LogoLogo
LogoLogo
  • Welcome
    • Navigation
  • RealmJoin Deployment
    • Onboarding
    • Required Permissions
    • Infrastructure Considerations
      • Multi User Devices
    • Migration to RealmJoin vNext
  • User, Group and Device Management
    • Overview
    • User Profile
    • Organization Details
    • User, Group and Device Lists
      • Advanced Search
      • User Details
      • Group Details
      • Device Details
    • User and Group Settings
      • Available RealmJoin Policies
  • App Management
    • Packages
      • Package Store
        • Application Store Details
      • Package Management
      • Package Details
      • Package Assignments
        • Package Migration
      • Package Settings
      • Packaging Requests
        • Organic Packages
    • AVD Templates
  • Automation
    • Connecting Azure Automation
      • Required Permissions
      • Runbook Parameters
    • Runbooks
      • Runbook Customization
      • Runbook Permissions
      • Naming Conventions
      • Runbook Scheduling
      • Runbook Logs
        • Runbook Job Details
      • Runbooks Changelog
    • Requirements
    • Remediation Scripts
  • RealmJoin Agent
    • Features
      • Local Admin Password Solution (LAPS)
        • KeyVault
        • Application Insights
      • Notifications
      • AnyDesk Integration
        • AnyDesk configuration
      • App Deployment using the Agent
        • RealmJoin ESP
    • Deploying the Agent
    • User Interface
  • Logs
    • Connecting Azure Log Analytics Workspace
    • Audit Log
  • RealmJoin Settings
    • Overview
    • General
    • Roles and Permissions
      • Pre-defined Roles
      • Custom Roles
        • Available Permissions
    • Group Namespaces
    • Workplace Cloud Storage
    • Self Service Forms
  • Developer Reference
    • RealmJoin API
      • Authentication
    • Interacting with Runbooks
    • Simulating a Runbook Environment
    • Local Admin Password Management
  • Other
    • FAQ
      • Security
    • Troubleshooting
      • Package Installation Issues
        • Collecting Logfiles
        • Logfiles Structure
        • Analysing chocolatey.log
        • Troubleshooting failed chocolatey packages
        • Troubleshooting failed craft packages
        • Fixes for common issues
        • Intunewin Debugging
      • LAPS Issues
        • LAPS account passwords cannot be retrieved
        • Requested LAPS Accounts are not being created
    • Changelog
  • Legal
    • Licensing
    • Support & Service Level
  • RealmJoin Website
Powered by GitBook
On this page
  • Migration to PowerShell Runtime Environments
  • Common Runbooks
  • Syncing from the Shared Repository
  • Customization
  • Scopes
  • Access Control

Was this helpful?

Edit on GitHub
  1. Automation

Runbooks

Automate day-to-day operations in your environment.

Last updated 2 months ago

Was this helpful?

RealmJoin provides administrators with the ability to automate tasks by using Azure Automation to execute PowerShell Runbooks.

Runbooks are scripts, automating tasks that normally must be executed by a support engineer / operator or administrator. Automating these tasks lowers the risk of manual error and allows better auditing of actions.

Some common tasks RealmJoin can help you automate include:

  • User lifecycle operations (onboarding/offboarding users)

  • Creating Temporary Access Passes (TAPs)

  • Reporting M/O365 license usage

  • Managing email aliases

You can offer RealmJoin Portal to your support and administration teams to simplify and improve the quality of your day-to-day operations.

Migration to PowerShell Runtime Environments

RealmJoin is currently in the process of migrating from Windows PowerShell v5.1 to a PowerShell v7.4 Runtime Environment.

Make sure the "Runtime Environment" experience in your Automation Account is enabled.

When running a sync, a custom PowerShell Runtime Environment "RJ-PowerShell-7.4" will be created, synced runbooks will be moved to this environment. If needed, required PowerShell modules will automatically be imported.

Due to varying process durations that might cause errors like 404, please sync again. Additionally, wait a few minutes before starting the first runbook after the migration.

Custom / non-synced runbooks will not be upgraded automatically.

You can use Azure Portal and use "Edit in Portal" on these runbooks to manually migrate them. Make sure to "publish" the runbooks for the change to take effect.

Common Runbooks

RealmJoin maintains a shared online repository of runbooks. They aim to cover many common operations found in most environments. The runbooks are continuously updated and improved. Of course, you can include your own custom runbooks, too.

RealmJoin Portal allows you to import these runbooks via RealmJoin Runbook Management App into your environment and offers your support and administration staff an easy, non-technical interface to the tasks the runbooks cover.

Syncing from the Shared Repository

You can trigger a sync from the shared repository to your Azure Automation account by clicking "Sync runbooks with upstream" at

https://portal.realmjoin.com/settings/general

Wait for the "Sync completed" message. Please keep the browser window open while the sync process is running.

As described in the naming convention this will add, update and if needed remove runbooks from the connected Azure Automation Account to be in sync with RealmJoin's shared repository. This ensures that your runbooks are up to date, including improvements, fixes and new features.

Customization

You can customize existing and new runbooks to your environment. For example, you can

  • Use templates for common pieces of information, like office locations

  • Prefill / preconfigure parameters, like to not allow deleting user object when offboarding

  • Hide certain inputs/parameters

See Runbook Customization for more details.

Scopes

Runbooks in RealmJoin Portal are scoped to the different types of objects in your environment. Some runbooks operate on the tenant / organization level, like creating a license report. Some runbooks are scoped on a per user basis, like resetting a password. RealmJoin Portal uses this scoping to offer the right runbooks in the right context.

See Naming Conventions to learn about how runbooks are scoped to certain objects in your environment.

Access Control

Access/Permissions to use certain runbooks can be granularly given on a runbook level. For example, Runbook Permissions could help you:

  • Only allow access to this runbook to the 3rd level operators

  • Only allow our VIP support crew to change the CEO's email address

See Runbook Permissions for details on how to implement such rules in your environment.

Trigger a sync of your runbooks