intro to power platform centre of excellence starter toolkit
TRANSCRIPT
Intro to Power Platform Centre of Excellence Starter Toolkit
Presented by : Shonak Mediratta
Topics
• Introduction
• Breakdown of the CoE Kit
• Overview of Admin module
• Overview of the Governance Module
• Overview of the Nurture Module
• App Auditing Process Walkthrough
• Training Management Process Walkthrough
• A few limitations…
Introduction
Shonak Mediratta
• Power Platform/CE Solution Architect
• Work for Avanade UK
https://www.linkedin.com/in/shonak-mediratta-a564662/
What is a Power Platform CoE Kit ?
A Centre of Excellence (CoE) in an organization drives innovation and improvement and brings together like-minded people with similar business goals to share knowledge and success, while at the same time providing standards, consistency, and governance to the organization.
The Microsoft Power Platform CoE Starter Kit is a collection of components and tools that are designed to help you get started with developing a strategy for adopting and supporting Microsoft Power Platform, with a focus on Power Apps and Power Automate.
https://docs.microsoft.com/en-us/power-platform/guidance/coe/overview
Briefings & Demos
Proof of Concepts
First Production App
Multiple Production Apps
Center of Excellence
Customer engagement focus
Building Blocks
• Gain Insights into your Power Platform adoption
• Establish Audit and Compliance Process
• Accelerate your adoption by thriving with a community of workers
SCOPE
VALUE • Discipline to use case development
• Ensure selection of highest value work
• Enterprise awarenessand excitement
• Showcase the valueof analytics
• Make analytics come alive
ADMINISTRATION GOVERNANCE NURTURE
• Enables sharing on best practices
• Accelerated on-boarding of new makers
• Letting the makersconcentrate on realbusiness problems withoutworrying about consistentlook and feel
THEMING
• Create and manage themes for consistent look and feel
Nurture
Governance
Administration
CoE Kit Breakdown - Component Grouping
CoE Kit
Solution Aware
Components
Core
Components
Solution
Theming
Solution
Audit Log
Solution
Governance
Solution
Nurture Solution
Non-Solution
Aware
Components
Power BI
Dashboard
Power BI
Embedded Apps
Audit Log ( Basic
Auth)
SharePoint
Template Library
SharePoint
Archive Library
Theming
http://aka.ms/coestarterkit
Administration
Co
re C
om
po
nen
tsSet up the core
components
Apps
Flows
Connections
Au
dit
Lo
g
Collect Audit
Log Data
Po
wer
BI
Set up Power BI
Report
Administration
Administration - Core Components
Administration
Centre of Excellence – Core
Components Solution
Entities
Flows
Canvas
and Model
Driven
Apps
Administration - Core Components
Administration
CoE – Admin| Sync
Template V2
CoE – Admin| Sync
Template V2 (
Apps)
CoE – Admin| Sync
Template V2 (
Connectors)
CoE- Admin | Sync
Templates V2
(Custom
Connectors)
CoE – Admin | Sync
Templates V2
(Flow Action
Details)
CoE – Admin | Sync
Templates V2
(Flows)
CoE – Admin | Sync
Templates V2
(Model Driven
Apps)
CoE – Admin | Sync
Templates V2
(Sync Flow Errors) CDS
Power Apps App Flow Action Detail Flow Sync Flow Errors Power Apps ConnectorEnvironment Power Apps App
Represents an App
App Type (Canvas,
Model Driven,
SharePoint Form App)
The following notable
information is
available for each
App:
• Last Launched on
• App Plan
Classification
(Standard,
Premium,
Extended)
• Shared Users
• App Orphaned
Represents an
App
App Type
(Canvas, Model
Driven,
SharePoint Form
App)
Represents the Environment
object, which contains apps,
flows, and connectors. The
following notable information
is available for each
environment:
• CDS Instance
Environment Maker
(Created by)
• Region
• Type (Trial, Developer,
Production)
• Number of Apps (rollup)
• Number of Flows (rollup)
• Number of Custom
Connectors (rollup)
Represents the
set of actions
that occur in a
flow. This entity
has a n:1 link
with the Flow
entity
Represents a flow. The
following notable
information is available
for each flow:
• Environment
• State (Started,
Suspended, Stopped)
• Flow Orphaned
• Flow Trigger
Represents an App
App Type (Canvas,
Model Driven,
SharePoint Form
App) .The following
notable information
is available for each
App:
• Last Launched
on
• App Plan
Classification
(Standard,
Premium,
Extended)
• Shared Users
• App Orphaned
Represents a standard or custom
