We’re excited to see you adding a new customer of yours to Guardz!
Rest assured, once they’re fully onboarded, Guardz will protect them from the most common attack vectors.
MSP, before you start adding a customer, make sure your account has been activated; otherwise, you won't be able to onboard a customer.
Go to Security Controls > Cloud Directory Posture, click on 'Connect' and move to download the Google / Microsoft application to complete the activation.
**You can only onboard businesses to Guardz using Google or Microsoft365**
💡Note: You can read more about the Google or Microsoft 365 directories integrations and the permissions
1. Add a New Customer
To add a new customer, click ‘+ New’ > New customer in the MSP dashboard
Choose the Cloud SSO (Google/ Microsoft 365) your customer works with.
* Keep in mind the customer’s Data Storage preferences will be the same as yours.
Grant Guardz the permissions for the authentication using a global admin account on your customer tenant to start securing your customer's users.
💡Note: You can read more about the Google or Microsoft 365 directory integrations and the permissions
2. Assign Licenses
Manually review the list of users and decide who should get an active Guardz license.
The User Type you’ll be presented with is based on the email status in the main directory of the customer:
Regular employees - will be assigned an active license by default
Shared inboxes - will be assigned with an active license by default
(*Will be counted as a paid license per shared inbox)Inactive / suspended account - will be assigned with an inactive license by default
Conference rooms - will be assigned with an inactive license by
External / Temporary users - will be assigned an inactive license by
*Only users with active licenses will be protected by Guardz and counted as active subscriptions.
Next, you can choose which Role each active user will get - Admin, member, or viewer
💡 Note: you can always work on it on the Users Management page later.
3. Update Email notification preferences:
Navigate to My Profile to set the proper settings for the email notification of your admin user for the newly managed customer.
By default, Real-time notifications will be turned off for every new customer you’ll add.
You can activate or disable the notifications using the toggle and set the severity threshold (info, Low, Medium, High, and Critical) for each customer differently.
Notifications can be sent to admin users only. As long as your customer is not an admin, he will not be able to receive issue notifications.
4. Available Modules
Now that you officially added your customer and started their 14-day trial, four features will be available right away:
External surface - summarizing a potential client’s risk across the digital footprint. Results for the External Surface will be ready between 3 hours and up to 72 hours, and you’ll be notified by email when it is complete.
Compromised data - The initial scan results for Compromised Data should be available immediately
Cloud apps: as part of the cloud app integration, Guardz will implement security scans of users to track their posture and monitor behavior such as missing MFA and inactive users.
Awareness: you now have the option to launch Awareness training and Phishing simulations for your employees. Choose the campaigns across a content library or use the AI-driven phishing tool to generate a phishing simulation.
Let’s check first how alert your employees are to Phishing attacks. Create your first simulation and send it to the employees to test their current awareness situation and track the results.
After that, when you’ll know a little bit about your employees' knowledge, we can start the education phase. Go over the different suggested campaigns and choose the one that fits the best for your employees.
You can send the Employee Experience Guide to your end users to help them understand how to complete the Awareness campaign.
💡 Note: Data Protection features in Cloud Apps must be installed as an additional step.
5. Additional Modules Activation
The following modules require manual activation from within the platform and have different deployment options:
Email Protection: Start protecting the email inbox of your customers with Guardz. Follow the application installation instructions after you activate the module, and use the installation guide to get familiar with the settings.
If needed, you can send employees a guide about the Employee Experience Guide and what to expect from Guardz.
We suggest updating the Email Settings thresholds after some time to reflect better the situation of the organizations you manage. Considering that Guardz's default Email Settings are conservative, it may be more efficient to change the range of the risk scores after reviewing the email-related issues.
Device Protection: Deploy the Guardz device agent to protect the different endpoints across the organization. After activating the module, you’ll need to distribute the agent using RMM or a manual installation script.
Web Browsing Protection: Add additional protection to the user's web browsers by distributing the Chrome extension via email, admin settings, or direct link.
Cloud Apps - DLP: integrate Google Drive, Microsoft OneDrive, Microsoft Sharepoint, and monday.com applications to secure data at rest in these cloud stores by discovering externally and publicly shared files and folders.
6. Customers Management
Use the Customer Management screen to view all the customers you’re protecting with Guardz. You can view the overall number of users, their current security score, the registration date, and the number of open issues.
From here, you can create the ROI report for each of them and also Delete a customer if needed.
7. Personalized branding (emails, reports, and user portal)
The logo and company details will show up in every engagement Guardz will have with your customers’ end users.
By default, your MSP organization settings will be shared automatically with your customer account. If your customer wishes to use their own branding, they have the option to override your MSP branding from their Organization settings by checking ‘Override Global Settings’.
For self-managed businesses that don't have an MSP account, you only need to select 'Self Managed' business in the onboarding process and activate the account using the organization's primary cloud app.
From there, you can continue with the activation as described in steps 2-7
How to handle issues?