Azure Lighthouse
An Azure service that provides secure managed services and access control for partners and customers.
78 questions
1 answer
Use Azure Policy at scale at an MSP
Hi there, I am starting to use Azure Lighthouse and Policy at a MSP. I want to use Azure Policy to manage all the delegated customer subscriptions. It seems that there is no built-in option to just push initiatives and policies to subscriptions in…
asked 2024-10-11T12:08:17.58+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(252.8, 56.00000000000001%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EL9%3C/text%3E%3C/svg%3E)
LaurentvanMastrigt-9976
25
Reputation points
commented 2024-11-01T09:06:00.71+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(268.8, 47%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERP%3C/text%3E%3C/svg%3E)
Rahul Podila
110
Reputation points Microsoft Vendor
0 answers
Navigating Azure Arc Integration for Windows Server 2012: Key Considerations and Potential Pitfalls
Urgent : We have an on-premises Windows Server 2012 serving as a service provider for a client's production application. We’re considering mapping it to Azure Arc to obtain Windows Update Extended Security Updates (ESU). Could you help us understand the…
asked 2024-09-04T21:12:24.8666667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(172.8, 96%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EV%3C/text%3E%3C/svg%3E)
varunb55
0
Reputation points
commented 2024-10-22T06:52:55.89+00:00
Rahul Podila
110
Reputation points Microsoft Vendor
0 answers
Lighthouse Offer - I cannot add System Managed Identities to my customers Logic Apps
I have my roles delegated, I am in the correct AD groups on my tenant. However, when I got into a Logic App, and try to assign a System Assigned Managed Identity, I keep on getting the following error message: Failed to add Resource as Microsoft…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(35.2, 49%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EC%3C/text%3E%3C/svg%3E)
0 answers
How to fix error when deploying managed service template
Hey, I'm having this problem after deleting my first successful attempt at creating a managed service template. After deleting my first template that validated successfully and was created, but later deleted because of a mistake. I am unable to validate…
asked 2024-09-29T01:30:48.7366667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(278.4, 20%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ER%3C/text%3E%3C/svg%3E)
ringyourbell717
0
Reputation points
edited the question 2024-09-30T03:49:50.6733333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(224.00000000000003, 86%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
AmaranS
6,805
Reputation points Microsoft Vendor
0 answers
Managing Customer Sentinel through Azure Lighthouse
Hi Experts, Please help. I have registered our customer on our Azure Lighthouse. I can see their Sentinel with data in it, but when I try to check data connectors, I am getting below errors: Can't see any connector connected, but when customer Global…
asked 2024-08-31T06:52:45.7733333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(6.4, 91%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENS%3C/text%3E%3C/svg%3E)
Naveen Sharma
20
Reputation points
asked 2024-08-31T06:52:45.7733333+00:00
Naveen Sharma
20
Reputation points
2 answers
Azure Lighthouse - Assigning IAM permissions to users
Aloha, all: My MSP team and I have been using both Azure and M365 Lighthouse for a few months now. Now we're pretty comfortable with it, we've an ongoing project to remove all our native accounts from customer environments. Going through the benefits and…
asked 2024-08-20T13:31:05.6933333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(121.6, 64%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESW%3C/text%3E%3C/svg%3E)
Shalom Washington
0
Reputation points
edited the question 2024-08-30T14:47:36.47+00:00
SadiqhAhmed-MSFT
46,036
Reputation points Microsoft Employee
2 answers
cross tenant alerting
Hi,following on from this notification https://azure.microsoft.com/en-us/updates/sending-a-log-search-alert-with-cross-tenant-target-resource-will-no-longer-be-supported/ the part 'As of March 15, 2024, this behavior will change and sending a log search…
asked 2024-05-06T16:27:50.5433333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(304, 44%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERM%3C/text%3E%3C/svg%3E)
Robert Macdougall
20
Reputation points
answered 2024-08-28T11:55:25.6466667+00:00
Robert Macdougall
20
Reputation points
3 answers
Azure Ligthouse User Access Admin group not working
In Azure AD I am assigned to an Azure Lighthouse group that is supposed to give me the 'User Access Administrator' role to all subscriptions from another tenant that is enrolled in Lighthouse. When I view my access on the subscriptions, I can see that my…
asked 2023-05-16T15:45:33.9466667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(256, 52%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EO%3C/text%3E%3C/svg%3E)
ObnoxiousRicotta
5
Reputation points
commented 2024-07-24T18:10:34.2166667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(89.60000000000001, 77%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EOE%3C/text%3E%3C/svg%3E)
Osejobe Ehichoya
0
Reputation points
3 answers
Lighthouse
Hello All, I gave Contributor role (on a subscription) to users via Lighthouse to manage a customer. The users get access with no problem to the customer subscription, can start and stop VM, create a resource group, start and stop backup, etc. The…
asked 2024-06-19T10:07:04.94+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(297.6, 96%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETG%3C/text%3E%3C/svg%3E)
Tristano,G,Giuseppe,JBP12 R
91
Reputation points
commented 2024-07-19T06:23:21.5433333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(275.2, 41%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAM%3C/text%3E%3C/svg%3E)
AnuragSingh-MSFT
21,386
Reputation points
1 answer
Is CSP status required required for using Azure LightHouse feature?