connector. The following notable information
is available for each connector:
• Is Custom Connector (yes/no)
• Maker (for Custom Connectors)
• Tier (Standard/Premium)
Power Platform Admin View Set App Permissions Set Flow Permissions DLP Editor DLP Customizer
Apps
Flows
Entities
Model Driven App Canvas Apps
Administration - Core Components Installation and Configuration - Prerequisites
Administration
Power Platform
Service Admin (or
D365 Service
Admin) for access
to all tenant
resources
Ideally a dedicated
environment with a
CDS instance
(Helps to have a
separate DLP policy
associated with the
CoE environment
to enable all the
admin connectors)
Power App
Premium License is
required for using
Common data
Service
Administration - Core ComponentsSolution Installation
Administration
Install the core components solution in the dedicated CoE environment
Administration - Core ComponentsEnvironment Variables and CoE Settings Entity
Administration
Environment Variables
Power Automate
Environment Variable
For a US environment: https://us.flow.microsoft.com/manage/environments/
For an EMEA environment: https://emea.flow.microsoft.com/manage/environments/
For a GCC environment: https://gov.flow.microsoft.us/manage/environments/
Admin EmailEmail address used in flows to send notifications to admins; this should be either your email address or a
distribution list
Email Header StyleCSS style used to format emails that are sent to admins and makers. A default value is provided. See the
provided default value.
Also Delete from CoEWhen the Admin | Sync Template v2 (Check Deleted) flow is run, this denotes if you want the items items
deleted from CoE (yes) or just mark deleted (no)
Administration - Core ComponentsEnvironment Variables and CoE Settings Entity
Administration
CoE Settings Entity
Company Name Your company name as it will appear in dashboards
Brand Logo Link to your logo as an image file
Brand Primary colour Hexadecimal value of your primary brand colour (#CCCCCC)
Brand Secondary colour Hexadecimal value of your secondary brand colour (#DDDDDD)
Email End User Support Email address for your helpdesk or user computing support team
Email Maker Support Email address for your Microsoft Power Platform maker support team
Tenant Type The type of tenant you have. Possible Values:
Commercial (use if your url is https://make.powerapps.com)
GCC (use if your url is https://make.gov.powerapps.us)
GCC High (use if your url is https://make.high.powerapps.us)
Link to Community Channel Link to your internal Microsoft Power Platform community (for example, Yammer, Teams)
Link to Learning Resource Link to internal Microsoft Power Platform learning resources, or you might link to aka.ms/PowerUp
Link to Policy Documentation Link to internal Microsoft Power Platform policies; for example, a Teams channel or SharePoint site
Version Set to 1.0
Administration - Core ComponentsFlow Configuration
AdministrationThe flows with the prefix Sync are required for populating and cleaning up data in the resource-elated Common Data Service entities
(Environments, Power Apps Apps, Flows, Flow Action Details, Connectors, and Makers).
In order to activate each of these flows :
1. Save a copy of each of the flows outside the solution and name it as per your preferred terminology (e.g. with a prefix of “COE” )
2. Fix the connections in context of the current environment
3. Turn on each flow ( the starting flow “Admin | Sync Template v2” which causes the other flows to trigger should be turned on as the last one.)
4. Now Trigger the master flow - “Admin | Sync Template v2”
CoE - Admin | Sync Template v2 (Apps)
CoE - Admin | Sync Template v2
As an example : CoE - Admin | Sync Template v2 (Apps) flow gets invoked to collect all the canvas Apps infomation from the environments
Administration - Core ComponentsAudit Log Sync
Administration
Note : Before configuring the Audit log sync , you need access to Office 365 Audit Log
Install the Audit Logs solution
Sync Audit Logs
Child – Sync
Audit Logs
Office 365
customer
Connector
The Audit Log Sync flow connects to the Office 365 Audit Log to gather telemetry data (unique users, launches) for apps.
Note : The Centre of Excellence (CoE) Starter Kit will work without this flow, but the usage information (app launches, unique users) in the Power BI dashboard will be blank.
