Xentrio ITSM Platform

🎫

Core ITSM

Ticket Management

Full-lifecycle helpdesk with auto-numbered tickets, SLA tracking, priority levels, file attachments, and a client-facing portal for self-service requests.

SLA TrackingClient PortalPriorities

Explore capabilities →

Priority levels

Critical — Immediate response, SLA breach alerts

High — Escalated handling with team notification

Medium — Standard SLA window

Low — Best-effort resolution

Key capabilities

⏱SLA tracking — Breach alerts with escalation rules per priority and category
🌐Client portal — End users submit and track their own tickets without a technician login
📎File attachments — Internal notes, customer-visible comments, and attachment threads per ticket
📧Email via Graph API — Per-company notifications, no SMTP server required
📋Service catalog integration — Auto-ticket creation from self-service catalog requests

Helpdesk portal

⚡

Incident Management

Coordinate and resolve major IT incidents. Link related tickets to a single incident, classify by impact and urgency, and track full resolution history.

Impact AnalysisTicket RollupMTTR Tracking

Explore capabilities →

Incident lifecycle

Detect — Alert or ticket triggers major incident declaration

Assign & Investigate — Lead technician assigned, tickets linked

Resolve — Root cause documented, resolution confirmed

Post-mortem — Timeline, impact, and prevention recorded

Key capabilities

🔗Ticket rollup — Link multiple tickets to one incident for unified tracking
⚡Escalation paths — Severity classification drives automated escalation routing
📊MTTR tracking — Mean time to resolution calculated per incident and team
📋ITIL-aligned workflow — Detect → Assign → Investigate → Resolve → Post-mortem
🕓Full history — Every state change, note, and resolution step recorded

Xentrio Incident Management — major incident lifecycle with ticket rollup and MTTR tracking

Incident console

🔍

Problem Management

Root cause analysis and permanent fix tracking. Link problems to recurring incidents, document known errors, and prevent issues from reoccurring.

Root CauseKnown ErrorsAudit Trail

Explore capabilities →

Problem workflow

Problem record — Linked to one or more recurring incidents

Root cause analysis — Documented investigation and findings

Known error — Workaround published, permanent fix in progress

Change request — RFC spawned directly from problem resolution

Key capabilities

🔗Incident linking — Problems reference all related incidents for pattern analysis
📖Known error database — Publish workarounds so technicians can resolve faster
🔄RFC spawning — Create a change request directly from a problem record
📋Audit trail — Full history of every RCA update and status transition
🔁Recurrence prevention — Track reoccurrence after resolution to validate the fix

Xentrio Problem Management — root cause analysis with known error database and RFC spawning

Problem records

🔄

Change Management

Request for Change (RFC)

Structured change workflow with impact analysis, rollback procedures, task decomposition, implementation scheduling, and full change history.

Approval WorkflowRollback PlanTask Tracking

Explore capabilities →

Change risk levels

Emergency — CAB fast-track, immediate approval path

Major — Full CAB review with Manager/TeamLead sign-off

Minor — Streamlined approval, single approver

Standard — Pre-approved template, no CAB required

Key capabilities

✅Approval workflow — Manager/TeamLead sign-off with full audit trail
📋Change tasks — Decompose into subtasks with assignees and due dates
↩Rollback procedures — Documented rollback plan required before scheduling
🏛CAB process — Change Advisory Board review for major and emergency changes
📅Implementation scheduling — Planned start/end window with conflict detection

Xentrio RFC — structured change workflow with CAB approval and rollback planning

Change management

💡

M365 Optimization

License Advisor

Detect inactive users, surface optimization opportunities, and project monthly savings using live Microsoft Graph data across 55+ mapped license SKUs.

Graph APICost Savings55+ SKUs

Explore capabilities →

What it analyzes

Inactive users — Licensed users with no recent sign-in activity

Over-licensed users — Users assigned SKUs above their role requirements

License assignments — Full M365 license inventory per user, 55+ SKUs mapped

Key capabilities

📊Monthly savings projection — Estimated cost reduction based on optimization opportunities
🔴Live Graph data — Real-time M365 license data from each company's Microsoft tenant
🏷55+ SKUs mapped — Business Basic, Business Premium, E3, E5, and all add-ons decoded
👤Per-user activity — Last sign-in, assigned licenses, and recommended action per user
🔒Per-company isolation — Each company's Graph data stays scoped to their App Registration

Xentrio License Advisor — M365 license optimization with savings projection and inactive user detection

M365 license assessment

🖥️

Infrastructure

Unified Monitoring

Azure alerts, local server metrics via agent, SNMP network device polling (Cisco, Fortinet, generic), and NOC dashboard — all in one view.

