EZ Suites Downloads

Try EZ Suite for yourself!

Download EZ Suite for HCL Notes and Domino.
See just how much faster and more fluid your HCL Notes and Domino administration and development can be.

EZ Suite Complete

All of Ytria’s software tools for HCL Notes and Domino. It includes scanEZ, aclEZ, agentEZ, databaseEZ, consoleEZ, replicationEZ, signEZ, viewEZ, actionBarEZ, designPropEZ and formEZ. The installer will let you choose which tools you would like installed.

Download

Size
146.2 MB
Version
16.5.3

EZ Suite Admin

The EZ Suite Admin comprises a comprehensive set of powerful software tools for HCL Domino (formerly IBM Lotus Domino) administrators. It includes scanEZ, aclEZ, agentEZ, databaseEZ, consoleEZ, replicationEZ and signEZ.

Download

Size
99.2 MB
Version
16.5.3

EZ Suite Dev Plus

The EZ Suite Dev Plus comprises agent and console management software tools in addition to the standard set for IBM Notes application developers. It includes scanEZ, consoleEZ, agentEZ, signEZ, viewEZ, actionBarEZ, designPropEZ and formEZ.

Download

Size
108.9 MB
Version
16.5.3

EZ Suite Dev

The EZ Suite Dev comprises a full set of essential software tools for IBM Notes (formerly IBM Lotus Notes) application developers. It includes scanEZ, signEZ, viewEZ, actionBarEZ, designPropEZ and formEZ.

Download

Size
84.1 MB
Version
16.5.3

If you have questions about getting your software to work, see the links below:

Note: Be sure to provide complete, accurate information during registration and use a valid email address*; otherwise we cannot deliver important product information to you. You only need to register once to use all our tools.

* By confirming your email address and downloading this file, you are signing up to get periodic follow-up emails from us. Any emails we send you will contain unsubscribe information, and you may opt-out of future emails at any time.


Individual products Downloads

Ytria software for Notes & Domino
Individual products downloads

scanEZ

Investigate, analyze and fix database problems right away.

Download

Size : 19.8MB
Version: 16.5.3

aclEZ

Manage and ensure consistent, and secure Access Control Lists (ACLs) on a server.

Download

Size: 20.4MB
Version: 16.5.3

agentEZ

Easily manage and control all agents on a server.

Download

Size: 21.4MB
Version: 16.5.3

databaseEZ

Manage global database properties across an IBM Domino server.

Download

Size: 20.5MB
Version: 16.5.3

consoleEZ

Manage all consoles for multiple servers in one dashboard.

Download

Size: 20.0MB
Version: 16.5.3

signEZ

Enable complete control over design element signatures and delegation.

Download

Size: 20.2MB
Version: 16.5.3

signEZ Template

Database template to update the signEZ database design.


Download

Size: 20.2MB
Version: 16.5.3

replicationEZ

Find, display and analyze all replicas across HCL Domino servers.

Download

Size : 23.7MB
Version: 16.5.3

viewEZ

Manage view columns visually and quickly change view properties all at once.

Download

Size : 20.8MB
Version: 16.5.3

actionBarEZ

Manage actions visually and quickly change action bar properties all at once.

Download

Size : 20.1MB
Version: 16.5.3

designPropEZ

Edit design properties for multiple databases.

Download

Size : 23.7MB
Version: 16.5.3

If you have questions about getting your software to work, see the links below:

Note: Be sure to provide complete, accurate information during registration and use a valid email address*; otherwise we cannot deliver important product information to you. You only need to register once to use all our tools.

* By confirming your email address and downloading this file, you are signing up to get periodic follow-up emails from us. Any emails we send you will contain unsubscribe information, and you may opt-out of future emails at any time.


Other Downloads

Ytria software for Notes & Domino
Other downloads

scanEZ Extension database

Adds additional features to scanEZ including: open multiple documents from any HCL Notes view, plus open documents from a list of web URLs.

[scanEZ installation required]   Learn more

signEZ Server Batch Database

This optional Server Batch database contains extended functionality and allows you to include all databases on a server—including those in sub-directories.

[signEZ installation required]  Learn more

Ytria Designer Widget

This widget enables tight integration with Ytria tools and the Eclipse-based IBM Domino Designer. To install, simply click and drag the file Ytria_Designer_widget.xml to the right into the IBM Notes client My Widgets panel.
[IBM Domino Designer 8.5+ required]   Learn more

Ytria Launcher Widget

An Eclipse-based launcher for Ytria tools. To install, simply click and drag the file Ytria_Launcher_widget.xml to the right into the My Widgets panel in IBM Notes.
[IBM Domino Designer 8.5+ required]   Learn more

HIDDEN !!! scanEZ Launcher

This extension simply provides a more convenient way to administer and develop HCL Domino web pages with scanEZ from your favourite browser.
[scanEZ installation required]   Learn more

 


sapio365 General FAQs

General questions about sapio365

Why is sapio365 a desktop application?

Although web-based portals and interfaces are convenient, and very much in fashion, they often lack the immediacy and pure data-handling power of a compiled application.

Due to the nature of sapio365, whose approach is bringing entire tenants of data directly to the forefront, and letting you work with this data in a multitude of ways, a compiled desktop client is the only way to achieve this.

No, you can’t manage your tenant from a tablet, or from your phone. What you do get is access to even multiple tenants of data at once, across multiple account sessions.

Serious Office 365 administration and management, through one dedicated client.

This also has added security benefits as well. Contrary to any number of web-based solutions, sapio365’s local installation means that your data STAYS WITH YOU, and NEVER passes through another server.

Back to top  >

Is my Office 365 data cached on my computer while using sapio365?

While sapio365 retrieves your tenant data to display it in a grid, ONLY the user and group lists are stored locally on your machine. This caching is necessary for much faster loading when dealing with massive numbers of users and groups.

Cached data is stored in a local database encrypted by and for the current computer. Note that caching is an option that can be disabled at any time.

No tenant data is stored once your session is closed except for the cache (if enabled), files you’ve downloaded and any grid data you’ve exported.

Back to top  >

I see what looks like files in the sapio365 interface. Is what I see a copy of my OneDrive files?

No.

File-type icons are included in sapio365’s grid for quick reference purposes only. sapio365 provides you with a “dynamic snapshot” of OneDrive contents. It also gives you the option to download files if you choose to do so.

Back to top  >

Can sapio365 be automated?

All features in sapio365 can be used in automated tasks in sapio365. We call these JOBs and they are ready to use from within the modules and from the main window. You can even schedule them to run during off hours and receive the report by email. Presets offer a one-time setup which can then be reused for repeating job schedules.

Back to top  >

Office 365 changes quite rapidly. How often are new sapio365 versions released?

We work hard to stay up to date with the latest changes in Office 365 and whether or not it is possible to implement functionality related to these changes. On the average, you can expect a couple of updates per quarter.

Back to top  >

What are the minimum system requirements for running sapio365?

sapio365 runs on Windows 7 or later. So, of course, your computer must have at least this minimum. However, we recommend that you have at least the following:

– Free space: 200 MB on your destination drive
– RAM: As much as possible*
– CPU: As fast as possible*

**sapio365 is available in both 32-bit and 64-bit versions, and is subject to certain constraints:
The 32-bit version is limited to the memory usage limitations inherent to 32-bit.
The 64-bit version will make use of the full capacity of your system.

Back to top  >

Does Ytria have any access to my Office 365 data?

No. sapio365 is a local installation and your data NEVER passes through another server. Ytria employs secure authentication methods so you can access your data with sapio365, but has no access whatsoever to any data that is retrieved using sapio365.

