M365 Enterprise Security Baseline Recommendations


Hi all -


Any and all suggestions appreciated on this....


My organization is in the initial prep stages (config/build Azure AD Connect servers, etc.) of migrating from on-prem to hybrid on-prem/cloud for the full suite. We have multiple organizations (single forest, multiple domains and tenants) and are looking to understand if there are recommended security baseline settings we could apply across the board as a starting point. Obviously, we would need to customize some to our environmental idiosyncrasies but the starting point would be helpful. In that, we are looking for the global cloud-oriented deployment setting recommendations, not so much on the client side. Again, any help would be terrific! Thanks!



2 Replies



Appreciate this was a while ago now, but the CIS security benchmarks are an excellent practice.  More details can be found at;