Maester tests, rendered in Siemserva

Run Invoke-Maester against your Microsoft 365, Intune, and Entra ID tenant, pipe the JSON to Siemserva, and get the same live dashboard, Senserva Trustworthy AI-enhanced HTML reports, and MCP tools you use for native scans. No second tool to learn.

Send Me the Key

Workload coverage

Maester test tags map directly to Siemserva audit groups. Every workload a Maester test covers lands in the right slice of the dashboard and the right section of the HTML report.

MS.AAD

Entra ID

Conditional Access, MFA, identity governance, app registrations.

Audit group 36 (Identity)
MS.EXO

Exchange Online

Mail flow, anti-phish, DKIM, DMARC, external sender rules.

Audit group 54 (Exchange)
MS.TEAMS

Teams

External access, meeting policy, federation, chat retention.

Audit group 55 (Teams)
MS.SHAREPOINT

SharePoint & OneDrive

External sharing, anonymous links, tenant restriction policies.

Audit group 49 (SharePoint)
MS.INTUNE

Intune

Device compliance, enrollment restrictions, configuration profiles.

Audit group 40 (Devices)

Sample report excerpt

A single Maester test after Siemserva renders it. Same shape as native findings, same Senserva Trustworthy AI treatment, same compliance mapping. Drop into the HTML report, the dashboard, or the MCP response: identical.

maester-report.html . Finding 47 of 312
CRITICAL . Severity 1875 MS.EXO MAESTER

MS.EXO.2.2v2. DKIM signing is not enabled on all sending domains

Source: TestResults.json . auditGroup=54 (Exchange) . status=Failed . Pester test
Senserva Trustworthy AI · Summary

Two of your four sending domains lack DKIM signing. Without DKIM, spoofed mail from these domains bypasses downstream DMARC enforcement. Siemserva's native scan confirms DMARC is set to quarantine on both, so this gap is the weakest link. Fix by enabling DKIM in Defender for Office 365, rotating keys quarterly. Matches CISA SCuBA MS.EXO.2.2v2 and satisfies NIST 800-177.

Test block
MS.EXO.2 DKIM
Pester tags
MS.EXO, Mail, Authentication
Evidence
Get-DkimSigningConfig returned Enabled=false for 2 domains
Compliance map
CISA SCuBA MS.EXO.2.2v2, NIST 800-177

Want to automate the Maester import, query findings programmatically, or wire CI pipelines? See the Senserva SDK page for importers, queries, and the full wire format.

See the SDK

Run Maester, get a Siemserva-grade report

Keep your Pester tests. Swap the bare JSON for a live dashboard, Senserva Trustworthy AI executive summary, and MCP-driven Q&A across every Microsoft 365 workload.

Quick Start View the SDK