velnoro
Sign Up

Environments and Assets

Environment classification, governance asset review workflow, risk tiers, and bulk actions.

The Environments and Assets views on the Governance page help you classify environments, review assets, assign risk tiers, and track governance progress across your platform.

Environments Tab

View governance metrics grouped by environment.

ColumnDescription
EnvironmentName and classification (Production, Development, Sandbox, Personal, QA, Other)
ClassificationAuto-suggested by Velnoro's heuristics engine, confirmable by an admin
ManagedWhether the environment is designated as managed
RegionGeographic region of the environment
AssetsTotal count of assets in this environment
OrphanedCount of assets without an identified owner
StaleCount of assets inactive for 90+ days
Avg HealthAverage health score across all assets in this environment

Sort by Avg Health to find environments with the lowest scores. Drill into an environment to see which assets are dragging down the score.

Environment Classification

When a scan discovers environments, Velnoro automatically suggests a classification for each one using a heuristics engine:

  • Power Platform: Maps from the platform's own environment type (production/default/teams to Production, sandbox to Sandbox, developer to Development, trial to Sandbox) and then checks display name patterns (e.g., names containing "dev" or "test") Admins can confirm or change the suggested classification from the Environments page in the Admin section. Classification feeds into risk tier calculations and governance coverage scoring.

Assets Tab

The Governance Assets table provides a per-asset governance view with review workflow, risk tiers, and bulk actions.

Filters

  • All - every asset from your latest scan
  • My Reviews - assets assigned to you for review
  • Needs Re-Review - assets whose metadata changed since they were last reviewed
  • Orphaned - assets with no active owner
  • Stale - assets inactive for 90+ days
  • AI-Enabled - assets using AI Builder or OpenAI connectors
  • Violations - assets that triggered blocked or restricted connector policies

Columns

Each row shows: asset name, type, environment, owner, health score, risk tier (T1/T2/T3), review status, assigned reviewer, last modified date, and any violation badges. Click the deep-link button to open an asset directly in Power Platform.

Review Workflow

Every asset starts with a review status of Unreviewed. Admins work through the review queue using five statuses:

  1. Unreviewed - no review decision yet (default)
  2. In Review - review is in progress
  3. Approved - asset meets governance standards
  4. Rejected - asset does not meet governance standards
  5. Needs Work - asset requires changes before approval

Change an asset's review status by clicking the status badge in its row. You can also assign a reviewer to track who is responsible for each asset.

Change Detection and Re-Review

When Velnoro detects that an asset's metadata has changed since its last review (based on SHA-256 hash comparison), it flags the asset with a "changed since review" indicator. Use the Needs Re-Review filter to find these assets and re-evaluate whether the previous review decision still applies.

Risk Tier Classification

Risk tiers classify assets by governance priority (T1 = highest criticality):

  • T1 (Enterprise / Critical) - production assets with violations, orphaned assets with violations, production + orphaned, production with health below 40
  • T2 (Departmental) - any production asset (floor), non-production with violations, orphaned non-production, stale active assets (90+ days), non-production with low health
  • T3 (Personal / Team) - all other assets (default)

Risk tiers are auto-calculated after each scan. Admins can manually override an asset's tier; when overridden, the auto-calculated tier is still shown for reference.

Bulk Actions

Select multiple assets using the checkboxes, then use the bulk action toolbar to:

  • Update review status - set all selected assets to a review status
  • Assign reviewer - assign a team member as the reviewer for all selected assets

CSV Export

Click Export CSV in the toolbar to download the current governance view as a CSV file, including asset name, type, environment, owner, health score, risk tier, review status, and assigned reviewer.

Common Tasks

Monitoring Environment Health

  1. Navigate to Governance > Environments tab
  2. Sort by Avg Health to find environments with the lowest scores
  3. Drill into the environment to see which assets need attention

Reviewing Violations

  1. Navigate to Governance > Assets tab
  2. Click the Violations filter
  3. Review each flagged asset and its violation details (which connector triggered it and the policy reason)
  4. Take action: update the policy, contact the asset owner, or document an exception

Working Through the Review Queue

  1. Navigate to Governance > Assets tab
  2. Click My Reviews to see assets assigned to you, or use the All filter and sort by review status
  3. Click the status badge on each asset to update its review status
  4. For bulk review, select multiple assets with checkboxes and use the toolbar actions

Exporting Governance Data

  • CSV: Click Export CSV on the Assets tab toolbar
  • PDF: Click Export PDF at the top right of the Governance page (Business tier)

Troubleshooting

SymptomCauseFix
Orphaned count seems too highOwner enrichment not configuredEnable Graph User.Read.All permission or upload a department CSV to improve owner identification
Health scores all show 0Scan data is stale or health scoring hasn't runRun a new scan. Health scores are calculated automatically when a scan completes.
Risk tier shows T3 for a production assetEnvironment not yet classified as ProductionNavigate to Environments in the Admin section and confirm the environment classification
"Changed since review" flag appears unexpectedlyAsset metadata was updated in the source platform since the last reviewRe-review the asset to clear the flag. The flag is based on metadata hash comparison.