Edit Tenant Configuration

Editing and adjusting the tenant configuration.

Only authorized administrators with specific rights for user administration may edit all options of a tenant.

  1. Select tenant configuration
  2. Click on the icon to open the tenant configuration.
Tenant configuration
Tenant configuration
  1. Adjust the required settings.
  2. The following settings are displayed and can be configured:

Option/Function

Description

Name

Unambiguous, unique name of the tenant. This can be changed here.

NOTICE! The Name and the Admin ID are defined during onboarding.

Admin ID

Change existing admin ID, e.g. when changing the unique user ID or the responsible administrator.

Bot Usage

Activate to display the bots used.

Licenses, add ons, license packages and contract numbers

Displays licenses, add ons, license package and contract numbers.

Domain restrictions list

Specify which domains are permitted for emails and app news.

  1. In the field Domain restrictions list, enter your domain as well as further permitted domains separated by commas.
  2. Example: asc.de,asctechnologies.com

If the Domain restrictions list is empty, there are no restrictions.

General Alarming

Receive general alerts and notifications related to system events and application updates.

  1. In the field General Alarming, enter one or several email addresses separated by commas.

Commercial Alarming

Receive commercial consumption notifications about storage, analytics, export, and license usage. Alerts are sent when usage thresholds are reached for storage, analytics, export volume, or licenses. For example, storage notifications are triggered when 50%, 80%, or 100% of the available capacity is reached to ensure that additional resources can be arranged in time.

NOTICE! The Commercial Alarming contact is synchronized from ASC Dynamics for the respective customer and ensures timely communication regarding consumption thresholds or capacity limits.

  1. In the field Commercial Alarming, enter one or several email addresses separated by commas.

Global Storage

Define storage location for recordings and configure connection to Azure Blob Storage.

  1. Select the storage location in the field Storage to save recordings in the corresponding region, see List of Storage Locations.

Key Management

Customize encryption and key management for recordings.

  • Standard: Do not use customer key management (Managed keys).
  • ASC-Managed Keys: Define an asymmetric key, see Asymmetric Key.
  • Dynamic integration when activating: ASC-Managed Keys.
  • Customer-Managed Keys:
    • Configure the Customer Key Vault URL address for the key vault and the Customer Secret Name.
    • Defining an Asymmetric Key, see Asymmetric Key.
    • Dynamic integration when activating: Customer key management.

Customer Key Vault URL

Configure the URL address for the key vault and the customer secret name.

NOTICE! Key vault accesses to the Microsoft Azure Active Directory must be created according to the specifications of Microsoft.
The URL address for the keystore and the encryption name must match for the data exchange of the data sources.

  1. In the field Customer Key Vault URL, enter the URL address for the customer’s key vault.
  2. Example: customer-key-vault-name, the name can be selected arbitrarily.
    Customer Key Vault URL: https://customer-key-vault-name.vault.azure.net/

Customer Secret Name

Define customer secret name, see Customer Secret Name.

  1. In the field Customer Secret Name, enter the customer secret name.
  2. The customer secret name can be selected arbitrarily.

Check Validity

  1. Click on the button Check Validity to check the Customer Key Vault URL and the Customer Secret Name for validity.

Asymmetric Key

Encryption with RSA encryption method, see Asymmetric Key.

  1. Activate the check box Asymmetric Key
  2. Select the Key Type RSA.
  3. Select the encryption size in the field Key Setting.
  4. Select the rotation type Manual.
  5. NOTICE! For the asymmetric key, only the rotation type Manual is supported.
  6. Click on the button to upload a private key.
  7. Click on the button Activate Asymmetric Key to activate the asymmetric key.
  8. NOTICE! To save the created asymmetric key, click on the button Save.

The following settings must be configured in the customer’s Microsoft Azure configuration:

Key security

Specify the encryption level and use the encryption keys to encrypt the data securely.

  1. In the field Key security, select the encryption level.
    • List of encryption levels.
      − AES128 = 16 characters,
      − AES192 = 24 characters,
      − AES256 = 32 Zeichen

Rotation Type

Set key rotation manually or interval-based. Encryption keys (Recording Insights or customer-managed keys) are rotated in the current configuration. The encryption keys can be adjusted individually in Recording Insights. The encryption key is saved in the tenant configuration.

  1. In the field Rotation Type, select the rotation type.



Key creation interval
Delay of activation
Key expiration date with validity check

Event Hub

Defines whether audit logs are sent to an Azure Event Hub in your Azure subscription. When enabled, all generated audit logs are transmitted in parallel to the Event Hub in.js format, in addition to being stored in table storage. This allows external systems to process or monitor audit events in real time.

Host-Name

Specifies the fully qualified namespace of the Azure Event Hub instance (e.g., markuseventhub.servicebus.windows.net). The host name uniquely identifies the Event Hub service within Azure and determines the destination environment for audit data transmission.

  1. In the field Host-Name, enter the Host-Name.

Event Hub Name

Defines the name of the Event Hub within the configured namespace where audit logs are sent (e.g., testaudit). Each Event Hub acts as a specific endpoint for receiving and processing audit events from Recording Insights.

NOTICE! Both the Host-Name and Event Hub Name must match the configuration of the customer’s Azure environment to ensure correct data delivery.

Check Validity

  1. Click on the button Check Validity to check the Host-Name and the Event Hub Name for validity.

Audio storage settings

Convert and archive audio files subsequently, see Audio Storage Settings.

Suspension of all conversation deletion process

Interrupt all deletion processes, see Suspend Deletion Processes for all Conversations of a Tenant

chatModelA

When using the chat module, there are two models to choose from, which differ in terms of security, license requirements and reliability of message transmission. Model B (Non Security & Compliance) is activated by default. Here you can activate model A.

Model A – Security & Compliance

  • License requirement: Requires one of the following licenses per user: Microsoft 365 E5, Microsoft 365 A5, Microsoft 365 G5

Model B - Standard

  • No license requirements: No special Microsoft 365 license is required.

NOTICE! Please refer to Microsoft manual documentation.

Bot-Onboarding

AI Service - Interaction logging

The option User Group Sync allows creating new users in Recording Insights and assigning them the rights and rules of a group.

Recording Insights group rules are assigned directly to Microsoft Entra ID group users.

NOTICE! Users must be member of a Microsoft Entra ID group.

  1. Click on the button Save to save the settings.
    Click on the button Cancel to discard the settings.