Ytria doesn’t even have access to the sapio365 trace log, unless you choose to send a copy to us for support purposes.

Back to top  >

Why is sapio365 making me sign-in and grant permissions? Is this secure?

When first launching sapio365 with either a Standard or Advanced session, you are asked to sign-in with your Microsoft Office 365 credentials. If the authentication is successful and if you are allowed to consent to applications, you will then be prompted by Microsoft to grant ‘app consent’ to sapio365. This Microsoft dialog says: “This app would like to: ”, followed by a list of permissions.

The consent you give is strictly between the sapio365 app and your tenant. And since sapio365 is installed on your computer, this means that your data NEVER goes through any third-party servers.

There are two types of consent when managing applications in Microsoft Azure Active Directory:

– User Consent, or consent provided by an end user
– Admin Consent, or consent provided by an administrator

When launching a Standard session for the first time, the application requires a one-time user consent for sapio365 to access your data.

You can think of giving user consent as saying: “Connect to my Office 365 resources“.

When launching an Advanced session for the first time, the application requires a one-time admin consent for sapio365 to access Office 365 data. Only users with a Global Administrator role in the Office 365 organization can give consent to the application.

Global admins can also give that consent on behalf of all users in the organization. Therefore users do not have to provide additional consent, and the application can access signed-on users’ resources immediately.

You can think of giving admin consent as saying: “Sign my organization up to use this application”.

Back to top  >

New grid comments - What are comments?

The commenting feature in sapio365 allows each user to add their own notes in dedicated columns. These comments are persistent and can be shared. This means sapio365 can be used as a kind of team workspace.

A history is kept of all comments which can be managed via the View All button. This includes the options to search, edit and delete.

  • Persistent comments can be kept as a to do list, or to help identify items that require attention.
  • Can be set to Shared – turning sapio365 into a workspace for your team
  • History of all comments
  • Search – quickly find specific comments
  • Use formulas to easily pull in data from other columns
  • Color code specific comments
  • Mange a list of all comments with search, edit and delete.

 

Back to top  >

Try sapio365 today:

Free for 7 days

No credit card required. Install it locally.
Download. Install. Register. Work.
It’s that easy.


Standard session in sapio365

What's a standard session in sapio365?

A standard session in sapio365 lets you access all data for which you have permissions, including your own:

  • Messages, mail rules, calendar events, and personal contacts
  • OneDrive documents and their permissions
  • Group and SharePoint site document libraries
  • Group/Team owner and member lists
  • Site and site list information

See the complete list of features

Are you an admin?

Use the extended permissions of an advanced session to manage settings, users, groups, Teams, sites and more. You will need to obtain admin consent from a global administrator.

Learn more about advanced session

Have an assigned role?

Your admin can create roles in sapio365 RBAC to give you greater access within a specific scope. Choose one from a list of available roles upon sign-in or later.
Once you apply a role, your session becomes role-enabled and is added to your session list.

Standard Session

Most Frequent Questions

When launching a Standard session for the first time, the application requires a one-time user consent for sapio365 to access your data.

You consent to sapio365 accessing your data within the scope of your Office 365 rights. Since sapio365 is a locally installed application, your information NEVER goes through any third-party servers. You can think of giving user consent as saying: “Connect to my Office 365 resources”.

No, sapio365 does not require external servers to process this information – ever

You can equally remove this application whenever you wish by clicking Revoke in the App permissions section.

The administrator can turn off user consent in which case you may find this option disabled. Note that, by default, the user consent option is implemented for Office 365 organizations in Azure AD. However, an administrator can change this default setting to prevent end users from installing applications. Another reason you may not be able to provide your user consent is that you are not on the allowed list of users set up by your admin.

Yes, just like for any application in your Azure AD, you can enable “User assignment required?” (1) and add users (2).

If you’re a global admin, you will see a checkbox option “Consent on behalf of your organization” when you’re giving consent. Checking this box will prevent your users (who can use sapio365 Standard sessions) from being prompted to give their consent. If you don’t check it, the only consent given is yours, and your users will be prompted for their consent when creating a Standard session.

You can equally remove this application whenever you wish by clicking Revoke in the App permissions section.

What can I do in a Standard session?

If your user rights allow you, you can do the following:

Users

      • View the entire list for your tenant’s directory as well as all users’ profile information
      • View service plans and license information for all users
      • Edit user profile information if your user rights allow
      • Create new user profiles if your user rights allow
      • Display group memberships for up to all users in your tenant’s directory
      • For your own account and those users whose mailboxes you have access to, see all:
        • Messages
        • Contacts
        • Calendar entries

Groups and Teams

      • View all groups in your tenant, including their property information
      • For all groups you have access to in your Office 365 portal:
        • Display all group owners and members
        • Retrieve document library files
        • View group SharePoint site information
      • Remove and add members or owners for all groups you own

Mail

For your own mailbox and other mailboxes you have access to:

  • View all messages—including the mail folder structure.
  • Preview messages directly from the full message list.
  • See all message properties.
  • Access all attachment information—and download or delete attachments directly.
  • View the make-up of all your inbox rules in one place

Calendar events

For your own mailbox and other mailboxes you have access to:For your own mailbox and other mailboxes you have access to:

  • View all calendar events
  • Preview calendar event body
  • See attachment information.

Personal contacts

See your own contacts as well as contacts of users whose mailbox you have access to.

OneDrive files and folders

For your OneDrive and all others you have access to:

  • See all file information in a hierarchical view—including who it’s been shared with and how.
  • Download or upload files.
  • Rename or delete documents and folders.

Learn more about the other session types:

Advanced sessionAdvanced session with elevated privileges

Try sapio365 today:

Free for 7 days

No credit card required. Install it locally.
Download. Install. Register. Work.
It’s that easy.


Advanced session in sapio365

What's an advanced session in sapio365?

An advanced session in sapio365 lets you access and manage all data for which you have permissions, as well as some settings not available in the portal UI. This includes:

  • Messages, calendar events and personal contacts for accessible mailboxes
  • Owned and shared OneDrive documents and their permissions
  • Group and SharePoint site document libraries
  • Group owners and members
  • Site and site list information
  • Directory roles
  • Usage and audit reports

See the complete list of features

Are you a global admin?

Get even more access with elevated privileges

Use the extended reach of application-based permissions to manage data for mailboxes and SharePoint sites you do not own.

Learn more about using elevated privileges

Create custom, granular roles

Give users greater access within a specific scope by creating roles with sapio365’s role-based access control (RBAC) system. Use any user, group or site property as a scope or Learn how to use sapio365 RBAC.

Learn how to use sapio365 RBAC

Advanced Session

Most Frequent Questions

When launching an Advanced session for the first time, the application requires a one-time admin consent for sapio365 to access Office 365 data.

An application is created in your tenant’s Azure AD with permissions that require admin consent.

You’re consenting to the delegated permissions of the sapio365 application that allow you to access Office 365 data within the scope of your user rights in Office 365. This consent is between you and the sapio365 application. Your data NEVER goes through any third-party servers.

Only a global (company) administrator can provide admin consent for the permissions of sapio365 applications used in advanced and elevated sessions. If you can’t obtain admin consent, you can use a standard session.

No. Your access and actions remain limited by the rights and permissions you have in Office 365. An advanced session in sapio365 gives you the advantage of having everything in one place, the ability to make bulk changes and create custom reports. You’ll need elevated privileges to access mailboxes and sites you don’t own. Get more info here.

No, sapio365 does not require external servers to process this information – ever.

Some data is stored locally on your machine as a cache to improve processing times. The encryption of data is session-based so your information is protected.

Yes, just like for any application in your Azure AD, you can enable “User assignment required?” (1) and add users (2).

What can I do in an Advanced session?