Azure MonitorSNMP v2cNOC Dashboard

Explore capabilities →

What it monitors

Windows & Linux servers — CPU, memory, disk, services, OS, agent version (~60s heartbeat)

Network devices — Cisco, FortiGate, pfSense via SNMP v2c + FortiGate REST API

Per-interface traffic — Inbound/outbound bytes, errors, speed via IF-MIB OIDs

Key capabilities

📺NOC dashboard — Real-time fleet overview with availability donuts and performance charts
📈Sparklines — Inline 24h trend mini-charts in server and device grids
🕓Metric history — Raw snapshots 30d, hourly aggregates 6 months; windows from 1h to 90d
⚡Availability tracking — Uptime %, longest outage, last-down timestamp per server
🔌FortiGate REST API — Sessions, VPN tunnels, HA status, firmware — dual v6/v7 format support

NOC dashboard

📦

Inventory

Asset Management

Track VMs, servers, workstations, and custom asset types. Includes Azure VM auto-discovery, Arc server sync, bulk CSV import, and full audit trail.

Azure SyncAzure ArcCSV Import

Explore capabilities →

Asset categories

Hardware — Servers, workstations, network devices, mobile

Software — Installed software inventory with version tracking

Certificates — TLS certificate expiry tracking per server

Cloud — Azure VMs and Arc-managed servers auto-synced

Key capabilities

☁Azure auto-discovery — Sync VMs and Arc servers from customer's Azure subscription on schedule
📋CSV bulk import — Import asset records with full field mapping
🔄Pending updates — Windows/Linux update list with KB article links per server
🏷Custom tags — Tag any asset and filter across the entire inventory
🔗Linked to monitoring — Assets tied to monitored servers via FK for live health data

Xentrio Asset Management — full hardware and software inventory with Azure sync

Hardware inventory

📊

Analytics

Reporting & Analytics

SLA compliance, incident frequency, MTTR, RFC success rates, and general cross-module exports — all filterable by company, team, and date range.

SLA ReportsCSV ExportTrend Analysis

Explore capabilities →

15+ data sources

Identity — Risky users, sign-ins, MFA status, secure score, expiring secrets

Monitoring — Server health, services, network devices, metric history

Assets — Hardware, software, updates, certificates, server roles

ITSM — Tickets, incidents, problems, changes, users

Key capabilities

🛠Self-service report builder — Column picker, filters, date presets, sort — no SQL required
📤Multi-format export — CSV, Excel (multi-sheet), PDF (flowing multi-section via QuestPDF)
📈Trend charts — Line charts per metric for time-series monitoring history
💾Saved templates — Name, describe, and share report configs across the company
🔀Cross-source combine — Merge any mix of data sources into a single export

Xentrio Reporting — self-service report builder with 15+ data sources and multi-format export

Custom report builder

🔗

Relay Service

Xentrio Relay

Deploy a Windows Service at isolated customer sites to bridge firewalled networks, buffer agent data offline, distribute software packages, and poll SNMP devices locally via MSI installer.

Offline BufferWiX MSIBranch Aware

Explore capabilities →

What one relay handles

Server agents — Heartbeat, inventory, services, updates, script results

SNMP devices — CPU, memory, sessions, per-interface traffic

FortiGate REST — Firmware, sessions, VPN tunnels, HA status

NetFlow records — UDP flow exports forwarded to portal over HTTPS

Key capabilities

📦Local software CDN — Caches deployment packages up to 10 GB — no re-download per server
📶Offline buffer — Queues agent payloads and flushes when connectivity restores
⚙Zero manual config — Device configs pushed from portal via heartbeat response
🖥Local dashboard — PIN-protected status UI on port 8081 for on-site diagnostics
🔒Token-based auth — SHA-256 hashed CompanyToken with instant portal revocation

Xentrio Relay — on-site Windows service bridging firewalled networks with software deployment

Relay & software deployment

🔎

Identity Risk

Identity Risk Assessment

Entra ID risk detection, sign-in tracking, conditional access compliance scoring, and MFA coverage metrics — surfacing identity threats before they escalate.

