Versions Compared

Old Version 57

changes.mady.by.user Sigalit Hassid

Saved on

compared with

New Version 58

changes.mady.by.user Sigalit Hassid

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  1. Prepare a SharePoint global administrator account to create a 'full-trust' SharePoint App.
  2. Make sure that your tenant allows custom Apps authentication in order for the SharePoint App to securely communicate with the SharePoint API.  

    Note: In case your tenant has this option disabled and DisableCustomAppAuthentication is set to True (note that it is disabled by default for SharePoint Online tenants created on August 2020 or later), you can execute the following command in SharePoint Online Management Shell in order to enable it:

    Code Block
    Set-SPOTenant -DisableCustomAppAuthentication $false
  3. Make sure that the site collections you would like to track are not locked with NoAccess state.
  4. If end users are using IE 9/10/11 with Medium-High security level and above, they will have to manually enable the IE Active Scripting option for the appropriate security zone as follows: Open IE -> Tools -> Internet
    Options -> Security -> Choose the appropriate security zone (Internet Zone most likely) -> Custom Level... -> Scripting -> Enable the Active Scripting option. Another option is to a    dd the event listener host URL to a IE security zone with Medium or lower security level (e.g. Trusted Sites) or to add the Azure event listener host URL to Trusted Sites. If end users are using IE 9, they will also have to manually enable the Access data sources across domain option as follows: Open IE -> Tools -> Internet Options -> Security -> Choose the relevant security zone (Internet Zone most likely) -> Custom Level... -> Miscellaneous -> Enable the Access data sources across domains option.

Prerequisites for installing the CardioLog Analytics SaaS Tracking Agent using a PowerShell Script

  1. Prepare a Microsoft Office 365 service account with the following permissions in order to install the CardioLog Analytics SaaS Tracking Agent:
    • SharePoint tenant administrator account; 
    • Site collection administrator (not just administrator) of the app catalog site collection of your tenant;
    • Administrator of all the site collections that you are looking forward to include in the CardioLog Analytics SaaS reports.
  2. Make sure you have PowerShell version 5.1 or higher, with the MSOnline module installed.

  3. Custom scripts should be temporarily allowed for the duration of the installation (DenyAddAndCustomizePages should be set to Disabled), on your App Catalog and on each site collection you wish to monitor, in order to add the JavaScript tracking code and Tracking Agent application (sppkg for modern sites, wsp solution for classic sites).

  4. Make sure that the site collections you would like to track are not locked with NoAccess state.

  5. If end users are using IE 9/10/11 with Medium-High security level and above, they will have to manually enable the IE Active Scripting option for the appropriate security zone as follows: Open IE -> Tools -> Internet
    Options -> Security -> Choose the appropriate security zone (Internet Zone most likely) -> Custom Level... -> Scripting -> Enable the Active Scripting option. Another option is to a    dd the event listener host URL to a IE security zone with Medium or lower security level (e.g. Trusted Sites) or to add the Azure event listener host URL to Trusted Sites. If end users are using IE 9, they will also have to manually enable the Access data sources across domain option as follows: Open IE -> Tools -> Internet Options -> Security -> Choose the relevant security zone (Internet Zone most likely) -> Custom Level... -> Miscellaneous -> Enable the Access data sources across domains option.

Prerequisites for installing the CardioLog Analytics SaaS Tracking Agent manually

  1. Prepare a Microsoft Office 365 service account with the following permissions in order to install the CardioLog Analytics SaaS Tracking Agent components:
    • SharePoint tenant administrator account; 
    • Site collection administrator (not just administrator) of the app catalog site collection of your tenant;
    • Administrator of all the site collections that you are looking forward to include in the CardioLog Analytics SaaS reports.

  2. Custom scripts should be temporarily allowed for the duration of the installation (DenyAddAndCustomizePages should be set to Disabled), on your App Catalog and on each site collection you wish to monitor, in order to add the JavaScript tracking code and Tracking Agent application (sppkg for modern sites, wsp solution for classic sites).

  3. Make sure that the site collections you would like to track are not locked with NoAccess state.
  4. If end users are using IE 9/10/11 with Medium-High security level and above, they will have to manually enable the IE Active Scripting option for the appropriate security zone as follows: Open IE -> Tools -> Internet
    Options -> Security -> Choose the appropriate security zone (Internet Zone most likely) -> Custom Level... -> Scripting -> Enable the Active Scripting option. Another option is to a    dd the event listener host URL to a IE security zone with Medium or lower security level (e.g. Trusted Sites) or to add the Azure event listener host URL to Trusted Sites. If end users are using IE 9, they will also have to manually enable the Access data sources across domain option as follows: Open IE -> Tools -> Internet Options -> Security -> Choose the relevant security zone (Internet Zone most likely) -> Custom Level... -> Miscellaneous -> Enable the Access data sources across domains option.

Prerequisites for tracking PnPSearch

Info
Note: Tracking PnP Search in SharePoint Online requires an additional license and is not included out-of-the-box.