If your user rights allow you, you can do the following:

Users

  • View the entire user list for your tenant’s directory as well as all users’ profile information.
  • Manage service plans and license information for all users.
  • Edit user profile information for any user, even multiple users at once.
  • Create new user profiles, even multiple profiles at once.
  • Display group memberships for every users in your tenant’s directory.
  • See all, For your own account and those users whose mailboxes you have access to.
    • Drive items
    • Messages
    • Contacts
    • Calendar entries

Groups and Teams

  • View all groups in your tenant, including their property information.
  • Display all group owners.
  • Retrieve all drive item information.
  • View group SharePoint site information.
  • Add or remove owners for any group in your tenant, even multiple groups and owners at once.
  • Manage delivery restrictions on any group in your tenant, even multiple groups at once.

Mail

  • View all messages—including the mail folder structure.
  • Preview messages directly from the full message list.
  • See all message properties.
  • Access all attachment information—and download or delete attachments directly.
  • Manage mail rules for all mailboxes.

Calendar events

  • View all calendar events.
  • Preview calendar event body.
  • Download or delete attachments.

Personal contacts

See every users’ personal contacts.

OneDrive files and folders

  • Manage all information—including permissions—for every OneDrive file and folder in your tenant.
  • Download files and folders.
  • Upload files and folders.
  • Create folders.

SharePoint sites and lists

  • Retrieve all SharePoint site information, including storage quotas.
  • Show all lists—as well as their items and columns—for all your accessible sites at once
  • Manage all document library files and their permissions in one place.

Learn more about the other session types:

Standard SessionAdvanced session with elevated privileges

Try sapio365 today:

Free for 7 days

No credit card required. Install it locally.
Download. Install. Register. Work.
It’s that easy.


Advanced session with elevated privileges in sapio 365

What's an advanced session with elevated privileges in sapio365?

When you choose to associate elevated privileges with your Advanced session, you add a greater level of access to Office 365 data by using an additional, complementary sapio365 application with application-based permissions. This allows you to manage mailboxes and SharePoint sites you don’t own. This means that in addition to everything you get in an Advanced session, you also get access to:

  • All users' messages, settings, calendar events and personal contacts
  • All users' mail rules
  • All users' OneDrive documents and their permissions
  • All SharePoint site document libraries
  • Checked out files and retention labels
  • All site and site list information
  • All Teams & private channel content

See the complete list of features

Need access to private channel chats?

The only way to read private channel chats is to be a member of that channel. Or just use an Advanced session with elevated privileges and simply fill out a request for approval from Microsoft.

Advanced session with elevated privileges

Most Frequent Questions

A registered sapio365 application is created in your tenant’s Azure AD with app-based permissions that require consent from a global admin. This application is then used in conjunction with the sapio365 app with delegated permissions that you’ve previously consented to. Together, these apps give you the maximum reach into your tenant data.

You’re consenting to the permissions of the registered sapio365 application that allow you to access Office 365 data. This consent is between you and the sapio365 application. Your data NEVER goes through any third-party servers.

Yes you can create your app with specific permissions, or you can use an existing one.

Only a global (company) administrator can provide admin consent for the permissions of registered sapio365 applications used in Advanced sessions with elevated privileges. If you can’t obtain admin consent, you can use a standard session.

Yes. An Advanced session in sapio365 gives you the advantage of having everything in one place, the ability to make bulk changes and create custom reports, based on the rights and permissions you have in Office 365. Using elevated privileges will give you access to information related to mailboxes and sites you don’t own.

No, sapio365 does not require external servers to process this information – ever.

Some data is stored locally on your machine as a cache to improve processing times. The encryption of data is session-based so your information is protected.

Private channel chats are only available to the members of that channel whether you use native tools or third-party tools like sapio365. Accessing chats in a Team’s private channel requires submitting a completed justification form to Microsoft to request authorization for an application (sapio365) to use Protected APIs in Microsoft Teams.

To make things easier, we’ve prepared information you’ll need and some sample text you can use to fill out the form. Follow the steps below.

  1. Make sure you are in an active Advanced session with elevated privileges.
  2. Click on the ‘Request Access (Private Channel Chats)’ submenu item of ‘New Advanced Session’ to see our guide.
  3. Click on the link to open Microsoft’s request form in your browser and fill it out using the info and suggested answers in the guide.

What can I do in an Advanced session with elevated privileges?

With the full set of Ytria-recommended permissions, you can do the following:

Users

  • View the entire user list for your tenant’s directory as well as all users’ profile information.
  • Manage service plans and license information for all users.
  • Edit user profile information for any user, even multiple users at once.
  • Create new user profiles, even multiple profiles at once.
  • Display group memberships for every users in your tenant’s directory.
  • For your own account and those users whose mailboxes you have access to, see all:
    • Drive items
    • Messages
    • Contacts
    • Calendar entries

Groups and Teams

  • View all groups in your tenant, including their property information.
  • Display all group owners.
  • Retrieve all drive item information.
  • View group SharePoint site information.
  • Add or remove owners for any group in your tenant, even multiple groups and owners at once.
  • Manage delivery restrictions on any group in your tenant, even multiple groups at once.

Mail

  • View all messages—including the mail folder structure.
  • Preview messages directly from the full message list.
  • See all message properties.
  • Access all attachment information—and download or delete attachments directly.
  • Manage mail rules for all mailboxes.

Calendar events

  • View all calendar events.
  • Preview calendar event body.
  • Download or delete attachments.

Personal contacts

  • See every users’ personal contacts.

OneDrive files and folders

  • Manage all information—including permissions—for every OneDrive file and folder in your tenant.
  • Download files and folders.
  • Upload files and folders.
  • Create folders.

SharePoint sites and lists

  • Retrieve all SharePoint site information, including storage quotas.
  • Show all lists—as well as their items and columns—for all your accessible sites at once.
  • Manage all document library files and their permissions in one place.

Learn more about the other session types:

Standard sessionAdvanced session

Try sapio365 today:

Free for 7 days

No credit card required. Install it locally.
Download. Install. Register. Work.
It’s that easy.


Role-based access control in sapio365

Role-based access control in sapio365 (RBAC)

Delegate ANY task without compromising security

Don't settle for the limits of Office 365 roles and Administrative Units—define your custom roles with specific permissions scoped to sets based on user, group and site attributes.

Secure Delegation

Users use their own credentials to access the assigned roles and the privileges given to them – they don't get the actual key. Role configuration is locally encrypted and in your own Azure Cosmos DB. sapio365 does not require external servers to process this information - ever.

Granular roles

Roles can range from full power to a single function in sapio365.
Define what delegated users can do and where they can do it. You decide how granular you want to get through permitted tasks.

Dynamic Scopes

Unlike keeping Administrative Units up to date, you don't have to add users to sapio365 RBAC scopes.
The sets you define in sapio365 are dynamic since they are based on specific properties of users, groups or SharePoint sites.

In other words, hand over the exact level of control needed to your delegated users over specifically defined sets of users, groups, and SharePoint sites.

FAQs

The role-based access control system in sapio365 is based on permissions mapped to every action in sapio365. Create custom roles by selecting only the permissions you need to delegate. The actions that you’ve chosen for the role can then be only enabled for a specific scope, or set of users, groups, and sites. The roles you create, the scopes and role assignments-RBAC configuration- are stored in a local encrypted database on your machine. When you connect YOUR Azure Cosmos DB account to your sapio365 license, the local database synchronizes with the one in your Cosmos DB. This allows delegated users to retrieve and take on assigned roles when they sign in to sapio365 on their own computers.

