Power Platform enables the developers to build Apps, websites, Dashboards, Chatbots and automate processes while connecting to various internal and external data sources through 1000+ built-in connectors. It not only empowers the citizen developers to rapidly build applications boosted by AI powered guidance, also there is immense capability for the Pro developers to create custom connectors for any data sources, extend the platform to leverage the capability of other services like Azure or frontend technologies.
With this empowerment, it’s mandatory to set up proper governance and monitoring to ensure the security and proper management of the platform. Now the governance covers a really BIG area, starting from choosing the right tools, creating security and support models, setting up defined processes for user access, applications and license management and planning for enabling the developers and administrators. If you are at the beginning of your Power Platform adoption, you may feel overwhelmed with this, so a consolidated checklist will help you to understand the required tasks, plan accordingly and make sure that you are not missing anything.
This article walks you through the fundamental steps you need to follow to set up a full proof Governance Plan and getting yourself geared up to start your Power Platform Adoption journey.
Getting ready to setup Governance
Setup Center of Excellence Team
This team is responsible for Governance, Administration, monitoring. There can be one Central team for an organization, or multiple teams for different regions or divisions. Usually members of this team are assigned Power Platform Admin or Global Admin role.
Install COE Starter Kit
CoE Starter Kit is a collection of components and tools that are designed to help you get started with developing a strategy for adopting and supporting Microsoft Power Platform. Get it here
Analyze current Power Platform Inventory (if any)
You can use COE Starter Kit Power BI Dashboards to get an idea of current landscape of your Power Platform
Data Loss Prevention Policies
Cross tenant isolation
From Power Platform Admin Center, create tenant rules to allow or disallow the data flow to or from another tenant. Please see here for more details.
Conditional Access Policies
If you want to pilot your Power Apps or Power Automate for a set of users only, you can set that up using Conditional Access Policy
Controlling Environment creation
Not every licensed user should be allowed to create environment, restrict environment creation to Admins only from Power Platform Admin Center Settings
Security groups for each environment
Decide whether you should use Security groups to control environment access, details here
Process for requesting user access into QA/Prod
Define a process of requesting user access, you can create a custom application using Power Apps and Power Automate or use your existing ticketing system.
Strategy for managing guest user access
If you don’t want guest users to access your tenant, you can control it through tenant settings. If you want to restrict only for Power Platform, this can be done using Conditional Access policies.
Decide the License requirement to kick start your Power Platform Adoption
This example gives you an comparative idea of which type of license to choose.
Define a process for the users to request new license
Check if you can use your existing Ticketing system for license requesting.
App and Flow Management
Application Lifecycle Management
Monitoring and Analytics
Monitor your Platform in a regular basis to make sure nothing is going beyond as expected
You can use Out-of-the-box Analytics from Power Platform Admin Center. Turn on Tenant level Analytics to have an overall view
Leverage COE Starter Kit Power BI Dashboards
You can get the Audit log data for Apps Create, Delete, Launch etc. from Microsoft Compliance Center Audit Log, view details here
Install COE Starter Kit Audit log component which is a wrapper on top of this.
Developer Guidance, Upskilling, Communication and Support Plan
Create Developer guideline document with standards and best practices. Set up training sessions if needed.
Empower your citizen developers with proper training and resources.
Create a website with all Power Platform quick reference materials
You can leverage Power Platform Hub template
Create a support model for supporting both developers and end users
Decide how will end users raise issues/queries , do you want to use a ticketing system? How will developers reach Administrators for any support needed?
Have a plan for Administrative tasks
You can use COE Starter Kit Administrative task component
Define a strategy for communicating any announcement to the users