Configure the customer connector Set up the relevant Flows
Option 1-Using Basic Authentication
1. Import the Swagger file present
in the COE Kit
Option 2-Using Azure App Registration
1. Azure AD app registration that will
be used in a custom connector
2. Configure the connector
contained from the solution
Configure the parent and child flows
present in the solution – update the
tenant ID details
If using the basic authentication, import
the flow template compressed (.zip)
package named SyncAuditLogs.zip from
the CoE
The solution contains all the components required Two options to configure the custom connector Flows will be configured based on the custom connector
option chosen
Administration - Core ComponentsPower BI Dashboard
AdministrationThe Power BI dashboard provides a holistic view with visualizations and insights into resources in your tenant: environments, apps, Power Automate
flows, connection references, makers and audit logs
Apps, Flows and Connectors etc being
created by the environment makers
Compliance centre logs
generated as apps are used
Sync flows
Audit log flows
CoE Environment CDS Instance
Administration - Core ComponentsPower BI Dashboard
Administration
Option 1- Get the Power BI dashboard from the AppSource
Go to the CoE Starter Kit page on AppSource and get it directly from
the AppSource Page
Option 2 - Configure the Power BI dashboard by using the .pbix file
In the Power BI Desktop client, open the PowerPlatformAdminDashboard.pbix file, which
can be found in the CoE Starter Kit and go to transform data on the Home ribbon
Power BI Dashboard Configuration can be carried out using one of the following options
Option 2 gives more flexibility in terms of modifying the dashboard to your own branding, and including
(or excluding) pages or visuals you want to see (or not see) in the dashboard.
Optionally we can also configure embedded apps in the CoE dashboard
Administration
Administration - Core ComponentsDLP Editor Canvas App
Canvas app that reads and updates data loss prevention (DLP) policies while showing a list of apps that are affected by the policy configurations.
Make changes to DLP policies See what impact each change
will have
Mitigate the risk of DLP changes'
breaking a flow or an app by
contacting makers
Administration
Administration - Core ComponentsDLP Customizer Canvas App
Canvas app you can use to add custom connectors to the Business Data Group of a DLP policy, or to enable HTTP connectors to a DLP policy
Administration
Administration - Core ComponentsSet App Permissions Canvas App
Canvas app that an admin can use to discover apps by app name, environment, or owner name, and change app permissions
Set a new app owner Add new viewers and editors
Change app permissions from
Editors to Viewers or Viewers to
Editors
Change app permissions from
Editors to Viewers or Viewers to
Editors
Administration
Administration - Core ComponentsSet Flow Permissions Canvas App
Similar to the Set App Permissions app, this canvas app lets an admin discover flows by flow name, environment, or owner name.
Add new viewers and editorsRemove Flow Permissions
Administration
Administration - Core ComponentsPower Platform Admin View – Model Driven App
A model-driven app that provides an interface used to browse items in Common Data Service custom entities that have been populated via the various flows and
associated connectors that form part of the CoE kit.
Gives an overview of resources in
the tenant Lean more about makers,
connectors, apps and flows
Interactive dashboards to get an
overview of the resources Complete App Audits – as per of
the governance process
Administration
Administration - Core ComponentsPower BI Dashboard
Govern
drive actions through
insights
Monitor
oversight of tenant
resources
Nuture
learn about your
community
The first page of the dashboard provides an overview of all areas and their purpose, in addition to
buttons to navigate to the different sections and pages.
Administration
Administration - Core ComponentsPower BI Dashboard - Example of a Monitor Dashboard
• Total Number of Environments (and Environments created this month)
• Total Number of Environment Makers
• Total Number of Custom Connectors
• Total Number of Apps, App Makers and Apps created this month
• Total Number of Flows, Flow Makers and Flows created this month
Administration
Administration - Core ComponentsPower BI Dashboard - Example of a Monitor Dashboard
• Total Number of Apps
• Total Number of Apps created this month
• Total Number of App Makers
• Total Number of Canvas Apps and Model Driven Apps
• Number of Production Apps (The definition of a Production App is 50
active sessions or active sessions by five unique users for the same app
in a month.
Administration
Administration - Core ComponentsPower BI Dashboard - Example of a Monitor Dashboard
• Total Number of Flows
• Total Number of Flows created this month
• Total Number of Flow Makers
• Total Number of Suspended and Stopped Flows
Administration
Administration - Core ComponentsPower BI Dashboard - Example of a Govern Dashboard
As an admin, you'll want to use the insights you gather to drive
action, such as performing risk assessments and identifying critical,
orphaned, or unused resources. The pages in the Govern section
enable you to drive action directly from within the Power BI report
through an embedded app
The app can be used to grant yourself or others ownership of a
resource, archive it, or delete it.
Administration
Administration - Core ComponentsPower BI Dashboard – Example of a Nurture Dashboard
The Maker page, at one glance, helps you see your top
makers, how many apps and flows those makers have
created, and your top active departments.
