CASE STUDIES
Microsoft 365 Support Case
Read case studies of industry leaders in healthcare, financial services, government, higher education and other verticals who have replaced Microsoft Premier/Unified Support with OUS365.
Atlas Air
Intune- Corporate Certificate Request via Intune
We are trying to finalize our Intune configuration for enrolling end user devices. We would appreciate some guidance/assistance on setting up the SCEP and ISE certificate profiles for iOS and Android in the Intune Endpoint Management portal. We have an NDES server On-Prem that connects to our Web Enabled CA host to the PKI. We have the Intune Certificate Connector installed on the NDES server and a tunnel that is up and running on Intune.
Mansfield Energy
Power BI- Dynamics 365 Customer credit and collection report is throwing error
Dynamics365 out of box powerbi report Customer credit and collections is failing with below error. Invalid object name ‘dbo.CustCollectionsBIMeasurementsV2_CustCollectionsBICustTrans’.. The exception was raised by the IDbCommand interface.
Gray Television
Sharepoint- Microsoft Teams & Sharepoint Training
We would like to request training for MS Teams and Sharepoint for the purpose of migrating physical file servers to MS Teams/Sharepoint.
Blue Cross Blue Shield North Carolina
Power Apps- DSE - BCBS Power Apps
Dedicated Support Engineer Assignment.
RPM Specialty Products Group
Power BI- Purchase and spend analysis embedded PBI report has errors
Hello MSP support, When we use the following Power BI report which is embedded in D3FO, we get errors (see image attached). Can you advise what we need to do in order to fix this report? Procurement and sourcing > Inquiries and reports > Purchase performance analysis > Purchase and spend analysis.
Blue Cross Blue Shield North Carolina
Power BI- DSE - BCBS - Power BI
Dedicated Support Engineer Assignment.
RPM Specialty Products Group
Power BI- Purchase and spend analysis embedded PBI report has errors
Hello MSP support, When we use the following Power BI report which is embedded in D3FO, we get errors (see image attached). Can you advise what we need to do in order to fix this report? Procurement and sourcing > Inquiries and reports > Purchase performance analysis > Purchase and spend analysis.
Caterpillar
Power BI- DSE - CAT - Business Intelligence
Dedicated Support Engineer Assignment.
Inova Health System
Office 365- Dynamics 365 - UnknownIncomingEmailIntegrationError
An unknown error occurred while receiving email. Mailbox Sowjanya Guduru didn’t synchronize. The owner of the associated email server profile Hybrid server has been notified.Email Server Error Code: UnknownIncomingEmailIntegrationError \-0- We were successful in connect our exchange server on 05/10/2023 to CRM, however in a few days we can no longer send emails and get the error message shown. You can see our last attempt at validating our exchange connection here or attached is shown as currently being successful. We have also checked that the service account that manages the server profile has permissions needed to execute email traffic and it does.
- Exact description of what is happening. please see above.
- What steps have you taken to resolve? please see above.
- When did this problem start? 05/19/2023
- Who or how many users does this affect? This impacts all of the foundation. About 100 users directly/indirectly.
Tegna
Microsoft Viva- PA - Microsoft Viva Support
We are looking at Viva for our corp comms tool. Do you have expertise with Viva and are you able to support none IT staff with “how to” questions? If so, what is the depth and practice you have around this? MS has indicated that they require a support agreement to assist with questions, etc.
Gen Re – General Reinsurance Corporation
QnA Maker- Unable to View/Manage sources in Custom Question Answering project
Hi Team, We are unable to View/Manage sources in a Custom Question Answering project in language portal. Subscription: Enterprise Dev/Test Language resource: gen-re-edt-q-qas-cog Question Answering project: QNAMaker-Dev1 But when we go to “Edit knowledge base” blade, we could see the Question Answer Pairs but it shows “0 unstructured sources and 0 structured sources”. We already have a case opened with MS on this with tracking ID 2305190040002223 and attached the latest email from them.
e2open, LLC
Microsoft Windows Authentication Protocol- PA - KRBTG Password reset automates every 6 months
Currently, we are doing the KRBTG password reset by Script (Public-AD-Scripts/Reset-KrbTgt-Password-For-RWDCs-And-RODCs.ps1 at master · zjorz/Public-AD-Scripts · GitHub) to run manually, but we need something automated to run every 6 months and make sure to replicate the password change to all the DC then, reset the password for other DC.
Etihad Airways
SQL Server- [DIL-Upgrade] - Data Integration Layer - 2 Job Failure
Dear Team, We currently upgrading our “Data Integration Layer” platform consisting of database & 26 jobs. Currently we are able to successfully upgrade 24 jobs in our PreProduction environment, whereas facing issue with two jobs. Please refer to the attached PDF file, consisting of detailed description of the issue & the environment, for which we would need your support!
