Hey everyone! I've just started my own business and I'm looking into offering Microsoft 365 Business Premium licenses to my clients. My ultimate goal is to streamline their setups and ensure they're secure. While I have a basic understanding of Intune, Defender, and other security features, I'm feeling a bit lost on where to begin. I want to establish a solid foundation, and I have a few questions: 1) When I create a new tenant with Business Premium, which settings should I prioritize first? 2) How can I set up Conditional Access securely without accidentally locking myself out? 3) Should I manually configure my tenant initially to fully grasp the settings before automating them? I'm looking for personal insights or recommendations for training resources that might help me on this journey. Any advice would be greatly appreciated!
3 Answers
Start with a test environment before you start billing clients—it’s crucial to fully understand the product first. Check out the Microsoft 365 Developer Program; it covers a lot of ground and will give you the tools you need. Just make sure you have some test devices ready for Intune testing!
Create a couple of test tenants and see how the configurations work for you. Implement settings on your laptop and VMs. Get familiar with the logs and reports—they are super helpful! I’ve spent time going through Microsoft’s documentation to get a good grasp of everything. I generally recommend staying away from videos unless they're very current since they can get outdated quickly.
Exactly! Knowing the manual setup is vital before automating. Each component, like Intune, Defender, or Conditional Access, has its purpose, but getting the flow right is key.
Grab a used iPhone and a Samsung phone; they don't need a SIM card since you're just testing. You’ll also want a machine capable of running VMs. Set up a test tenant with a real domain and a single Business Premium license. Go through the steps for different enrollment types and create a separate admin account that you exclude from all your policies for Conditional Access. Avoid automation until you really understand what you want and how to do it—start with the GUI and PowerShell!
I get the concern about where to start. Personally, I think it's best to implement everything manually first. It helps in understanding where all the settings are and how they interact with each other. Just take it step by step!