Entra IDRisk DetectionMFA Coverage

Explore capabilities →

Identity data surfaces

Risky users — Azure AD Identity Protection risk level, state, and detail

Risky sign-ins — IP, location, risk level, detection type per event

MFA status — Per-user registration state, methods, and default method

Secure Score — Tenant Microsoft Secure Score, current/max by category

Key capabilities

🔑Expiring secrets — App registration client secrets expiring within 90 days flagged
📋App access audit — Enterprise application assignments with user and date
🛡Conditional access scoring — Compliance status across CA policies per user
📊Secure Score comparison — Category-level breakdown of tenant security posture
🔒Tenant isolation — Each company's identity data from their own App Registration

Tenant secure score

🛡️

Security Posture — New 2026

CVE Scanning & Security Posture

CVE risk assessment against installed software via NIST NVD API. Severity grading, patch status dashboard, and per-device compliance scoring for proactive vulnerability management.

NIST NVDCVE ScoringCompliance

Explore capabilities →

CVE severity levels

Critical — CVSS ≥ 9.0, immediate patching required

High — CVSS 7.0–8.9, priority remediation

Medium — CVSS 4.0–6.9, scheduled patching

Low / Info — CVSS < 4.0, monitored

Key capabilities

🔎NIST NVD API — Real CVE data matched against agent-reported installed software
📊Per-device compliance score — Exposure count and unpatched critical CVE count per server
📅Vulnerability timeline — Track CVE exposure history per server over time
🤖AI Advisor — AI-generated prioritized remediation recommendations per company
📋Patch status dashboard — See what's patched, pending, or unaddressed across the fleet

Xentrio CVE Scanning — NIST NVD-based vulnerability assessment with per-device compliance scoring

CVE risk dashboard

🔏

Certificates — New 2026

Certificate Lifecycle Management

Agent-collected and URL-checked certificate inventory with expiry tracking, NOC SSL/TLS warnings, and tabbed UI for managing certificates across your entire environment.

SSL/TLSExpiry AlertsAgent + URL

Explore capabilities →

Certificate sources

Agent-collected — TLS certs discovered on all monitored servers automatically

URL-monitored — External HTTPS endpoints checked for expiry and chain validity

Key capabilities

⏱Expiry tracking — Days-remaining countdown with configurable alert thresholds
📺NOC SSL/TLS warnings — Expiring certificates surface directly on the NOC dashboard
🔗Chain & subject tracking — Issuer, subject, SAN, and full chain details per certificate
🗂Tabbed inventory — Agent certs and URL certs in a unified tabbed environment view
🔔Alert rule integration — Alert rules can trigger on SSL expiry windows

Xentrio Certificate Lifecycle Management — SSL/TLS expiry tracking across agent and URL sources

Certificate inventory

📚

Knowledge Base — New 2026

Knowledge Base

Full-text search, tag filtering, and role-based visibility including client access. Integrated with the Service Catalog so teams and end users can self-serve answers before submitting tickets.

Full-Text SearchClient VisibleTag Filtering

Explore capabilities →

Article visibility

Internal only — Visible to technicians and managers, not clients

Client visible — End users can self-serve from the client portal

Key capabilities

✏Markdown editor — Rich article creation with formatting, code blocks, and images
🔍Full-text search — Instant search across all article titles and body content
🏷Tags & categories — Organize articles and filter by topic, team, or product area
🎫Ticket integration — Attach KB articles directly to ticket responses
🛒Service catalog link — Articles surface in the catalog so users self-serve before submitting tickets

Xentrio Knowledge Base — full-text search with client-visible articles and ticket integration

Knowledge base portal

🔔

Alerting — New 2026

Alert Rules Engine

10 rule types covering servers, network devices, and network flow. Rules evaluate every 5 minutes with auto-resolve and email notifications via Microsoft Graph API — no SMTP required.

10 Rule TypesAuto-ResolveGraph Email

Explore capabilities →

10 rule types

Infrastructure — ServerOffline, CpuHigh, MemoryHigh, DiskHigh, ServiceStopped

Network Devices — DeviceUnreachable, DeviceSessionHigh

Flow — FlowTrafficSpike, FlowTopTalkerThreshold, FlowNoData

How rules work

⏱Evaluates every 5 min — auto-resolves when condition clears, re-fires on recurrence
🔔In-app notifications — bell icon with unread count and notification dropdown
📧Email via Graph API — per-company App Registration, no SMTP server required
🎯Scoped rules — target a specific server, flow exporter, or SNMP interface
🔥Severity levels — Critical, High, Medium, Low, Info per rule

Xentrio Alert Rules Engine — active alerts with severity and auto-resolve

Alert rules console

📡

Network Visibility — New 2026

Network Flow Analytics

Collects NetFlow v5/v9, IPFIX, and sFlow from FortiGate firewalls via the on-site relay. Visualizes top talkers, protocol distribution, and traffic conversations across 1h–7d windows.

