors.

• Regularly review query criteria and VAU configurations to align with evolving organizational needs.

• If using Azure AUs, ensure your Entra ID permissions are correctly configured to avoid errors.

• In a multi-server deployment, do not configure rules on the Web Portal server that your users are accessing, instead move them to the Automation server, and use this server for just automation of rules.