Microsoft 365 Compliance: Scanning and reviewing the results

ALERT LEGACY ARTICLE: The content in this article is no longer updated and is available for reference purposes only. Features and workflows described may be deprecated, significantly changed, or no longer supported.

Environment

Datto EDR

Description

The M365 compliance feature will primarily focus on establishing a baseline of security standards for an M365 environment leveraging known Industry Security Standards (CIS Benchmark) for M365. The M365 Security Module will provide Datto EDR the ability to score and grade an M365 environment with a Risk Score, identify issues and highlight recommended remediation steps.

The following services will be covered within Datto EDR's M365 Security Model:

Exchange Online
SharePoint Online
Skype & Teams
Azure Active Directory
inTune

Scanning the O365 Environment

Navigate to: Discover→ Compliance. Select the environment from the query list's action menu.Compliance scans are started from the main compliance list on the Discover tab.

The Scan option will be found in the action menu next to individual lines on the query list.

Clicking the scan option will start a new running task in the task drop down menu.
A running task will be updated to completed status once scan has finished.
More details on the scan progress can be viewed by clicking the task item from the task list.

The Summary screen

The Summary screen will show No results available, but clicking the Items tab, then clicking the name link in the list that was displayed, will show the heartbeats similar to a scan.

Failure messages for this scan will also be displayed on this screen.

The Scoring and the Results of your compliance scan.

Navigate to: Secure→ Compliance.

Once a scan has been completed the results will be found on the analyze tab under the cloud section on the left.

The compliance results list is sorted by scan date, The scan name links to individual scan details.
The scoring results for a given item will ignore the total count (e.g. 50 out of 100 hosts have MFA enabled), and provide a pass or fail based on if the setting is enabled.
Guidance on remediation of items not in compliance can be displayed via the Action menu found on the right-hand side of each individual result line.

	Need troubleshooting help? Open the Kaseya Helpdesk.
	Want to talk about it? Head on over to the Community!
	Have an idea for a new feature? Want to learn about upcoming enhancements? Visit the Ideas forum!
	Provide feedback for the Documentation team.