Share via

Overview - Identity - Deployment Guide

This article provides a checklist for the continued steps to configure your Standard Microsoft 365 education tenant.

Required Microsoft products

  • Microsoft 365 A3

Deployment guide steps

Step 1 - Microsoft Entra Plan 1

  Step
Microsoft Entra ID P1 - Microsoft Entra ID P1 is a powerful identity and access management solution that offers significant benefits for educational institutions
Microsoft Entra ID P1 - A3 Standard Features and Products - Review Standard Microsoft Entra features and products
Microsoft Entra ID Feature comparison - Compare Microsoft Entra ID Plan 1 to Plan 2

Step 2 - Microsoft Entra P1 Access Controls

  Step
Conditional Access - Define access policies based on user roles, devices, and locations to secure student and staff access to resources
Multi-factor Authentication - Secure access to educational resources by requiring additional verification steps
Role-Based Access Control (RBAC) - Assign specific permissions to users based on their roles
Single Sign-On (SSO) -Allow users to access multiple applications and resources with a single set of credentials
Dynamic Group Management - Simplify user and device organization in educational institutions by automatically assigning group memberships based on attributes

Step 3 - Microsoft Entra P1 Password management

  Step
Self-service password reset - Empower students and staff to securely reset their passwords without administrator assistance
Hybrid user self-service password change/reset with on premises write-back - Hybrid user self-service password change/reset with on-premises write-back is a Microsoft Entra ID capability that enables users in educational institutions to reset or change their passwords in the cloud and have those changes automatically synchronized back to their on-premises Entra ID Domain Services

Step 4 - Microsoft Entra P1 App management

  Step
Application Proxy - Enable secure remote access to on-premises web applications without the need for a VPN

Step 5 - Entitlement management

  Step
Entitlement management - Entitlement management in education, particularly through Microsoft Entra ID Governance, is a powerful identity governance capability that enables schools, districts, and higher education institutions to manage access to digital resources securely and at scale
Advanced security reports - Advanced security reports refer to a suite of Microsoft tools and reporting capabilities designed to help educational institutions monitor, assess, and improve their cybersecurity posture

Step 6 - Security considerations

  Step
Advanced Threat Analytics - Microsoft Advanced Threat Analytics (ATA) is an on-premises platform designed to help protect your organization from advanced targeted cyber attacks and insider threats
Microsoft Defender for Cloud Apps - Microsoft Defender for Cloud Apps is a powerful tool that can significantly enhance cybersecurity in educational environments
Microsoft Defender for Cloud App Discovery - Microsoft Defender for Cloud Apps that helps you gain visibility into the cloud apps being used in your organization
  • Last updated on