Is CSP status required required for using Azure LightHouse feature? Or can I as a shared Service Center also use Azure Lighthouse?
asked 2024-07-08T12:54:22.04+00:00
Raf Nijs
1
Reputation point
commented 2024-07-10T04:34:52.3833333+00:00
Andreas Baumgarten
110.8K
Reputation points MVP
0 answers
Cross-Workspace Auto-Disabled Analytics Query
Hello, We are using Azure lighthouse, and we are utilizing the cross-workspace query in analytics to run in all the tenant from master tenant. The Cross-workspace query running using the function, please find the function code below, union isfuzzy =…
asked 2024-07-04T11:13:41.94+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(275.2, 57.99999999999999%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESS%3C/text%3E%3C/svg%3E)
Sathish Sivaprakash
0
Reputation points
commented 2024-07-04T12:53:18.66+00:00
Sathish Sivaprakash
0
Reputation points
1 answer
One of the answers was accepted by the question author.
SUBSCRIPTION I AM (RBAC)
Hello! I'm having a problem with Azure that I can't find a way to remove a Backup Contributor role in Azure. Case: I have an Azure subscription and recently assigned the Backup Contributor (RBAC) role to another Azure subscription. Now I want to…
asked 2024-05-28T18:52:25.39+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(12.8, 8%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGM%3C/text%3E%3C/svg%3E)
Gabriel Moraes
370
Reputation points
accepted 2024-06-03T13:43:53.73+00:00
Gabriel Moraes
370
Reputation points
0 answers
As an MSP, can I use Lighthouse to connect to our client tenancies and create client user accounts, assign M365 Business Premium licences and apply consistent Intune policies across all the tenancies we manage on behalf of our clients?
Reading MS sales literature, its my understanding that Lighthouse is a management tool for IT MSP's to apply consistent security policies and device settings across all the client tenancies we manage. As an MSP, we would like to create client user…
asked 2024-05-14T14:56:52.3066667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 63%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGW%3C/text%3E%3C/svg%3E)
Greg Wright
0
Reputation points
edited the question 2024-05-14T15:36:16.5633333+00:00
Greg Wright
0
Reputation points
1 answer
Azure Lighthouse PowerShell
Is there any way to use PowerShell to interrogate Azure Lighthouse customers and their delegations? I have a need to get the Customer Name for the HomeTenantId of the subscriptions delegated to my tenant.
asked 2024-04-18T20:45:29.1133333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(89.60000000000001, 28.999999999999996%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMD%3C/text%3E%3C/svg%3E)
Monk, David
0
Reputation points
commented 2024-04-22T08:22:56.5366667+00:00
AnuragSingh-MSFT
21,386
Reputation points
2 answers
One of the answers was accepted by the question author.
Kudu via Lighthouse delegated permissions
I have delegated access to Azure resources in a third-party tenant using Lighthouse, and this works fine via the portal; users receive the roles expected (typically Contributor). However, they are unable to access Kudu (at…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(153.6, 92%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
1 answer
One of the answers was accepted by the question author.
On Managend tenant Subscription required
Hello, we have create the offer via Azure Portal and within the custom tenant all definitions (roles, IDs etc.) are visible, but on our site under customer we don't see the customer. Currently in our tenant, no subscription exist. But we need one in our…
asked 2024-03-15T08:27:00.11+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(70.4, 6%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ELC%3C/text%3E%3C/svg%3E)
Lux, Carsten
51
Reputation points
accepted 2024-03-15T15:51:18.3633333+00:00
Lux, Carsten
51
Reputation points
1 answer
How a can Create a read only user for lighthouse sentinel workbooks?
Dears, I have a lighthouse tenant where I added multiple sentinel workspaces. However, I need to have a user where as soc analyst enable only to read dashboards for multiple clients or tenant? can someone help me with this? Regards,
asked 2023-12-11T11:36:14.09+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(35.2, 72%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGH%3C/text%3E%3C/svg%3E)
georges hayek
0
Reputation points
commented 2023-12-19T22:25:06.4133333+00:00
JamesTran-MSFT
36,631
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
Reporting on DKIM status across multiple tenants
I work at an MSP and we'd like to find a way to stay on top of our client DKIM status. We can do this one-by-one by logging in and going to the Defender admin center, of course, but that's a manual process. Is there anyway to get reporting for this? We'd…
asked 2023-12-14T22:38:18.0766667+00:00
David Dawson 100
86
Reputation points
commented 2023-12-15T16:54:10.4966667+00:00
David Dawson 100
86
Reputation points
0 answers
MSSP Lighthouse to Client Lighthouse Integration?
Looking at the Azure Lighthouse use cases, i see it best integrates with Azure Sentinel. That is how the Managed Security Service Providers are building the solutions and services. However is there a possibility of integrating Managed Security Service…
asked 2023-11-22T06:04:07.43+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(92.8, 57.00000000000001%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMR%3C/text%3E%3C/svg%3E)
Mandar Ratnakar Kulkarni
0
Reputation points
commented 2023-12-13T10:49:21.74+00:00
Clive Watson
6,436
Reputation points MVP
0 answers
Azure Lighthouse Playbook execution permission error
As a liaison between two companies, I have established Azure Lighthouse to delegate Sentinel management. However, I'm currently experiencing authorization issues with the delegation. The service provider can modify/assign/update incidents, but cannot run…
asked 2023-10-23T18:20:21.12+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(236.8, 36%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAA%3C/text%3E%3C/svg%3E)
Ali Ahmed Dar
20
Reputation points
commented 2023-11-10T03:11:12.6466667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(281.6, 17%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGM%3C/text%3E%3C/svg%3E)
Givary-MSFT
32,986
Reputation points Microsoft Employee