Aldridge | Existing Established Partner | Chad Hiatt | chiatt@aldridge.com

Want to be able to Use LG for all fully managed customers and heavy Azure shop

This partner is not using LG for all customers and may not progress further quickly as a result. This would be a catalyst to get them to use for more sooner rather than later.

Key things I’m hoping Liongard will help us discover, enumerate, and report upon cross-client.

Subscriptions

Microsoft Entra ID / Azure Active Directory

User Accounts enumeration

Groups enumeration and membership

User Account MFA configuration (basic, conditional [profile], or adaptive [profile])

MFA profiles (eg, Conditional with rule set + applied users)

Security

User(s) with privileges to manage the environment

Microsoft Azure Virtual Servers

Machine types, attached disks and types (type, size, georedundancy)

Associated Azure Virtual Network(s)

Associated Azure Backup configuration/profile (frequency, retention, georedundancy)

Associated operating costs (incl if it’s using a Reservation or note; machine-level, disk-level)

Microsoft Defender for Cloud configuration / exceptions

Performance metrics

Orphaned, unutilized reservations (Cost Center exceptions) for virtual machines or storage

Microsoft Azure Virtual Networking

Virtual network definition (name, subnet)

S2S IPSEC/VPN configuration(s)

P2S IPSEC/VPN configuration(s), authentication configurations

Public IPs and defined forwards

Performance metrics

Microsoft Network Security

Network ACLs

Microsoft Azure SQL Instances + Azure SQL Managed Instances

Allocated platform type

Allocated storage, utilized storage

Performance metrics

Microsoft Defender for cloud configuration / exceptions

Orphaned, underutilized reservations (Cost Center exceptions) for platform types or storage

Microsoft Azure Virtual Desktop (AVD)

Environment width/depth configuration

User privileges

Storage environment configuration (volumes, profiles, data)

Environment persistence configuration (1:1, dynamic alloc/delloc, etc)

Microsoft Azure Files

Storage accounts, types, allocation, utilization

Microsoft Azure Functions

Defined groups; contents

Microsoft Azure Backup

Per Profile

Resource(s) protected

Frequency, retention

Storage vault configuration; capacity, utilization, georedundancy

Hard-delete/soft-delete configuration setting

Backup jobs history (success/fail)

Add Azure DNS to the list, too! Zones, DNS records.

We use Azure as our preferred platform for:

Identity services (all clients; Entra ID fka AAD w/ conditional MFA)

Public cloud virtualization (~200 servers across ~60 client organizations; quantity continues to grow)

P2S VPN (our go-to is Azure P2S VPN w/ EID/AAD conditional MFA, and a S2S IPSEC to on-prem; versus direct user P2S to on on-prem firewall)

AVD for client organizations needing a remote desktop or virtualized end user workspace environment