Governance - Core Components
CoE – Admin |
Compliance
detail request
Admin | App
archive and
clean up – Start
Approval
Admin | Flow
archive and
clean up – Start
Approval
Admin | Find
and disable
flows that
leverage certain
connectors
Admin | Find
and add admins
as owners for
apps that
leverage certain
connectors
Admin | App
archive and clean
up – Check
Approval
Admin | Flow
archive and clean
up – Check
Approval
Power Apps App Flow Action Detail Flow Sync Flow Errors Power Apps ConnectorArchive Approval Power Apps App
User to store the information
about the App or Flow that
needs to be archived post
approval
App Archive and Clean up view Developer Compliance Center
Apps
Flows
Entities
Model Driven App Canvas App
Power Apps App Approval Flow
These entities are created as part of the Administration Core Solution
Governance
The Archive and Clean Up flows will archive unneeded apps to a SharePoint library. If you intend to use
those flows, you need to configure a SharePoint site and document library first.SharePoint
Library
Governance - Core ComponentsApp Auditing Process – Spanning across Administration , Governance and Nurture modules
Admin | Compliance
detail request
The flow iterates
through all the Apps in
the tenant and checks
whether the apps are
compliant
Email to App Owner
If the owner has not
submitted a business
justification and the
App is not compliant,
the flow sends the
email to the owner to
notify that the App is
not compliant with the
Company’s policy
Developer Compliance
Centre App
The App owner uses
the email with the link
to the Developer
Compliance centre to
open the same. The
Developer Compliance
centre App enables
the users to submit
details to make the
new App compliant.
Power Platform Admin
View
Business process flow
in the admin app helps
facilitate the auditing
process
App
Catalogue
Once the Admin is
satisfied the App can
then be published in
the App Catalogue
A
d
m
in
is
tr
at
io
G
o
v
e
r
n
a
n
N
u
rt
u
r
e
System System App Owner CoE Admin CoE AdminActors
System Modules
Governance
Nurture - Core Components
Admin |
Newsletter
with Product
Updates
Admin |
Welcome Email
Training in a
day | Feedback
Reminder
Training in a day |
Registration
Confirmation
Training in a
day |
Reminder 3
days prior to
event
Power Apps App Flow Action Detail Flow Sync Flow Errors Power Apps ConnectorIn a day attendees Power Apps App
Represents attendees that
have registered for a
Training in a day course by
using the Training in a day
Registration canvas app
App Catalogue
Apps
Flows
Entities
Canvas Apps
These entities are created as part of the Administration Core Solution
This library is used to store templates,
components, and documents that you want
to share with makers in your organization
SharePoint
Library
Nurture
Training Feedback FormForms Pro
Once configured the link can be pasted into the default value of your Training in a day - Feedback
Form environment variable.
In a day event
Represents available
training events created
through the Training in a
day Management canvas
app.
Training in a Day Management Training in a Day Registration
Nurture Training Process
Training in a Day -
Management
Training in a day -
Registration
Training in a day –
Registration
Confirmation
Training in a day -
Reminder 3 days prior
to the event
Training in a
day –
Feedback
Reminder
COE
Admin
Training
Attendee System System SystemActors
System
Modules
Nurture
Few Limitations to Keep in Mind
• Timeouts in the Admin | Sync Template V2 - if you see 429 errors in the flow run history occurring in the later runs,
• Configure concurrency in Foreach
Reduce concurrency in Foreach loops to reduce simultaneous calls within the step “Get Environments and store them in the CoE Common Data Service Entity”
- Reduce the Degree of Parallelism
• Configure Retry Policy
In the Settings pane for each call to Common Data Service, configure the timeout/retry
Few Limitations to Keep in Mind
DLP customizer
• The tool currently doesn't work for custom connectors that are installed as part of a managed solution.
Government community cloud (GCC) environments
• The CoE Starter Kit is available for GCC environments; however, the custom connector to connect to Office 365 Audit Logs isn't available for
GCC environments yet.
• Embedding Power Apps canvas apps in Power BI Dashboards is not available for GCC environments yet.
Sync Flow (Model Driven Apps)
• It currently isn't possible to retrieve model-driven apps for developer environments (My Name's environment).
Custom Connectors and DLP
• To add custom connectors shipped as part of this solution to the business data–only group of your DLP policy, we need to use the
PowerShell cmdlets that have been provided
Theming Components
• The Shared Component Library part of the Theming components is not editable. Make your own copy to expand it.
THANK YOU FOR ATTENDING!