Partner Admin Link

A new pilot program to measure SI and MSP partner Azure influence

Fill out the survey to give us feedback and stay up to date:

https://aka.ms/PALsurvey
Tracking Management Activities

Product based Simple Impactful

• Telemetry based product tracking • Easy for partners • Tracks customer engagements
• Uses existing management • No impact for customers • Aligned to Microsoft account teams
paradigms • No blockers for partners • Improves optics in partner impact
Approach

Customer
Customer and Partner links Customer and
provides
1 partner enter 2 partner with 3 MPN ID to the 4 partner receive
an agreement user account reporting
admin access

Customer determines access to their
Azure environment based on the
engagement with the partner
Customers grant partners access to their
environment via 3 mechanisms today:
1. External user (guest access)
2. Service principal
3. An account within the customers
directory
• All attributes of the user • Customer and partner facing reporting
credentials are now associated based on the link
with the partner (MPN ID)
• The link is per user credential
per customer tenant
Scope Of Tracking
• Management access for Azure
• Spans all licensing programs (i.e. EA, web direct, CSP)
• All partners can link including when work overlaps

Information linked:
• User credentials
• Scope of access
• Admin role granted
• Resources under management
• Consumption of resources
Creating A Link
Linking can be done through three mechanisms
1. PowerShell
2. Command Line Interface (CLI)
3. Azure Management Portal UI – coming soon

• A valid MPN ID will be required

• The link is per user credential, per customer tenant
• Partners can change (update, validate, remove) the MPN ID
if they choose
• Only the person with the admin credentials can add or
change the link
 Available
today

Creating A Link: PowerShell

1. Log into the customer’s environment
2. Ensure standard Azure modules are installed
3. Run the command:
“new-AzureRMManagementPartner –PartnerID XXXXXXX”
 Available Late
April 2018

Creating A Link: Azure Portal

1. Log into a customers Azure
environment
2. Access the Partner Admin Link UI
from the Azure Management
Portal user settings
3. Add and validate the MPN ID
 • Start today!
• Begin linking management credentials for
customer engagements
Participating • By participating you will help determine ways
in the pilot we improve partner programs*
• Receive early access to reporting and any
efforts to infuse this into partner programs

*Partner Admin Link is not a replacement for existing partner incentives programs. Partners should
continue participation in programs like DPOR in addition to participation in this preview.
Timeline: Partner Admin Link

May June July August

Pilot
• Early access for partners
• Documentation online
• UI available in Azure Portal

General Availability (estimated)

• Partner reporting

Post GA improvements
• Customer reporting
• Internal Microsoft reporting
• Improvements to partner reporting
Maintaining Customer Privacy
Partner Admin Link respects customer’s management controls:
• MPN ID is added as an attribute to the user profile
• The MPN ID is stored separately from the customer’s data
• Linking is transparent to customers via the management portal,
documentation, and customer facing reporting
• Linking an ID does not change, add or amend the partners access to customer
resources or data
• Partners will not see any customer identifiable data that has not been granted by
the customer through granting administrative credentials
• The link abides by any change to the admin credential scope (increase, decrease or
removal of access)
• When a customer revokes admin rights the link is removed and reporting ceases
Questions & Assistance
[email protected]

Link to documentation:
aka.ms/partneradminlink

Fill out the survey to give us feedback and stay up to date:

aka.ms/PALsurvey
Partner Admin Link:
Guidance on linking MPN IDs
Q: If I have multiple people with credentials in a customer’s environment do all users need to link their MPN ID to their creden tials?
A: Partners should associate their MPN ID to each set of credentials within a customer’s environment.

Q: If a consultant is using their work credentials as a “guest” in multiple customer accounts will they need to associate the MPN ID
once or multiple times?
A: If a consultant from the partner is using the same credentials in multiple customer’s environments they will need to associat e an
MPN ID in each customer environment. The association happens on a per customer environment basis and is not inherited in all
customer environments.

Q: We have multiple MPN IDs which should we use?

A: You should choose the MPN ID that you would like to receive credit for the customer engagement. If you have multiple MPN IDs
for credit in other programs you may want to follow a similar approach for this program.

Q: Will another partner be able to write over my MPN ID if I link it within a customer account
A: No, the link is established as an attribute for a set of user credentials. Only the individual who is using the credentials can set or
change the MPN ID