3U Technologies LLC
Cyber Security- Microsoft 365 cybersec review/assessment
We need to complete an assessment of our M365 Tenant relative to NIST 800-171v3. Need to put together a Plan of Action to mitigate/remediate compliance issues as a part of the assessment I would like to break this up into segments, expect this will consume a lot of time to complete
Highmark Health
Microsoft Purview- MS Purview Controls Review
I would like to arrange a meeting to discuss the following item(s) regarding MS Purview configuration: \- MS Purview SIT (sensitive information type) tuning Best Practices with Highmark’s current configured policies. \- Review the Activity Explorer to determine why some alerts are triggering as external sharing when they appear to be internal.
Hasbro
Microsoft Sentinel- PA - Sentinel health assessment
- Current setup and connectors: Sentinel setup is covering Microsoft services connectors only. Only 8 connectors are active
- Client team were unable to run queries successfully against the logs in Sentinel
- Client team wanted to verify that Sentinel was setup correctly
- Monish ran sample queries against SharePoint online to simulate a malicious user downloading a file from a given SharePoint Online site. Queries executed successfully.
Clariant International Ltd
Microsoft Teams- PA - Teams Media Quality Assessment
What is the issue about ? Basically lack of quality in Teams meetings: • Screen sharing having outages or considerable delays • Really bad quality in Video • Some call drops Important: Before you point to the network, we already think our issues could be related to some network limitations. What we need from your team is:
- Guide us to do a proper and step by step root cause analysis
- Provide evidences that our issues are caused or originated on the network (which segment ? WAN / LAN / ISP ?) a. How can this be checked ? b. Although Microsoft KPIs are showing packet loss, the ISP doesn’t identify any packet drop
- Help us to understand and validate the mechanism used by Teams clients to adapt the bandwidth and resolution is working as expected and causing also these problems
- All your expertise will be very much appreciated to help us to identify where are issues are originated
Caterpillar
Office 365- Question regarding RMS template encryption
Hello, we were doing some testing with applying the default RMS template “Do not forward”. When we receive the message, it contains a link to the message, which works properly. But it also includes an attachment with the extension .rpmsg. It does not seem to open and upon investigating there were suggestions to use outlook and AIP viewer to look at it. I’m not particularly convinced that the attachment is to be used for that. Is there any insights into this attachment type and how it should be used?
Serco Inc
Windows Defender- Defender WDAC/CIP policy deployment best practices
Hi, can we please get an engineer who is familiar with the deployment of unsigned WDAC CIP policy files to a non co-managed estate using SCCM and group policy to advise us whether the methods we are deploying CIP policies for WDAC are the best practices as far as a robust deployment of WDAC to a secure environment. If someone could please be available for any time between 10am and 13:00 tomorrow 04/07/23 to discuss that would help. Please send me a mail if you are unavailable to talk I am happy to work over mail or teams chat.
Grant Thornton
Microsoft Defender- Defender Cloud App Discovery issue
Hi Team, Having issues with app discovery, couldn’t get discovered resources and Target URL where files are being transferred, The Defender for cloud apps not sensitive to detect this app
Idemia
Microsoft SharePoint- Create a custom theme in SharePoint 2019 on-premises
I have looked for a way to create a custom theme, really I want to add #430099 to the custom theme for our IDEMIA custom color. I have done so (one of the two attachments) in SharePoint Online (SPO) however that was with PowerShell and PnP. I go to Microsoft’s site and I do NOT see a way to do so that isn’t expired or is not SharePoint Online. I tried to follow this to add a color, however it is not working: https://learn.microsoft.com/en-us/sharepoint/dev/solution-guidance/use-composed-looks-to-brand-sharepoint-sites
Southern Company Services, Inc.
Microsoft Intune- Devices are not registering with AAD/Intune after implementing Co-Management
Approximately 1,000 machines are not registering with AAD or registering with Intune after co-management was configured.
Masco Corporation
Microsoft Dynamics NAV- Navision 2015 Web Services
Attempting to configuring/connecting to Navision via webservices. I had already created a web services connection to my development server but cannot get it to work for my production server. The browser is coming with site cannot be reached. Hosts file check, DNS check, Ping check and working to the DNS name but cannot bring up the web page.
Enviva Inc
Microsoft Power Automate- Power Automate/OCR bugs
Hello, We have few issues with our flows, 1. Sometimes the flow is not processing the vendor attachments and they remain in the mailbox for ever. 2. Few invoices are coming to D365 without attachments 3. Sometimes data is not being picked up from the invoice attachment such as Project related data, ledger account data, sales tax, tax groups, PO number.
WEC Energy Group
Microsoft IIS- Request Entity Too Large error during file transfer in IIS. Requesting programmatic solution.
