In current customer scenario , customer have following.50 devices  ( laptop / mobile )
- All devices are independent with windows 10 and logging into Azure AD/ Office 365
- No Domain Controller onsite
- User travel with laptop / mobile / tablet
- Users are in 4 different countries and all independent with no server or firewall
- One Watchguard T30W firewall to route internet for everyone onsite
     - DHCP role
     - DNS role
     - gateway 
I have done following

- Changed the DNS On Firewall for Open DNS
- Added the external ID of firewall to Cisco Umbrella 
I want to achieve following:

- Track each user by PC Name or IP Address
- Ensure mobile / laptop / tablet protected even when they travel
- Ensure users cannot disable roaming clients
- Deep scan of URL if possible
- IPS / Antivirus