No. sapio365 RBAC does not change any roles or permissions in your Office 365. The delegated roles you create in sapio365 are ONLY available in sapio365—you won’t see them in Office 365 admin centers.

You’ll need to set up a Cosmos DB account. Have your sapio365 invoice information handy and follow the simple steps outlined here.

If you don’t have access to an active Azure AD subscription, you won’t be able to create a Cosmos DB account to use with sapio365 RBAC. Any role you create will be confined to your machine. This means that assigned users can only benefit from assigned roles using sapio365 on your computer.

In the sapio365 tab of the main window, go to ‘RBAC – Configuration’ and set up the credentials to use for the roles you will create.

Step 1 – Enter a unique name and description for the credentials you’re setting up. If you’re using sapio365 RBAC to manage several tenants, you’ll need to do this for each tenant.

 

Step 2 (Optional) – We recommend that you create a new, RBAC-dedicated user and a new registered application but you do have the option of using the credentials of an existing global admin (b) and application (c) by filling out the related fields, and entering the target tenant (a). If that’s the case, skip to Step 6.

 

Step 3 – Click on the button ‘Create New Admin &Application’ to create a new, RBAC-dedicated user and a new registered application.

 

Step 4 – Confirm by clicking on OK.

Step 5 – Sign in with a global admin account to authorize the creation of a RBAC-dedicated user account and of a registered application.

Step 6 – Note that all the fields have been filled out with information of the newly created user and application.

Click on the button ‘Provide Admin Consent to sapio365’ to enable the use of an Advanced session.

Step 7 – Click ‘Continue’

 

Step 8 – Sign-in with global admin credentials.

Step 9 – Click on ‘Accept’ to consent to the listed permissions for sapio365

Step 10 – Click on the button ‘Provide Admin Consent’ in order to benefit from elevated privileges

Step 11 – Click on ‘Continue’

 

Step 12 – Click on ‘OK’

 

Step 13 – Sign in with global admin credentials

Step 14 – Click on ‘Accept’ to consent to the listed permissions for the registered sapio365 application.

You’re now ready to create a role using the credentials you set up.

In the sapio365 tab of the main window, go to ‘RBAC – Configuration’ and set up the credentials to use for the roles you will create.

Step 1 – Click on ‘Create Roles…’.

 

Step 2 – Enter a unique, meaningful name for the role and a description, which will be shown to assigned users.

 

Step 3 – Choose the credentials you wish to use. You can create a new one by clicking on the button ‘New Credentials…’ (see how to set up credentials).

Step 4 – By default, only changes sapio365 users make are logged in the User Activity Logs.
Check the first two options if you wish to keep track of when users use sapio365 roles, and what modules they access.
The third option makes it mandatory for any assigned user to take on a role when signing in to a sapio365 Standard session.

Step 5 – Choose the actions to customize the role you are creating.
Tip. Click on to expand the full list of permissions.

Step 6 (Optional) – Use this section if you wish to limit the number of licenses to manage. Make sure to include the license management permission by clicking on ‘Enable ‘User – Edit Licenses’ permission.

Step 7 – Click OK.

Step 8 – Assign the right scopes (see how to set up scopes).

Step 9 – Assign users.

In the sapio365 tab of the main window, go to ‘RBAC – Configuration’ > Scopes

Step 1 – Click on ‘Create…’.

Step 2 – Give the set a unique, meaningful name.

Step 3 – Select the scope type. A role can have all three different target sets (users, groups, sites) to expand the scope of action, but you’ll need to create separate scopes for each type before you assign them.

Step 4 – Select a property. Adding more than one scope of the same type based on different properties to a role will narrow that role’s scope (ex. users with country=Canada + department=sales will narrow the scope to users in Canada in the sales department).

Step 5 – Enter a property value that defines the scope. Tip: if you’re not sure, open Users, Groups or Sites modules. You can copy/paste the value from the grid.

Step 6 – Choose how to match the value you entered.

Step 7 – Click OK.

Try sapio365 today:

Free for 7 days

No credit card required. Install it locally.
Download. Install. Register. Work.
It’s that easy.


Notes&Domino用のYtriaソフトウェア 日本語版。

IBM Notes & Domino 用に特化したツール
迅速なノーツ開発と効率的なドミノ運用管理に

日本語完全対応版としてご利用いただけます。
注意:試供版は英語のみのご提供になります。

EZ Suites

EZ Suite Complete

は IBM Notes/Domino 運用管理者および開発者のための Ytria ソフトウェア・ツールのすべてが同梱されており、一度に複数の製品のインストールを素早く完了できます。このスィートには scanEZ, aclEZ, agentEZ, databaseEZ, consoleEZ, replicationEZ, signEZ, viewEZ, actionBarEZ, designPropEZ そして formEZ を同梱。もちろん、インストールしたいツールだけ選択してインストールすることもできます。

EZ Suite Admin

は特に IBM Domino 運用管理者のための強力なソフトウェア・ツールセットを同梱しています。このスィートには scanEZ, aclEZ, agentEZ, databaseEZ, consoleEZ, replicationEZ そして signEZ が同梱されています

 

EZ Suite Dev

は IBM Notes アプリケーション開発者に不可欠なソフトウェア・ツールセットを同梱しています。このスィートには scanEZ, viewEZ, actionBarEZ, designPropEZ そして formEZ が同梱されています。

それぞれのツール

Manage IBM Notes Databases with ScanEZ
scanEZ

IBM Notes のNSFの内部構造をWindowsのエクスプローラーのように表示し、修正もできるツールキットです。
データベース内部のすべて(プロフィール文書、削除スタブに至るまで)を、ビューを作成したりすることなく確認でき、編集にはエージェントを書く必要もありません。

ACLs Management across the entire IBM Domino servers at once
aclEZ

サーバー上のすべてのACLを効率的に管理
IBM Notes のアクセス制御リスト(ACL) をマニュアルで管理するのは時代遅れ。セキュリティブリーチを防ぎ、運用管理の生産性を改善します。

agentEZ

ドミノサーバーで実行されるすべてのエージェントを管理
もうIBM Domino サーバー上でエージェントが暴走したり、動かなかったりすることはありません。このツールを使えば、エージェントの問題の解決に数日かかっていたものが数分で終わります。

databaseEZ

データベースプロパティのグローバル管理
サーバー内にあるすべてのNSFのデータベースプロパティを一括管理

consoleEZ

強力なアナリティクスを備えたマルチコンソール管理ツール
一度に複数のライブコンソールを監視しログ収集の合理化と一括分析

replicationEZ

IBM Domino 管理者の複製管理ツール
複数サーバー上のレプリカ検索、表示、分析

signEZ

IBM Notesのセキュリティに必要な鉄壁の署名ID管理
IBM Notes の開発と運用管理で安全にIDを管理

viewEZ

IBM Notes のビューを瞬時に改修
IBM Notesビューの管理および一括変更ツール。IBM Notesアプリケーションのビューインターフェースをあっという間に洗練、煩わしい繰り返し作業はもういりません。

actionBarEZ

あっという間にIBM Notes アクションバーをオーバーホール
NSFのアクションバーの分析結果をビジュアル化し、一括修正。エラーなく作業ができ、ユーザーインターフェースも瞬時に改良できる


No more Ultra Admin session in sapio365

Ultra Admin sessions have evolved into Advanced sessions with elevated privileges

You’re seeing this message because in the past, either you or your global admin created an Ultra Admin session in sapio365 to reach users’ mailboxes and sites you don’t own.

Because of certain Graph API limitations, some sapio365 features were technically limited only to the old Admin session type and required switching between the two type of sessions.

Well, we’ve made things easier by doing the switch automatically for you depending on the request you make. In other words, we’ve merged the benefits obtained from using what was once known as an Admin session with those from using an Ultra Admin session.