We have a home grown api that receives requests to download files. In the process of doing this, the user experiences a Request Entity Too Large error. We have changed the appliation configuration in IIS (as a band aid) to up the (system.webServer/serverRuntime) UploadReadAheadSize from 49152 to 500,000. This resolves the error for the time being. Based on the history of the calling app, up this point the highest payload was 143k. So this current setting should suffice as long as the requests to make any major changes. However, we want a better solution. The weakness in the solution we are using is that it does not handle all requests. We don’t control the apps that call these api’s. Should there be a request that exceeds 500k, we don’t know how this setting will hold up. For the sake of consistency within our application suite, we don’t want to have to support custom settings per application. We also don’t want to be in a position where this configuration setting changes the memory requirements for the application. In contrast, we have another api that is capable of receiving payloads up to 2.5mb without making any changes from the default UploadReadAheadSize. We cannot seem to figure out why the behavior is different for one api vs. the other. The api’s run in the same site on the same hardware using the same .Net version (4.8) Please let me know what else you would want to see to help you look into this issue further. The following files were uploaded:
Screenshot 2023-08-03 160216.png
Screenshot 2023-08-03 160415.png
Web.config
Grant Thornton
Microsoft Defender- Defender Cloud App -Policy Detection issue
Hi Team, We are having an issue with the below threat Policies detection alerting many false detections. The filter was applied as per Microsoft recommendations and see there is backend changes on microsoft showing as last policy update. We didn’t perform any changes from our end on those policies. Multiple failed user login when a user password changes as per rotation policy but still alerting for all user app logged in. Mass download by a single user when a normal user download a files on his managed desktop, File shared with Unauthorized domain. No Traces of an Alert for the file uploads to Cloud domain.
GuideStone Financial Resources of the Southern Bap
SCSM- System Center Service Manager 2019 - database issue
Hello, Microsoft System Center Service Manager 2019. Recently moved data warehouse to new SQL server. Performed a backup/restore. However, discovered approximately 40 service request tickets that did NOT make it to the new SQL server. thank you
SPOK, Inc
PIM- PA - Privileged identity management
We want to look at implementing a solution for our on premises servers for Privileged identity management. We currently have a server infrastructure that does not have any privileged access and is accessible via normal username/password credentials. I’d like to see if you have anyone on the MSP side that is knowledgeable in this and can have an advisory session with to discuss our needs and next steps. This is all for our on-premises environment, just so we’re on the same page on what technology we need. Just be advised that we aren’t sold on a Microsoft solution yet (I’ve got questions regarding the viability of the longevity of the on-premises solution). We might end up going with another (non-Microsoft) solution, but I wanted to get all the information possible so we can make an informed decision.
Grant Thornton
Microsoft Defender- User Groups are not updating in Defender Cloud app
Hi Team, We are seeing not all users’ groups are getting updated in the Defender cloud app. In total, we can only see 5.8K users. But there are more than 12K users in Azure AD. I don’t see any automatic update in the user group happening last Modified date is showing as none. So the internal users which are not being discovered via group still getting detected as external and policies are being enforced. The following files were uploaded:
- Users.JPG
Surgical Information Systems. LLC
Managed Kubernetes Service(AKS)- Need assistance regarding the new changes to the default OS security updates mechanism for AKS
We got this communication from Microsoft. Changes to the default OS security updates mechanism You’re receiving this notice because you’re currently using Azure Kubernetes Service (AKS) and haven’t chosen an explicit OS security mechanism. To avoid disruptions stemming from unmanaged Canonical nightly security updates, AKS will disable unmanaged Canonical nightly updates by 2 September 2023 on clusters that haven’t specified an update option explicitly, mapping to the option “None” in the node OS upgrade channel feature. Recommended action In order to keep your clusters secure, AKS strongly recommends using and proactively moving to auto-upgrade node-image or node OS upgrade channel – SecurityPatch; you can set maintenance windows for these channels. Additionally, ensure that your clusters leverage pod disruption budgets to protect your services. If you wish to continue receiving unmanaged Canonical nightly security updates, please explicitly opt-in for the unmanaged channel option. These aren’t controlled by AKS, and you can’t set a maintenance schedule on them. \—————— 1.This documentation says (preview) in the headline. Does this mean that the whole node OS auto upgrade feature is in a preview state or is it only the path called SecurityPatch that is in preview, which can be seen in the table further down on the page? If the whole feature is preview it seems wrong to use the automated setup for production loads. Can you help us clarify which is the recommended thing to do for a production AKS cluster? 2. It is said that if we don’t explicitly specified an update option, it will be set to the option “None”. However, the default behaviour when a new cluster was deployed until now was: To protect your clusters, security updates are automatically applied to Linux nodes in AKS. These updates include OS security fixes or kernel updates. Some of these updates require a node reboot to complete the process. AKS doesn’t automatically reboot these Linux nodes to complete the update process. Concerns we have now is that or nodes won’t get patched, we have Linux Node Pools and Windows Node Pools Docs: https://learn.microsoft.com/en-us/azure/aks/auto-upgrade-node-image#using-node-os-auto-upgrade
WR Berkley
Microsoft SQL Server- SQL Server Exclusions for Crowdstrike
We are working with your team to tune Crowdstrike to be less impactful with SQL workloads. We are looking to get a call setup with Crowdstrike and Microsoft / MSP to discuss what exclusions or policy tweaks we should have in place with Crowdstrike to reduce impact.