  1. Supported Versions:

    • PnP Search version 4.7

    • PnP Search version 4.13

  2. Supported Controls:

    • Search control

    • Search Results control

  3. Supported Layouts in the Search Results Control:

    • List

    • Details List

Prerequisites for SharePoint On-Prem

...

  1. All SharePoint On-Premises environments integrated with our product must use HTTPS with SSL/TLS certificates issued by a publicly trusted Certificate Authority (CA). Connections over HTTP or any non-secure protocols are not supported. 
  2. Access to the internet from all end users workstations, make sure that the following domains are not blocked by the browser: "azurewebsites.net" and "windows.net"
  3. The SharePoint farm admin service account credentials (make sure the farm admin account has full access rights to the selected web applications in SharePoint Central Administration > Manage Web Application > User Policy).
  4. Configure a site-to-site VPN to securely access the customers' SharePoint environment from Intlock's Azure network

    Access from the CardioLog Analytics SaaS Azure network to the customer’s SharePoint On-Premise API is required. The access method can be configured based on the customer’s preference and security policies, such as:

    • Site-to-Site VPN – Secure connection between CardioLog Analytics SaaS Azure network and the customer’s SharePoint environment. The list of supported VPN devices and instructions on configuring the VPN can be found here.
    Contact us for more details
    •  
    • Public IP with Firewall Rules – Controlled inbound access from the CardioLog Analytics SaaS Azure network.
    • Azure Application Proxy – Secure SharePoint access via Microsoft Azure AD Application Proxy.

    For more details, please contact Intlock Support.

Prerequisites for installing the CardioLog Analytics SaaS Tracking Agent 

  1. Prepare a user account with the following permissions in order to install the CardioLog Analytics SaaS Tracking Agent:
    • SharePoint farm administrator
    • A local administrator on the SharePoint central admin server and WFE servers.
  2. Make sure you have PowerShell version 5.1 or higher.
  3. For customers with SharePoint 2019 modern sites,
    1. Prepare a user account that is a member of the sites Owners group and has Full Control permissions on the App Catalog.
    2. Verify your environment supports using Apps for SharePoint 2019 and enable Apps for your farm:
      1. Go to the SharePoint Central Administration.
      2. Navigate to Apps and Configure Store Settings.



      3. Make sure you have the App Purchases enabled.
        SharePoint Central Administration > Apps > Configure Store Settings > App Purchases > Select Yes for         Should end users be able to get apps from the SharePoint Store?

  4. If end users are using IE 9/10/11 with Medium-High security level and above, they will have to manually enable the IE Active Scripting option for the appropriate security zone as follows: Open IE -> Tools -> Internet Options -> Security -> Choose the appropriate security zone (Internet Zone most likely) -> Custom Level... -> Scripting -> Enable the Active Scripting option. Another option is to add the Azure event listener host URL to Trusted Sites. If end users are using IE 9, they will also have to manually enable the Access data sources across domain option as follows: Open IE -> Tools -> Internet Options -> Security -> Choose the relevant security zone (Internet Zone most likely) -> Custom Level... -> Miscellaneous -> Enable the Access data sources across domains option.

Prerequisites for Viva Engage (Yammer)

  1. A dedicated service account that is a Verified Admin in the Yammer Viva Engage network.
  2. At least one user account with a Power BI Pro or Power BI Premium Per User (PPU) license (the Yammer Viva Engage reports are displayed in Power BI). This user will become the owner of the app workspace in Power BI and will be able to share it with others in the organization and collaborate on reports.
  3. Enable 3rd Party Applications (to install the CardioLog Analytics SaaS app from the Yammer Apps Directory)
    1. Log on to Yammer Viva Engage with a verified admin and click on the gear icon to open Settings.
      Image Removed
      Image Added

    2. Settings > Edit Network Admin Settings > Network > Configuration > Enabled Features > select 3rd Party Applications.
      Image Removed
      Image Added






  4. Enable Archive data retention policy (to import data about deleted content).
    1. Log on to Yammer Viva Engage with a verified admin and click on the gear icon to open Settings.
    2. Settings > Network Admin > Content and Security > Data Retention > select Archive option.



  5. Enable Private Content mode (to import data about private groups)
    1. Log on to Yammer Viva Engage with a verified admin and click on the gear icon to open Settings.
    2. Settings > Network Admin > Content and Security > Content Mode > select Private Content mode and click Save.
  6. Enable the new Viva Engage for all users with opt-out option only for Admins (to install the Yammer configuration app).
    1. Log on to Viva Engage with a verified admin and click on the gear icon to open Settings.
    2. Settings > Edit Network Admin Settings > Network > New Viva Engage > select Enable the new Viva Engage for all users with opt-out option only for Admins and click Save.

      Image Added

  7. Disable concealed user, group, and site names (to import actual user names).
    1. Log on to Microsoft 365 admin center.
    2. Go to Settings > Org settings > Reports.
    3. Clear the Display concealed user, group, and site names in all reports option. 

...