Here are some answers to questions you may have:

Why are Ultra Admin sessions no longer available?

We’ve replaced the Ultra Admin session with the ‘Advanced session with elevated privileges’. This is to maximize your data access without having to switch session types – makes things easier for you!

Why is an Advanced session with elevated privileges better than an Ultra Admin session?

Although using an Ultra Admin session let you access all mailbox & site data, the app-only permissions of the application had limited functionality in some areas. This required users to switch to an Admin session to use its delegated permissions. Since we’ve now combined the two, you get the best both worlds!

How can I use my existing Ultra Admin session?

Launch an Advanced session (formerly known as an Admin session), and click the ‘Elevate Privileges’ button. You’ll be prompted to choose from a list of your existing Ultra Admin sessions.

What happened to my Ultra Admin sessions? Why can't I see them in the recent session list?

The recent session list only shows current session types, which do not include Ultra Admin sessions. However, you can still access your old Ultra Admin sessions by clicking ‘Manage Sessions’.

What happened to the applications used in my Ultra Admin sessions?

Nothing. They’re still part of your Azure AD registered applications. In fact, go ahead and pick one when you elevate your privileges.

What happens if I agree to remove the Ultra Admin session whose privileges I merge with my Advanced session?

The Ultra Admin session is removed from you session list. The application is uses remains on your Azure AD, where you can manage it.

I've removed an Ultra Admin session by mistake. How can I use its app to elevate privileges of my Advanced session?

Since you’ve opted to remove it, the Ultra Admin session is no longer in your session list, but the application it uses is still part of the Azure AD registered apps. When you click on ‘Elevate Privileges’, choose to proceed manually, and enter the name and ID of the application as shown in Azure AD. If you don’t have the password, you’ll have to generate a new one. Copy it and keep it somewhere safe if you need to since this is the only time you’ll be able to see it.

Try sapio365 today:

Free for 7 days

No credit card required. Install it locally.
Download. Install. Register. Work.
It’s that easy.


sapio365 version history

sapio365 version history

See where sapio365 has been.

sapio365  1.7.5

June 4 2020

What’s new in the latest version?

NEW – General

  • Fixed license count issue.
  • Fixed display of jobs in Job Center Configuration when launching sapio365 while signed out of a session.
  • Improved ‘splash’ screen when loading sapio365 (always on top).
  • Fixed RBAC role session selection/sign-in issue (concurrent access).
  • Fixed tenant/user limits of sapio365 license management (signature data).
  • Fixed loading of cache in Users and Groups modules.
  • Improved trace system.

NEW – Jobs

  • Improved job ‘Clean up Teams with guest members’ with informative splash screen allowing interruption of the automation process.

Users

  • Fixed grid status display issue when applying non-changes in the Users module/ Reset Password dialog box.

Groups

  • Fixed edition dialogs in Groups by disabling editing of properties that are not available in the grid for the selected groups.
  • Fixed error displayed when launching Group Members module from selected groups that were previously loaded with ‘Load Info’.

Files

  • Improved file and folder importing speed.
  • Improved speed of grid entry creation during file and folder importing in Files modules (reduce sapio365 freezing occurrence).
  • Improved loading of large volumes of drive items in Files modules (reduces occurrences of sapio365 freezing).
  • Fixed automatic row expansion in Files modules when creating new entries during file upload.

Messages

    • Fixed deletion of messages in My Messages module.

Events

  • New – Added ability to delete calendar entries in Events modules.

Usage Reports

  • Improved Usage Reports’ dialog with a note on requiring Users/Groups cache to include additional properties in the report.

sapio365  1.7.4

May 26 2020

What’s new in the latest version?

NEW – General

  • New – Opened free access (no license needed) to My Data section.
  • New – Added Licenses and Group Memberships in My Data section.
  • New – Added notification in Standard session to inform Global/Company Admin user of qualification to use an Advanced session.
  • New – Added License History in the backstage to manage multiple sapio365 licenses.
  • Improved sapio365 launching experience by offering the option to continue using the existing session or starting a new one when an instance is already running.
  • Improved loading options by changing to friendlier terms in Sign-ins, Audit logs, Messages, Mail folders, and Events modules.

NEW – Jobs

  • New – added ‘Disable Giphy in Teams’.
  • New – added ‘Clean up Teams with guest members’.
  • New – added ‘List recently created Teams by department’
  • Improved ‘List users with & without recent sign-in activity’.
  • Improved ‘Licenses of sign-in blocked users’.

Users

  • New – Added ‘Company Name’ field in edition dialog in Users.
  • New – Added new column properties, including group licensing information, in Users module.
  • Improved ‘Import Users’ dialog in Users by adding a Reset button.

Groups & Teams

  • Improved ‘Import Groups’ dialog in Groups by adding a Reset button.
  • New – Added new group licensing column properties in Groups module.
  • Improved flat data analysis in Team Channels module by adding a separate column ‘Group Display Name’.
  • New – Added new group licensing column properties in Group membership module.
  • Fixed issues related to error display when adding organization contacts, guests as members in Office 365 groups in Group Members module.

Reports

  • Updated ‘Additional Info’ options in Usage Reports with more user & group properties.

User Licences

    • New – Added new group licensing column properties in User Licenses module.
    • Improved organization of column properties related to licenses by changing their category in User Licenses module.


User and Group Recycle Bins

  • New – Added the ability to create Comments in User and Group Recycle Bin modules.


sapio365  1.7.3

Apr 27 2020

Correction

Fixed – Unable to do a first time registration
Fixed – When creating a Job preset, options may not be shown correctly


sapio365  1.7.2

Apr 21 2020

What’s new in the latest version?

NEW – General

  • New – Added “Last activity date” and “Last activity service” summary columns in the Office365 Active Users usage report grid.
  • New – Added new button ‘Files’ in channels to access private channel files information.
  • New – Added new column to show effective membership type in Private Channel Members.
  • New – Added an ‘Is Yammer’ column in the Groups Module to identify Yammer groups connected to Office 365 groups (requires ‘Load Info’ to enable).
  • New – Added management buttons in user and group Usage Reports to access user and group details when applicable.
  • Improved – Simplified the Job Center Configuration panel view, and added a toggle button to change to advanced view.
  • Improved – Added a featured jobs space in the sapio365 home screen.

NEW – Jobs

  • New – Find users unable to use Teams
  • New – List users with sign-in errors
  • New – Find users’ last activity by location

Users

  • Fixed – ‘Sync Enabled – On Premises’ column value format now displays the proper date/time in the Users module.

Groups & Teams

  • New – Added columns and edit options for “Hide from Outlook clients” & “Hide from address lists” in the Groups module (requires ‘Load Info’ to enable).


sapio365  1.7.1

Mar 25 2020

What’s new in the latest version?
  • New – Added ‘Import Users’ button in the Users module for creating users in bulk.
  • New – Added ‘Import Groups’ button in the Groups module for creating Office 365 groups and security groups in bulk.
  • Improved – Added more properties in the Users edit dialog: ‘On-premises Immutable ID’ and ‘On-premises Attributes’.
  • Improved – Updated the edit dialog with distinct icons and clearer tooltips for properties that require loading before editing.
  • User License Module: enhanced for more intuitive understanding, with ‘smart’ filter that adapts depending on the level of the info shown.


sapio365  1.7.0

Feb 24 2020

What’s new in the latest version?

