Audit. Harden. Automate. Intune and Exchange configured to best practices, with security you can measure.
Migrating from Group Policy to Microsoft Intune is one of those projects that looks like a tool swap on the slide and feels like an architecture change in the room. This field guide is the realistic readiness path: inventory, analytics, mapping, the co-management vs cloud-native decision, phasing, cutover, and the operating model after the last device leaves Active Directory.
The 20 checks I run on Exchange Online mail flow before any change: SPF / DKIM / DMARC, connectors, transport rules, anti-spam, SMTP AUTH, Message Trace baseline.
Practical playbook to discover, categorise and migrate EWS-based integrations in Exchange Online before the October 2026 phased disablement and the 2027 full shutdown.
The 24-control Microsoft 365 Business Premium security baseline (2026): SKU-aware checklist, gaps vs E5 and a week-by-week rollout cadence for SMBs.
The 30 checks I run in every Microsoft 365 SMB tenant: identity, email, devices, data, monitoring and governance — with evidence pack and quarterly cadence.