Solved

Microsoft Audit question

Posted on 2016-09-02
13
74 Views
Last Modified: 2016-09-02
We are trying to find out if I.T.  should tell management that Microsoft or any other software company can legally come to their place of business at any time and demand to do their own audit to get a count on their software?

Is this true? Has anyone ever been audited.
0
Comment
Question by:regsamp
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 4
  • 2
  • +1
13 Comments
 
LVL 3

Assisted Solution

by:François Peroux
François Peroux earned 125 total points
ID: 41781564
Hello,

I had couple of clients who had been audited by Microsoft. It's not someone who come physically to your place but they invite you to give them all the information about your licences.

They can do it, and legally.
0
 

Author Comment

by:regsamp
ID: 41781570
I have heard that but what if you do not participate in the invite, can they then legally require you to allow them to remote into the network or physically come to the site to do an audit?
0
 
LVL 3

Expert Comment

by:François Peroux
ID: 41781576
They'll never come to your place or take control of your servers/computers.

They'll insist for you to fill the forms they send you, calling you, sending email (like everyday or couple times per week).
0
Comprehensive Backup Solutions for Microsoft

Acronis protects the complete Microsoft technology stack: Windows Server, Windows PC, laptop and Surface data; Microsoft business applications; Microsoft Hyper-V; Azure VMs; Microsoft Windows Server 2016; Microsoft Exchange 2016 and SQL Server 2016.

 
LVL 95

Assisted Solution

by:John Hurst
John Hurst earned 125 total points
ID: 41781579
I think you need to allow them to come in to audit (yes, they can do this).

Do not let them remote in.
1. You do not know who is on the other end.
2. You cannot audit paper records (often needed) by using remote access.
0
 

Author Comment

by:regsamp
ID: 41781604
But couldn't someone just fudge the forms? That is how Microsoft takes a count? Then how do people get fined if there is not a way for Microsoft to confirm physically?
0
 
LVL 95

Expert Comment

by:John Hurst
ID: 41781609
It is pretty easy to spot fudged forms. And Microsoft is entitled to check with the vendor of the software and computers list on the invoices.
0
 

Author Comment

by:regsamp
ID: 41781613
I see. I was just trying to get a general picture of how it worked. Our environment is in total compliance but there was a debate on what to tell management about the specifics and how it works exactly and I am unclear myself.
1
 
LVL 13

Accepted Solution

by:
Dustin Saunders earned 250 total points
ID: 41781616
It depends on how you do your licensing, but for example, two of my companies that are Microsoft SPLA have been audited and it was a 2-3 month process, we did have auditors on site for a few days and had to present our licensing to them with proof collected from the environment using their tools.

If you have any licensing issues, they will bill you for them.  They do have the right to do this per your license agreement with Microsoft (that long EULA you click ok on when you install it) and especially if you are SPLA.
1
 
LVL 95

Expert Comment

by:John Hurst
ID: 41781617
If you are in complete compliance (as are my clients) it is generally easy to lay out the necessary paperwork, help them through it and bid them good day.
1
 

Author Comment

by:regsamp
ID: 41781654
Thank you for that Dustin. That is how we do our licensing. Thank you everyone else.
0
 
LVL 13

Expert Comment

by:Dustin Saunders
ID: 41781658
@regsamp - np, good luck.

Be sure to look through all your active directory users, installed licenses to make sure everything is good.  You have time to fix problems before the audit starts, but when it starts if they find an error you will get billed for that item back to the start of your current SPLA contract regardless of when the item was turned up (i.e.3 year contract & if you have an instance of SQL server you turned up yesterday and you didn't report it, they will bill you for 3 years of that SQL server.)

We have a very large infrastructure here and at my previous company, and both times we enlisted SPLA attorneys to help with the audit.  We were able to avoid any penalties from Microsoft both times, but if your company is large enough you may consider that.
0
 

Author Comment

by:regsamp
ID: 41781868
The experts were quick and gave great advice and insight.
1
 
LVL 95

Expert Comment

by:John Hurst
ID: 41781886
Thanks and we are happy to help.
1

Featured Post

Office 365 Training for Admins - 7 Day Trial

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Australian government abolished Visa 457 earlier this April and this article describes how this decision might affect Australian IT scene and IT experts.
If you are IT support and need to work after hours to resolve customer issues then here are a few tips on how to handle after hours support
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…
NetCrunch network monitor is a highly extensive platform for network monitoring and alert generation. In this video you'll see a live demo of NetCrunch with most notable features explained in a walk-through manner. You'll also get to know the philos…

726 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question