NEW – General
Learn more about version 1.7 >

  • Major change of session types: the old Basic session is now called a Standard session, the old Admin session is now called an Advanced session. Creation of an Ultra Admin session is no longer available, but the extended access it provides is available with the option to ‘elevate’ the privileges of an Advanced session (can use existing Ultra Admin apps).
  • Added new options (Flags) in sapio365 RBAC configuration of roles : ‘Log role usage in User Activity Logs, ‘Log access of modules with this role in User Activity Logs’, and ‘Enforce user-assigned roles on Standard session sign-ins’.
  • Added option to toggle the default display of the dialog for the ‘Grid Configure Transferred’ option.
  • Added options for ‘Show/Hide columns’ and ‘Show column with ID’ in right-click menu to execute without closing the dialog in the Grid Column Map.

NEW – Jobs

  • Main – Report users by disabled service plan
  • Main: View private channel sites

Global – Improvements and fixes

  • Fixed – Issue with scope-limiting properties ‘Sign-in=status’ and Assigned licenses’ in sapio365 RBAC
  • Updated – Added new RBAC permissions & scope-limiting properties.
  • Fixed – License allocation info now corresponds to the tenant of the credentials used in sapio365 RBAC.
  • Improved – Loading and updating data is faster and more options have been added to manage the connection to Azure Cosmos DB.
  • Improved – Regex queries (search, filters, etc.) now have a ‘NOT’ function.
  • Improved – Tooltip display time is longer during mouse hover.
  • Improved – Data loading errors are now shown in the grid header instead of a pop-up message box.
  • Fixed – Crash on exiting sapio365 in large tenant environments (100k users).
  • Improved – Pivot tables now offer formatting of all axes, a hierarchy view, JavaScript function to transform values, and the capability to navigate and drill down charts.
  • Improved – sapio365 performance for running multiple instances at the same time.
  • Improved – Comment management features now include editing, deletion of entries, refreshing the grid display, and hiding out-of-scope comments.
  • Improved – Session options are now easier to understand in the scheduled Job Preset dialog.

Users

  • New – Added a ‘Download as EML’ button in ribbon of the Messages module to download a message in EML format.
  • New – Added a ‘Delete’ button in the ribbon of the Mail Rules module.
  • New – Added a ‘Revoke Access’ button in the Users module to revoke access tokens for Office 365 applications.
  • New – Dialog for resetting passwords in Users module allowing the Password Reset or Force change. password on next sign-in (with one-time MFA option).
  • Fixed – Usage Location value representation for certain locations were incorrect.
  • Fixed – Issues with deleting on attachments in an exploded list in the Message module.
  • Improved – Canceling a ‘Refresh All’ now offers an option to update the grid with partial results in Users module.
  • Improved – Edition dialog in Users now shows if information must be loaded before it can be edited thanks to an icon and text upon hover.
  • Improved – The creation feature in Users module can now use selected users’ info as template to prefill the creation dialog.

Groups & Teams

  • New – Added two buttons in the ribbon in the Team Channels module: Show Sites, Show private channel members & owners.
  • New – Added Private Channel Members module with members/owners management features.New – Added ‘Load Info’, ‘Show Members’ and ‘Sites’ buttons in Teams’ Channels module to manage storage info, access to Files, and SharePoint sites.
  • New – Added button ‘Request access (private channel chats)’ to help obtain Microsoft authorization for protected APIs.
  • New – Added an option to hide/show nested group members (hidden by default).
  • New – Added new column ‘Extension’ in Attachments category in Group Conversation Posts module.
  • Improved – Group members module now also displays group owners and the means to manage them all.
  • Improved – Canceling a ‘Refresh All’ now offers an option to update the grid with partial results in Groups module.
  • Improved – Edition dialog in Groups now shows if information must be loaded before it can be edited thanks to an icon and text upon hover.
  • Improved – The creation feature in Groups module can now use selected groups’ info as template to prefill the creation dialog.

Files

  • New – Added columns for file check out status and applied retention labels in OneDrive Files, Group Files and Site Files modules.
  • Improved – ‘Created On’ and ‘Created by’ columns in OneDrive Files module now shown by default.
  • Improved – Flat view in OneDrive Files, Group Files and Site Files modules now hides folders by default to only display documents.
  • Fixed – Crash during file upload in OneDrive Files, Group Files and Site Files modules.

Reports

  • New – Added options for Usage Reports combining same report type data together into one report.


sapio365  1.6.2

Nov 28 2019

What’s new in the latest version?

Global – Improvements and fixes

  • Added new shortcut keys to limit expansion/collapse of categories and hierarchies in grid.
  • Cleaned up process log by removing debug entries.
  • Reorganized ‘Backstage’ menu into sections.
  • Added new sapio365 update notification in the main module (yellow).
  • Improved ‘Duplicates’ feature to work within categories when present.
  • Fixed display of duplicated users in edition dialog box.
  • Added new display of progress bar for initial CosmosDB sync and for Jobs update.
  • Improved throttling (pause) on high volume requests.
  • Fixed crash due to interruption of job and of loading drive items in users and groups
  • Fixed creation of Ultra Admin session (change of Microsoft API).
  • Fixed multiple issues related to high DPI.
  • Added Uninstall options to keep personal data for a re-install.

Users

  • Fixed ‘Undo’ (changes) for ‘Set/Remove Manager’ in Users.

Groups

  • Added Teams Settings in the group editing dialog.
  • Fixed ‘Convert to Team’ feature.
  • Fixed Group Posts and Channel Message: content preview is now shown.

Files

  • Added shortcut F2 to for the ‘Rename’ feature in Files.

Sites

  • Added Document Library information grid columns (quota, size, etc) in Sites.


sapio365  1.6.1

Oct 22 2019

Correction
  • New features now available in production release – Files module: ‘Create Folder’, ‘Import Folder’ and ‘Add Folder’


sapio365  1.6.0

Oct 17 2019

What’s new in the latest version?

Learn more about version 1.6 >

NEW – General

  • Schedule a job in Windows Scheduler directly from the sapio365 UI. (Applies to system-level jobs)
  • ‘sapio365 administration roles’ can now be assigned to non-global admins to govern access to RBAC, Comments and User Activity logs
  • Added counter in ‘loading’ dialogs to inform the user of what’s being processed and how quickly

Jobs

  • New – Main, Users: Trace email…
  • New – Main: Find all 0 byte files in SharePoint libraries
  • New – Main: Update Users & Groups cache
  • New – Main, Groups: Find Teams where members can add, edit or delete channels
  • New – Groups: Find last date groups were emailed…
  • New – Users: List owned teams for selected users

Global – Improvements and fixes

  • Fixed – date picker behaviour in dialogs
  • Fixed – display issue of search results in dialog (was hidden)
  • Fixed – log pagination for all modules
  • Improved – added ability to include parameters in the command line for the launching of sapio365
  • Improved – cache and loading performance in Users and Groups
  • Improved – integrated Javascript in Comments and automation CalcVar

Users

  • Fixed – ‘Undo’ feature for entries that were flagged “added/updated/removed manager”

Groups

  • New – Added icon for ‘is archived’ column for Teams in the Groups module

Files

  • New – Added a ‘Create new Folder’ button
  • New – Added buttons in Files: Upload files and folders
  • Fixed – Information was missing from root-level rows

Reports

  • Fixed – issues when exploding nested multi-value cells in Audit Logs
  • Improved – Sign ins module with loading options to restrict the retrieval of entries for a specific time range
  • Improved – Audit logs module with loading options to restrict the retrieval of entries for a specific time range
  • Adapted Usage Report module to handle future Microsoft changes (column property removal/addition)
  • Modified position of transported columns in Usage Reports module


sapio365  1.5.0

Aug 22 2019

What’s new in the latest version?

