Sign-ins, conditional access, MFA, risky users — the #1 ticket source for MSPs.
Integrations
Ten v1 integrations shipped end-to-end. Each is read-only on Team, and unlocks write-side actions on Pro (isolate device, revoke session, restart service). MSP-native tools follow in Q3 2026.
Shipped v1
Identity
Security
Alerts across identity, endpoint, and email. Feeds the security correlation layer.
Productivity
Service health, Exchange, OneDrive, SharePoint. Tenant-level degradation events per end-customer.
Observability
Log Analytics, metrics, alerts across every subscribed Azure service.
Metrics, APM, logs, monitors — surfaces SLO burn and latency across every customer environment.
Communication
Post incident updates into per-customer Teams channels. Adaptive-card actions in Pro tier.
The MSP's own internal channel plus per-customer Slack Connect channels for customer comms.
On-call
Multi-service pages routed by end-customer + incident severity.
SCM
Org audit log, deploy events, and branch-protection changes for customers with in-house dev teams.
Errors
Error spikes, release regressions, performance issues — for customer apps you help operate.
MSP-native tooling · Q3 2026
The four MSP-specific integrations MSPs run every day. In active development — first two land in July, the other two follow in August.
PSA / ticketing sync. Auto-open, update, and close CW tickets against Opsfluence incidents.
Managed EDR + ITDR detections across all your end-customers, correlated with Entra + Defender.
Endpoint threats, agent health, live-response session events per customer site.
DNS block events, category classification, per-org rollups — early signal for phishing + malware.