Suggested automation agents for MSP operations — scope, trigger conditions and build priority.
Covers Ninja RMM for endpoint monitoring, patching, and scripting, and ConnectWise Automate for automation and remote management. Copilot agents here focus on streamlining operations and troubleshooting common issues like patch failures or script errors.
Integrates with Ninja RMM and ConnectWise Automate to proactively scan for patch vulnerabilities across endpoints. Analyzes historical patch data to predict failures (e.g., due to compatibility issues) and suggests automated rollback scripts or alternative deployment strategies, reducing downtime during Phase 1 and 2 rollouts.
Uses natural language queries to pull real-time endpoint data, diagnosing issues like high CPU usage or connectivity drops and generating custom remediation scripts on-the-fly.
Covers Auvik for network topology and discovery, Meraki for cloud-managed networking, and FortiGate for security features including firewalls and VPNs. Agents here address problems like network bottlenecks or configuration drift that can go undetected until they cause outages.
Monitors network traffic patterns and suggests dynamic SD-WAN rerouting via Auvik and Meraki to avoid congestion. For Phase 1 issues, it simulates changes before applying them, using FortiGate's IPS data to ensure security is never compromised during rerouting.
Cross-references device discoveries from Auvik with FortiGate's threat prevention logs, flagging unauthorized devices or VPN anomalies. Automates isolation protocols and generates reports for Phase 2 integrations, helping prevent breaches from misconfigurations before they become incidents.
Covers a broad platform set including SentinelOne for EDR, Huntress for threat hunting, RocketCyber for SOC/MDR, Duo for MFA, Keeper for password management, Mimecast for email security, and Cisco Umbrella for DNS-layer protection. Agents here tackle integration silos and alert fatigue that come with running this many security tools in parallel.
Pulls from SentinelOne, Huntress, and RocketCyber to correlate alerts across platforms and prioritize incidents — e.g., combining EDR isolation with SOC reporting into a single response. Automates endpoint quarantines and suggests MFA tweaks via Duo to block persistent threats.
Scans for policy violations like weak passwords and phishing vulnerabilities across Keeper, Mimecast, and Umbrella. Generates automated remediation plans and archives suspicious emails.
Features Acronis, Cove, Axcient (Cloud and Recover), Datto, and StorageCraft across hybrid and cloud backup scenarios. Common problems include recovery failures, data inconsistencies across platforms, and missed RTO/RPO targets — especially painful when discovered during an actual incident.
Interfaces with Axcient Recover and Datto to run virtualized recovery tests without disrupting production. For Phase 2 issues, predicts disaster recovery times based on Acronis historical data and suggests optimizations like adjusting backup frequencies to minimize RTO/RPO.
Monitors cloud backups across Cove, Axcient, and StorageCraft for corruption by comparing hashes and metadata. Automates restores for affected files and alerts on continuity risks.
Includes ConnectWise PSA for ticketing, SLA tracking, and billing, and BrightGauge for KPI dashboards and reporting. Agents here help with workload imbalances, reporting inaccuracies, and the gap between raw ticket data and actionable operational intelligence.
Analyzes engineer workloads and ticket histories to redistribute tasks dynamically, preventing SLA breaches. Pulls KPI data from BrightGauge to forecast billing impacts and identify automation opportunities.
Aggregates data from BrightGauge and ConnectWise to identify trends like rising ticket volumes. Generates custom dashboards with predictive analytics and flags underutilized resources.
Covers Dialpad and 8x8 for VoIP and UCaaS communications. Problems in this category often involve call quality degradation, lack of integration between comm platforms and ticketing, and missed opportunities to flag security-relevant conversations through existing SOC tooling.
Integrated with Dialpad's AI features, this agent monitors call quality metrics and suggests fixes like bandwidth adjustments via Meraki integration. For Phase 2, it can transcribe and analyze conversations for security flags, routing relevant alerts to RocketCyber for follow-up.
Works across 8x8's voice, video, and chat to consolidate communications from multiple channels into ConnectWise tickets automatically. Automates responses to common queries and detects anomalies like unusual call patterns, helping maintain continuity during Phase 2 outages.
Encompasses Hudu and IT Glue for documentation and runbooks, Liongard for configuration inspection, and ScalePad for lifecycle and asset intelligence. Agents here solve issues like outdated documentation, configuration drift going unnoticed, and compliance gaps discovered too late in Phase 3.
Tracks hardware EOL dates and configuration changes via Liongard and ScalePad, automatically updating IT Glue runbooks and notifying via ConnectWise for proactive asset replacements.
Integrated with Hudu and IT Glue, uses natural language search to pull relevant docs or passwords during incidents — eliminating manual searches across documentation platforms. Cross-checks ScalePad's warranty data to flag expiring assets, streamlining Phase 3 compliance audits and reducing the manual effort currently required.