Learn more about version 1.5 >

NEW – General

  • NEW – Option on first launch to use cache when loading Users or Groups
  • NEW – Sign-ins report module
  • NEW – Audit logs report module
  • NEW – Additional properties can now be added in Usage reports
  • NEW – Additional properties can be selected and carried forward from any Users or Groups windows to any resulting windows
  • NEW – Messages & Events – Pre-filter options for time frame and result details (for faster results)
  • NEW – Messages & Events – New button: Get more messages/events. Loads the next batch of entries going back in time.
  • NEW – Messages & Events – New column properties ‘Icon’ and ‘Extension’ added
  • NEW – Added new ‘global’ Jobs (in main window)
  • NEW – Jobs can now be added and edited by users
  • NEW – Command line access to launch Jobs and automation processes

Jobs

  • NEW – Sign-ins – Find users who haven’t signed in since…
  • NEW – Users – Add selected as owners to all groups…
  • NEW – Groups with no calendar events
  • NEW – Groups with empty document library
  • NEW – File queries for groups and sites

Global – Improvements and fixes

  • Cell Explosions – improved the UI making it simpler to manipulate and understand the consequences
  • Hovering on exploded cells now shows their related values
  • Quick search in grid – new improved dialog
  • Grid – counter on groups and hierarchy is now cleaner and easier to understand

Groups

  • Groups – New properties added
  • Groups – Fixed ‘Add Guests’ property column
  • Groups – fix on owner management

Users

  • Users – Password Reset – UI improvement (columns and all)
  • Users – Getting license details is now faster (uses cache rather than reloading all)
  • Users – OneNote files can now be “managed” same as other OneDrive files (i.e. download, remove, rename…)

Grid configuration options reorganized

  • Colmn Map dialog improvements
  • Moved default menu and all sub-menus
  • Made the Manage Grid Config button more accessible


sapio365  1.4.0

Jun 11 2019

What’s new in the latest version?

Learn more about version 1.4 >

NEW – General

  • Caching of data for Users module and Groups module
  • Comments – Add personal comments in any grid – Can be shared and edited
  • Column Map available in all modules – Quickly find and add any column to any grid
  • Usage Reports available for Users and Groups
  • Drive quotas now available in Users module
  • Additional properties added to Users module
  • Drive quotas now available in Groups module
  • See and edit Managers in Users module
  • Global counters in Files module: number of files & folders; folder size; total size
  • New button: Create Teams from Groups
  • Teams icon now displayed in all group-related modules
  • New session: info about consent and its meaning
  • Multiple Ultra Admin sessions now possible on 1 tenant

Role-Based Access Control (RBAC)

  • New – Can now set credentials with a foreign tenant
  • New – Easy Create button for creating RBAC credentials
  • Improved – multiple improvements; more stable

Jobs

  • New – See users for selected licenses in Tenant Licenses module
  • New – Find shared files in Users
  • New – Find shared files in Groups
  • New – Find shared files in Sharepoint Sites
  • New – Deactivate selected users
  • Improved: find groups with no member, no owner
  • Various small improvements

Global – Improvements and fixes

  • New: easy Create button setup process for CosmosDB
  • New: easy Create button for Ultra Admin applications
  • Fixed potential issue with firewalls and proxies when logging in
  • Improved: on new session more info provided for login errors
  • Improved preferences panel
  • Fixed: formatting in grid for large numbers and bytes
  • Fixed: files’ permissions editing of type (read/edit)
  • Small fix: grid filters now show warning if no filterable rows available
  • Fixed: date format in grid and for export
  • Improved: drag & drop in grouping zone optimized
  • Simplified ribbon for User management & Group management sections
  • Simplified ‘Compare’ dialog
  • Global stability improvements
  • Various small fixes
  • Various UI improvements (incl. enhanced home page)
  • Various term corrections

Groups

  • New column: ‘Guest Allowed’ (true/false)
  • Improved: owners are now shown directly in the main Groups module
  • Refresh in Groups module no longer shows empty lines after a Load Info

Messages

  • Can now access users’ private chats from Teams in Messages module (listed as entries without any Parent Folder set)

Users

  • Small fix: canceling loading of users disabled all buttons in frame
  • Password column now displayed when creating a new user
  • User signed-in status shown as icon (replaced checkbox) for better readability

sapio365 Licensing

  • NEW – Only licensed users are counted toward Ytria licensing count
  • NEW – Now free access to personal data for all users


sapio365  1.3.0

Mar 19 2019

What’s new in the latest version?

New

  • Role-Based Access Control (RBAC)

Improved

  • Users – New properties
  • Group Members/User Memberships – faster retrieval
  • User/Group Selection dialog – now uses caching instead of ‘load all’ by default
  • Groups – Owners are now shown directly in the main Group ModuleGroup Recycle Bin – added new properties
  • OneDrive for Groups – removed incorrect Private status
  • Attachment related information – properties renamed
  • Horizontal scrolling in the grid is much faster
  • Improved display of icons on HDPI
  • No more main-frame size limitation

Fixed

  • Users – some information was not shown after making an edit
  • OneDrive – was missing data for some users
  • Group Members – corrected potential infinite loop handling of some complex group nesting
  • Groups – was missing information after creation
  • Group Delivery Management – ‘Delete Restrictions’ was not working
  • Group Recycle Bin – ‘Deleted time’ was not displayed
  • Sites – ‘Created on’ and ‘Modified’ columns were always empty
  • Grid – in Hierarchy mode – hiding a parent was not hiding its children
  • Grid – the date format was inconsistent when using copy/paste
  • Ytria License – improper tenant name was used for license validation

Jobs

  • New – Users: Show external email forwarding rules for all users
  • New – Groups : Get memberships of a selected group
  • New – Groups: Find empty groups
  • New – Groups: Find memberless groups
  • Fixed – Groups: Show groups with guest owners
  • Fixed – Users : Export content of all selected users
  • Fixed – Groups: All documents/folders shared with guests


sapio365  1.2.0

Jan 21 2019

What’s new in the latest version?

New

  • Added mail header information in the Messages grid.
  • New ribbon function: Rename OneDrive files and folders.
  • Added access to new information (OneDrive, mail, etc…) for User and Group Recycle Bins.
  • Added new ‘Last queried on’ column to show when the data was last requested.
  • Added User Activity Logs to keep track of user-initiated editions.
  • Added new column in Groups: Membership count.
  • Added new column in Groups: Owner User Names.

Optimized

  • Added new ‘Assigned Licenses’ column in the Users grid.
  • Changed the value type and terms for the ‘Sign-in status’ column in the Users grid.
  • Changed the scope on which the Refresh Selected and Save Selected take effect when the grid has been categorized.
  • When grouping, terms of categorized values are now displayed as ‘True/False’; changed from ‘Checked/Unchecked’.

Improved

  • Content search for Group Conversation Posts is now available via added ‘Preview’ column in the grid.
  • Optimized loading of OneDrive item permissions. ‘Owner’ permissions are now hidden by default.
  • Cleared up the organization of exploded multiple value cells with index columns on the extreme left.

New Jobs Added

  • Users: Users with duplicate plans
  • Users: List Teams of selected users
  • Users: Export content of all selected users
  • Users: View by status: guest, sign-in, unlicensed…
  • Groups: All documents and folders shared with guests
  • Groups: Add ‘non-member’ group owners as members for selected groups.

Fixed

  • Fixed large volume processing issue when fetching messages and events.
  • Additional miscellaneous fixes.


sapio365  1.1.0

Oct 18 2018

What’s new in the latest version?

New

  • License/service plan editing implemented in Licenses module.
  • Copy/move now possible for group memberships.
  • Mail rules now available (for current user, and in Ultra Admin sessions only).
  • Revamped UI/logic for group member handing in both Users and Groups module.

