azcomputerguru/claudetools
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
a9bcbc258032f85200a094b4422a231254ad86f1
claudetools/clients/birth-biologic/session-logs/2026-04-21-session.md
Mike Swanson a9bcbc2580 Session log: BirthBiologic Datto-to-SharePoint migration 
Supply Management migrated (160 files), SPMT launched for 4 remaining
folders, Syncro ticket #109277420 opened, SPB license assigned to
sysadmin. Script, errors, SP site map, and next steps documented.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-04-21 17:59:37 -07:00

9.1 KiB
Raw Blame History

Session Log — BirthBiologic — 2026-04-21

User

  • User: Mike Swanson (mike)
  • Machine: DESKTOP-0O8A1RL
  • Role: admin

Summary

New client onboarded into GuruRMM. Client and site created. Vault entry saved. MSI installer ready for deployment on their server.

Client Details

  • Client name: BirthBiologic
  • GuruRMM client ID: da526b38-e832-4159-ab13-a3d94e9897a2
  • Site: Main Office
  • Site ID: 3b20ef97-c764-4ef8-9154-79c3d5b486f8
  • Site code: BRIGHT-PEAK-5980
  • API key: grmm_1ZB1qV9Q61b9Noq8BIaZGwLNjZMfF49i
  • Vault: D:/vault/clients/birthbiologic/gururmm-site-main.sops.yaml

Install URLs

  • Landing page (for manual install): https://rmm.azcomputerguru.com/install/BRIGHT-PEAK-5980
  • MSI download (dashboard): https://rmm.azcomputerguru.com/sites/3b20ef97-c764-4ef8-9154-79c3d5b486f8/installer

M365 Status

  • Tenant: birthbiologic.com (tenant ID unknown — not yet looked up)
  • Security Investigator app: consented (2026-04-21)
  • Exchange Operator, User Manager, Tenant Admin, Defender: NOT yet consented
  • Note: sysadmin@birthbiologic.com does not have a SharePoint/M365 license — app-only auth via tenant-admin with Sites.ReadWrite.All is the approach for SharePoint access (no user license needed for app-only)

Pending

  • Install GuruRMM agent on BirthBiologic server via MSI or landing page
  • Consent remaining apps in BirthBiologic tenant (user-manager, tenant-admin minimum)
  • Install GuruRMM agent on BB-SERVER — completed, agent online
  • Consent tenant-admin app in BirthBiologic tenant for Sites.ReadWrite.All
  • Build PowerShell migration script (migrate-datto-to-sharepoint.ps1)
  • Supply Management folder — 160/160 files migrated to SharePoint
  • Opened Syncro ticket #109277420 for this migration project
  • M365 Business Premium license assigned to sysadmin@birthbiologic.com
  • SPMT migration launched for Admin, Birth Biologic Activity Reports, Donor Services, Quality Department
  • SPMT migration complete — check morning status
  • After client tests SharePoint access, run delta sync (-DeltaOnly flag) for changed files
  • Two duplicate Syncro comments on #109277420 need manual GUI deletion (no API delete for comments)
  • Verify ITSvcs state file entry on BB-SERVER is not causing issues (ITSvcs is ACG-owned, excluded from migration)

Update: 17:58 — Datto-to-SharePoint Migration (Full Detail)

What Was Accomplished

  1. GuruRMM agent installed on BB-SERVER — agent came online, used as command channel for remote PowerShell execution throughout session.

  2. Tenant-admin app consented in BirthBiologic tenant — consent URL used: https://login.microsoftonline.com/<tenant-id>/adminconsent?client_id=709e6eed-0711-4875-9c44-2d3518c47063&redirect_uri=https://azcomputerguru.com (redirect URI must match app manifest — https://azcomputerguru.com, NOT https://rmm.azcomputerguru.com)

  3. Migration script builtD:/claudetools/clients/birth-biologic/scripts/migrate-datto-to-sharepoint.ps1

    • TLS 1.2 enforcement at top ([Net.ServicePointManager]::SecurityProtocol = [Net.SecurityProtocolType]::Tls12)
    • Token auto-refresh, resume via JSON state file
    • Small files: PUT to /content; large files: chunked upload session
    • Pre-delete before upload session to avoid 409 conflicts
    • -DeltaOnly switch: skips files where SP size > 0 and SP lastModified >= local lastWriteTimeUtc
    • -WhatIf mode, -OnlyFolder for per-folder targeting
    • All ASCII characters only (no Unicode box-drawing — causes PS5.1 parse errors)
    • Hashtable merge via foreach loop (PS5 doesn't support @{} + @{})
    • ${encodedPath} not $encodedPath: in URL strings (PS interprets colon as drive reference)

  4. Supply Management migrated — 160/160 files via script.

    • 159 transferred via RMM-launched script on BB-SERVER
    • 1 file (8 MB PDF) timed out RMM channel (~77 KB/s upload); base64-encoded on BB-SERVER, captured stdout, decoded locally, uploaded directly via Python urllib to Graph API

