Recommended First Steps
First things to check out after setting up CIPP.
Last updated
Was this helpful?
First things to check out after setting up CIPP.
Last updated
Was this helpful?
Welcome to the post-setup implementation guide for CIPP! In this guide, you will learn how to navigate and configure various settings within the CIPP application. Let's discover some of the key features of CIPP and see how to use them.
Using the Tenant Selector at the top you can switch tenants at any time. This allows you to dynamically choose what you're working on. You can also use the Tenant Selector to select "All Tenants" which allows you to see all your tenants in one swoop.
Let's setup some personal things first. The user settings section has your personal preferences and profile information. Let's start by setting up CIPP the way you like it.
The Default Usage Location is used each time you create a new user. Set this up here to prevent having to enter it each time you create a new M365 user.
Go to the Appearance section and select the desired theme, page size, and report image.
You can set page table sizes to whatever number you want. The default is 25.
By clicking save settings, you save this profile for you, no matter what computer you move to.
By clicking Save for all users, you save this profile for all the users of the app. This becomes their default.
Let's go check out some of the application settings next.
We have two style of passwords we can generate when creating a new user, or resetting a password, the classic password with capitalization, numbers, and symbols. You can also choose the modern passphrase style password. This is a more readable and often stronger password than randomly generated characters
Let's select the "Correct-Battery-Horse" option, which are passphrases.
You can choose the DNS resolver CIPP uses. By default the resolver is Google.
CIPP can help you figure out why you can't access a tenant by executing an access check. These checks can help you detect issues with GDAP, access rights, or general M365 issues.
Talking about tenants, let's go check out our internal tenant list. In this section we see all our tenants.
Using the highlighted button we can exclude a tenant from CIPP. This means the tenant will not be connected to CIPP, and we will not be able to make any changes to this tenant.
Navigate to the Notifications section.
CIPP can send many types of notifications, in this screen we can do some of the basic setup of these notifications to filter them, or select where they need to go.
Let's see how CIPP works in action. We'll navigate to the Administration section to start managing users.
Navigate to the Users section.
Most pages in CIPP work by showing you a table layout. The table allows you to filter data, export it, or execute actions. Let's try executing some bulk actions.
Setting the checkbox means we are going to take a bulk action on that specific row in our table.
You'll find all available actions in the "Actions" dropdown. Each page has different actions.
Let's look at some more of the options we have. Most tables in CIPP have a three-dot action menu, next to bulk actions. This three dot menu gives you a flyout with options and information about that specific row.
For users, we have a lot of actions we can take. We could reset passwords or even add them to groups. Let's not bother our users and check out some other parts of CIPP for now.
Navigate to the Tools section.
Select the "Graph Explorer" option.
CIPP has the option to report on anything inside of the Graph API. even when there is not a direct page created for it. You can use the Graph Explorer option to craft your own report. Let's try using the All User with Email Addresses report.
Execute the query by clicking "Query".
The report allows you to check this data as raw as it comes back from the API. you can also create an export using the PDF or CSV buttons.
Let's go check out the standards next by clicking on "Edit Standards"
Standards allow you to create a baseline for a tenant. This means you can easily deploy your wanted settings to any tenant. If you want to see more about standards, check out the documentation about the standards on the Standards page.
Let's go check out some reporting. Click on Best Practice Analyzer next.
The BPA gives you the ability to zoom in on your tenants and their current state. You can use custom reports, or use the included examples to tell your clients what actions they need to take to become more secure.
Talking about best practices. You want to be notified when something goes wrong, so let's look at some of the alert options.
the classic alerts are alerts that run on a schedule, and check by executing a script towards the tenant. We also have the option to receive alerts from Microsoft directly. Let's go check that out.
Select the option for the specific action you want to perform, such as creating a new Inbox rule or editing an existing one. There is a list of default options, and none of these require a specific M 3 6 5 subscription. This means you can alert on logons from strange locations, VPN or anonymized IPs without needing to buy P1 subscriptions for all your clients.
Let's try managing our tenants next. Click on Administration and then Tenants.
The tenant overview shows you your tenant names, default domains, and direct links to each of the portals. You can use these links to directly manage that tenant using GDAP.
We can also take actions on the tenants. Let's try using the three dot icon to do so.
You'll find some more information about the tenant in this flyout, and you can edit a tenant. This allows you to change the tenant display name or defaultDomainName inside of your partner environment. Changes made there only reflect your partner side, and not the client's actual environment.
There are so many more features, but now that you've understood the basics you can find more of the features yourself. We hope you enjoyed the walkthrough of the basic settings. You're now ready to deep dive into the platform.