Improved

  • Edit/refresh in hierarchy grid now allowed for targeted data “scopes.”
  • Upgraded selection dialog mechanics for groups and users.
  • General grid UI improvements.


sapio365  1.0.1

Oct 03 2018

What’s new in the latest version?

Fixed

  • More fixes and continual improvement of how sapio365 works with proxy connections.
  • Issues with display/retrieval for certain properties in Groups module now fixed.
  • Error management when retrieving additional data in Users and Groups has been improved.

New

  • Multiple new jobs now available in the Job Center console.
  • Invert grid selection now possible.

New

    • Significant performance enhancements for loading speed and data manipulation.
    • Better handling of additional data retrieval for open grids.
    • Cell explosion for multivalue cells now with clearer UI.
    • General grid UI improvements.


sapio365  1.0.

Jul 28 2018

Official Base Gold Release


sapio365  0.5.0

Jul 01 2018

What’s new in the latest version?

Fixed

  • Proxy connection errors have been solved! Some users would receive an error when trying to provide admin consent with application IDs set to the previously recommended redirect addresses. The redirect address is fully user definable within sapio365.
  • Target folder when downloading files is now created. A fix for errors occurring when the target folder didn’t exist.
  • Records editing—fixed ‘Apply’ button being active even when no modifications had been made.

New

  • Create groups directly from sapio365.
  • Create user profiles.
  • Reset passwords on any number of users, with options to set custom or auto-generate passwords, and force change on next login.
  • Manage global group settings as well as group expiration policy settings.
  • View Microsoft Teams conversations and handle Teams-related information such as:
    – Member settings
    – Guest settings
    – Fun settings
    – Team URL
  • Concurrent live sessions. All sessions now stay active regardless of tenant, and without the need to sign in/out.
  • Restore, report, or fully delete soft-deleted users, groups, and sites.
  • Edit granular permission settings on OneDrive files.

Improved

  • Editing of groups and users fully stable.
  • Better multi-value cell handling and presentation.
  • Better handling of “cancel” operations when loading a large volume of information.
  • Various performance improvements and visual enhancements.
  • Continued ribbon UI consolidation.


How do I create a Cosmos DB account?

How do I create a Cosmos DB account?

What is Cosmos DB?

Azure Cosmos DB is a globally distributed, database service, transparently replicating your data across any number of Azure regions.

Why we use Cosmos DB?

sapio365 uses Cosmos DB to securely store RBAC information and settings. This means all data remains secure within your Tenant ecosystem – Ytria has no access.

How do I create an Azure Cosmos DB account?

Before you start, you must have:

  1. An Azure account with
  2. an active subscription

In sapio365, go to About sapio365 > Set Cosmos DB Connection Info > Create New Cosmos DB Account. Once you’ve signed in using your credentials associated to the Azure subscription, select your subscription and resource group, and click ok. It may take a few minutes to create it.

Next, enter the subscription code that is located on your invoice below the cleverbridge reference number before clicking OK.

How do I delete Cosmos DB accounts created by sapio365?

Go to About sapio365 > Set Cosmos DB Connection Info > Delete accounts created by sapio365. Select the account you wish to delete. Copy the account name to your clipboard to paste in the confirmation dialog that follows, then click OK.

Try sapio365 today:

Free for 7 days

No credit card required. Install it locally.
Download. Install. Register. Work.
It’s that easy.


How do I create an Advanced session with elevated privileges?

How do I create an Advanced session with elevated privileges?

Before you begin

A sapio365 Advanced session with elevated privileges is different from either a Standard or Advanced session in that the registered application it uses does not require that a ‘user’ signs in. Also, while those other session types use an Azure Active Directory registration created by Ytria, to elevate privileges of an Advanced session you must use a registered application in your own tenant, based on select Microsoft Graph permission scopes.

The quickest way is to automatically create a sapio365 application in your tenant directly from sapio365 (follow the steps in option 1).

Control and liability

There is no “user” signed in during an Advanced session with elevated privileges, so there are real-life security implications that you should be aware of when setting up your application permissions.

You are registering the application yourself. So you can define the application permissions as you see fit. If you choose, you can register multiple applications, all with different permission profiles.

Any applications you register will be unusable until an administrator has consented to all assigned permission scopes for the application. The permission scopes shown in this document represent the maximum access potential. You can decide for yourself any limits you’d like to place on your Advanced session with elevated privileges. You can modify the permission scopes for the application even after admin consent has been given. Feel free to experiment.

Even after admin consent has been given for the application. sapio365 will require both the application ID and the password.

We highly recommend that you protect all application IDs and passwords so that only eligible users can use Advanced sessions with elevated privileges.

OPTION 1: Create application from sapio365

The quickest way to create an Advanced session with elevated privileges is to do it right from sapio365. The process creates a new registration with API permissions pre-selected (listed in Option 2, Step 13) for maximum access. You can always add or remove permissions for this application from the Azure portal.

Step 1  – In an active Advanced session, click on the ‘Elevate Privileges’ button at the top left.

Step 2 – Click on ‘Continue’ to create the application in your Azure AD (this may take a few minutes).

Step 3 – Click on ‘Proceed’ to continue. You’ll only see this dialog box after your first launch of an Advanced session in sapio365.

Step 4 – Sign in with your credentials.

Step 5 – Consent to the permissions used by the application.

You’re now ready to access all mailbox and site content!

OPTION 2 - Create application at the v2 Azure Active Directory Endpoint

To work with an Advanced session with elevated privileges, you’ll need a key pair for proper authentication: an app ID that will identify the application and the password provided (see Step 8) which will authenticate the application.

Step 1
Go to Azure portal and sign in with your credentials.

Step 2 – Create a new registration

Step 3 – Name your application.

Redirect URI (optional): If you choose not to give consent during the registration process (Step 7) and to give consent directly in sapio365, you will need to enter the following URI: http://localhost:33366. This is the default address used by sapio365 to complete the consent process. If you need to enter a different address, you may.

Step 4 – Register it.

Step 5 – Copy and save the Application ID to enter in sapio365.

Step 6 – Add permissions.

Step 7 – Click on “User.Read” permission.

Step 8 – Remove this permission.

Step 9 – Click on “Add permission”.

Step 10 – Click on Add permissions.

Step 11 – Click on “Microsoft Graph”.

Step 12 – Click on “Application permissions”.

Step 13 – Select permissions.

In each category, check the required permissions (see the recommended list below) and when finished, click on Add permissions.

You have full flexibility to add whichever permissions you choose. The following list of permission scopes is simply a suggestion. To learn more about these permission scopes, see the Active Directory v.2 Permission Scope Reference Guide.

For a complete experience, the following permission scopes should be assigned:

CalendarsCalendars.ReadWrite
ChannelMessages
Contacts.ReadWrite
Directory.ReadWrite.All
Files.ReadWrite.All
Group.ReadWrite.All
Mail.ReadWrite
MailboxSettings.ReadWrite
Member.ReadHidden
People.Read.All
Reports.Read.All
Sites.FullControl.All
User.ReadWrite.All

If you have opted to consent through the application, skip the next steps and go to step 17.

Step 14 – Click “Grant admin consent for ….”

Step 15 – Confirm the consent request.

Step 16 – You will see a confirmation.

Step 17 – Go to “Certificates & secrets”.

Step 18 – Click on “New client secret”.

Step 19 – Choose an expiration period.

Step 20 – Click “Add”.

Step 21 – Copy and save the new client secret to use in sapio365.

IMPORTANT: This is the only time you will see your password! sapio365 will not let you retrieve it. Take note of it now and keep it safe.

Try sapio365 today:

Free for 7 days

No credit card required. Install it locally.
Download. Install. Register. Work.
It’s that easy.