NetFlow v5/v9IPFIXsFlow

Explore capabilities →

Supported protocols

NetFlow v5 — Cisco-origin fixed-record format, UDP 2055

NetFlow v9 / JFlow — Template-based, Juniper JFlow compatible, UDP 2055

IPFIX — IETF standard, successor to v9, UDP 4739

sFlow v5 — Sampled packet data, UDP 6343

Flow dashboard

📊Overview tab — top source & destination IPs, protocol distribution pie, traffic timeline
💬Conversations tab — src→dst table with bytes, packets, port, and duration
⏱Time windows — 1h / 6h / 24h / 7d selectable per view
🔗Interface filtering — filter flows to a specific SNMP interface index
📅30-day retention — automatic background cleanup of old records

Xentrio Network Flow Analytics — FortiGate monitoring with flow conversations and protocol distribution

Flow analytics dashboard

🗺️

Visualization — New 2026

Topology Map

Interactive infrastructure map with live NetFlow traffic edges, blast-radius impact analysis, and 35+ auto-discovered services. Group and cluster nodes for large environments.

NetFlow EdgesBlast Radius35+ Services

Explore capabilities →

What's on the map

Servers — OS, CPU%, memory%, online status, alert badge

Network Devices — Firewalls, switches, routers with reachability status

Apps — 35+ auto-discovered: IIS, SQL Server, AD, MySQL, PostgreSQL…

Groups — Collapsed node clusters with health summary

Key capabilities

🔴Alert overlay — Red/yellow glow on nodes with active alerts; count badge per node
💥Blast-radius analysis — Click any node to highlight all downstream dependents across depth levels
🌊Live NetFlow edges — Real FortiGate traffic data, labeled with MB transferred and flow count
💻Web Terminal — Launch SSH directly from any server or firewall detail panel
⛶Fullscreen mode — CSS fullscreen that preserves all UI panel rendering
💾Persistent layout — Positions auto-saved 1s after drag; Save View commits all nodes atomically

Xentrio Topology Map — live infrastructure dependency map with NetFlow edges and alert overlays

Live topology view

💻

Remote Access — New 2026

Browser SSH Terminal

Full xterm.js terminal tunneled through the on-site relay — no SSH ports exposed to the internet. Credentials sourced from Azure Key Vault with a full session audit log.

No Port ExposureKey Vault CredsSession Audit

Explore capabilities →

Supported targets

Linux servers — SSH, any distro, port 22 (configurable)

Windows Server — OpenSSH, port 22 (configurable)

FortiGate firewall — SSH access tunneled through on-site relay

Key capabilities

🔒Zero exposed ports — fully tunneled through relay, no inbound firewall rules needed
🗝️Azure Key Vault creds — company-wide default + per-server override, no passwords stored in DB
📋Session audit log — user, target, relay, start/end time, and client IP recorded
↔Auto-resize — terminal adapts live to window size via ResizeObserver
🌐Three entry points — dedicated page, Monitoring panel, or Topology map
👥Granular access — admins grant per user: all servers or a specific server list

Xentrio Browser SSH Terminal — relay-connected servers with one-click SSH access

SSH console in browser

Everything your IT team needs, in one platform.

Everything your IT team needs, in one platform.

Ticket Management

Incident Management

Problem Management

Request for Change (RFC)

License Advisor

Unified Monitoring

Asset Management

Reporting & Analytics

Xentrio Relay

Identity Risk Assessment

CVE Scanning & Security Posture

Certificate Lifecycle Management

Knowledge Base

Alert Rules Engine

Network Flow Analytics

Topology Map

Browser SSH Terminal

Deep Microsoft ecosystem integration.

Endpoint management, software delivery & remote control.

Security-first, from authentication to data isolation.

Entra ID SSO via MSAL

Multi-Tenant Data Isolation

Encrypted Azure Credentials

Relay Token Security

Agent Key Authentication

Role-Based Access Control

See Xentrio in action.