  5. SPMT launched for remaining 4 folders:

    • Admin → https://birthbiologic.sharepoint.com/sites/Admin
    • Birth Biologic Activity Reports → https://birthbiologic.sharepoint.com/sites/Admin (same site, Documents root; SPMT preserves source folder name as subfolder)
    • Donor Services → https://birthbiologic.sharepoint.com/sites/DonorServices
    • Quality Department → https://birthbiologic.sharepoint.com/sites/QualityDepartment
    • ITSvcs excluded — that is ACG's folder, not client data
    • 20% progress on Donor Services observed before end of session
    • Connection noted as slow but making progress

  6. Syncro ticket #109277420 created

    • Customer: BirthBiologic
    • Subject: Datto Workplace to SharePoint Migration
    • Contact: Annise
    • Assigned: Mike Swanson (user_id 1735)
    • Priority: Normal
    • Due: 2026-04-22
    • Comment posted with migration status (use <br> line breaks — <ul><li> collapses in Syncro renderer)

  7. M365 Business Premium license assigned to sysadmin@birthbiologic.com

    • SKU: M365 Business Premium (cbdc14ab-d96c-4132-b7f4-1f3a3a819bb4)
    • SPB includes EMS — EMS standalone license removed
    • sysadmin confirmed as SharePoint admin (needed for SPMT destination access)

Credentials

  • Tenant-admin app client ID: 709e6eed-0711-4875-9c44-2d3518c47063
  • Tenant-admin app secret: D:/vault/msp-tools/computerguru-tenant-admin.sops.yamlcredentials.credential
  • BirthBiologic tenant ID: Look up via Graph or from previous remediation work
  • GuruRMM JWT secret: D:/vault/projects/gururmm/api-server.sops.yamlcredentials.credential
  • GuruRMM agent API key for BB site: grmm_1ZB1qV9Q61b9Noq8BIaZGwLNjZMfF49i
  • Syncro API key: D:/vault/msp-tools/syncro.sops.yamlcredentials.credential

SharePoint Site Map (BirthBiologic)

Datto Folder SharePoint Site Site ID
Admin birthbiologic.sharepoint.com/sites/Admin 1baf65c1-... (see script)
Birth Biologic Activity Reports birthbiologic.sharepoint.com/sites/Admin same as Admin
Donor Services birthbiologic.sharepoint.com/sites/DonorServices bcbfa272-... (see script)
Quality Department birthbiologic.sharepoint.com/sites/QualityDepartment 5fd38089-... (see script)
Supply Management birthbiologic.sharepoint.com/sites/SupplyManagement 4700ecf3-... (see script)
ITSvcs EXCLUDED — ACG folder

Full site IDs are hardcoded in the script ($SITE_MAP hashtable).

Infrastructure

  • BB-SERVER: BirthBiologic on-premise Windows Server 2016, GuruRMM agent installed
  • GuruRMM server: https://rmm.azcomputerguru.com (172.16.3.30:3001)
  • GuruRMM JWT claims required: sub, role, orgs, exp, iat — all must be present or 401
  • GuruRMM command body: must include command_type: "powershell" — missing = 422

Key Errors and Resolutions

Error Cause Fix
Wrong consent redirect URI 400 Used rmm.azcomputerguru.com (not in manifest) Use https://azcomputerguru.com
JWT 401 Missing role/orgs/iat claims Include all required claims
JWT 422 Missing command_type field Add "command_type": "powershell"
Wrong vault path projects/gururmm/jwt.sops.yaml doesn't exist Use projects/gururmm/api-server.sops.yaml
PS parse error — Unicode Box-drawing chars in PS5.1 comments Rewrite all comments ASCII-only
PS parse error — hashtable merge @{} + @{} invalid in PS5 Use foreach loop
PS parse error — drive ref $encodedPath:/content Use ${encodedPath}:/content
TLS error on BB-SERVER Win Server 2016 defaults TLS 1.0 Add [Net.ServicePointManager]::SecurityProtocol = [Net.SecurityProtocolType]::Tls12
409 Conflict on retry Partial file left in SP after failed upload DELETE item before createUploadSession
RMM timeout 8 MB file ~77 KB/s upload > 300s timeout Base64 on server, capture stdout, upload locally
RMSBASIC not assignable Service plan, not standalone SKU Use M365 Business Premium (cbdc14ab)
SPB 0 seats License change not saved in admin center Polled until seat appeared, then assigned
Syncro ul/li collapsed Syncro renderer collapses block-level list tags Use <br> line breaks instead

Files Created/Modified

  • D:/claudetools/clients/birth-biologic/scripts/migrate-datto-to-sharepoint.ps1 — full migration script
  • C:/Users/guru/.claude/projects/D--claudetools/memory/feedback_syncro_html.md — new memory: use <br> in Syncro comments

Next Steps (Morning)

  1. Check SPMT migration status — all 4 folders should be complete or near-complete
  2. Verify file counts in each SharePoint site match Datto source
  3. Notify Annise that migration is complete, ask her to test access
  4. After client confirms access, schedule delta sync window: run script with -DeltaOnly to catch any files changed since initial migration
  5. Delete two duplicate/ugly Syncro comments manually in GUI (ticket #109277420)
  6. Update Syncro ticket with completion status and bill time
Reference in New Issue View Git Blame Copy Permalink