Lincoln Financial Group
Office 365- Graph API not returning user-agent in response headers
We are trying to capture user Outlook (Change Notification) events using Microsoft Graph. We are able to query using Graph API to get the necessary information but the response header that is being returned doesnt have User-Agent information in it. Would graph API pass on the user agent information from which the request first came from? Our Web application firewall blocks traffic without user-agent information so we wanted to see how we could get Graph API return this information. We need to know whethre the response header would contain user agent infor or not, because that is vital when the reponse gets back to AWS, so that it will allow that response in. Thank you . The following files were uploaded:
- GraphAPI-Response.docx
Lifebridge Health Inc
Microsoft Graph- Need assistance with getting a registered application connected to MS Graph
We have an app resitered with sufficient Graph API permissions. Just need assistance setting up the app to login when necessary The LB application admin is copied on this
Revlon Consumer Products, LLC
Microsoft SharePoint- SharePoint issue has been closed, opening new ticket to check on the same issue
User : Carlos is not able to set up the manage powerpivot data refresh schedule for the reports he created. He is a site collection admin, has full control like I do but I am able to schedule the refresh and he does not. He gets an error everytime with a correlation ID. attached is merge-splog file of that correlation, I am not able to find the error message. This is a sharepoint 2013 site.
Caterpillar
Office 365- Hide "Try the new look" toggle button
Hide “Try the new look” toggle button. Because we are getting issues in new look. Environment url – productsupportdev.crm.dynamics.com The following files were uploaded:
NewLook.png
Caterpillar
Office 365- Office 2016,2019, and 2021 question
These questions come around Office standalone versions 2016, 2019 and 2021. 1. [Microsoft 365 Apps, Microsoft 365 suite] Connecting Office 2016 and Office 2019 to Microsoft 365 reaches end of support on October 10, 2023 [MC482559] We have been narrowing down the list of potential impacted users, Is there any recommendation on finding exactly who will be impacted by this change? 2. [Azure Information Protection, Exchange Online, Microsoft 365 Apps, Microsoft 365 for the web, OneDrive for Business, SharePoint Online] Microsoft Purview Information Protection moving to AES256-CBC mode for encryption of email and Office fi… [MC590144] The extent of what is impacted is not clear for Office 2016,2019,2021. Does it require we use IRM on those clients in order to be impacted if we do not allow have users connect to on premises Exchange? We do not use AIP for machines within our environment without an E3 license and M365 apps.
Amedisys
Microsoft Code Signing- Need some direction on steps to renew Code Signing Cert expires 10/12
Need some direction on steps to renew Code Signing Cert expires 10/12 I’m not super familiar with the process to generate a CSR in order to renew an existing Code Signing Cert. The code signing cert is internal. It was not generated by a 3rd party. I’ve set a severity level of 4, but on the 12th it pop to a 1!
Grant Thornton
Power BI- We are having issues refreshing a dataset with tables connected to a Dynamics 365 environment via a
Hello Team, Exact description of what is happening–> Please open a Microsoft Premier support ticket with their Power BI team. We are having issues refreshing a dataset with tables connected to a Dynamics 365 environment via a TDS endpoint. This seems to be happening on the server side, so we need Microsoft to look into this. 2)What steps have you taken to resolve? –> Attempted to refresh the tables locally and on the PBI service. While the data preview works and some tables are able to refresh with no issues when refreshing locally one table at a time, other tables run into an error while trying to refresh. 3)When did this problem start–> Today. This was a dataset that was worked on a few of months ago that we have started working on again. We did run into similar issues in the past but were also able to refresh it successfully on some occasions. 4)Who or how many users does this affect–> Not relevant. 5)Contact Person Name, Number, Email ID
Services We Provide
Our team of experts ensures that your business stays ahead of the curve with the latest technology solutions. We specialize in providing managed services for
Microsoft Cloud (Azure) Optimization
Managed Services for Microsoft Cloud (Azure) Optimization.
Microsoft 365
Managed Services for Microsoft 365
Cybersecurity
Managed Services for Cybersecurity
App Development and Integration
Application Development and Integration
Dynamics Apps
Managed Services for Dynamics Apps (F&O, BC, CRM, Marketing, HR, Field Service and Others)
DevOps Services
Managed Services for DevOps, Docker, GitHub, SQL Server and others