Help create and maintain different password policies for different user types.
Remove unnecessary access.
Manage stale user and computer objects.
Plan and implement Upgrades and Updates to AD / ADFS Services.
GPO Management (including creation and deletion) for various security policies and software development
Set-up and follow Change Management processes for all in-scope services.
Active Directory Services/ADFS Troubleshooting
Access issues to files and folders
User Account expiry
Account lockouts
Trust relationships errors
Authentication failures
DNS resolution failures
IP address assignment failures
AD/ADFS Health Check, Monitoring & Auditing
Monitoring and generating reports using AD Audit Plus
Provide logs and evidence of access/authentication/change as and when required by internal audit teams
a. Email Management (O365 Support)
i. Scope
Domain Controllers in Azure
Azure AD Sync Server
ADFS and ADFS proxy servers in Azure
Office 365 Email, OneDrive, Skype for Business, Teams, Azure AD Premium and Intune Microsoft Online Services
ii. Deliverables
Develop, document and update service processes, which should be aligned as per latest ITIL standard
Manage quota and define control as per standards
Preform day to day proactive/reactive administration, troubleshooting and support activities and keep users informed of incident progress
Troubleshoot O365 / Outlook issues (along with network team if necessary)
Coordinate with the users/FMS team for issue resolution and guide them to follow the defined SOP
Coordinate with Microsoft for O365 issues resolution as needed
Support issues with email security and mail flow by coordinating with third party vendor such as MimeCast, SFT etc.
One Drive for Business – Help users set up and make use of ODFB along with sharing files with other users within the Company and troubleshoot issues
Contact/Escalate to the identified primary contact of APL, in case of any Server hardware issue or network issue, who will in turn co-ordinate with the vendors for resolution
Prepare weekly reporting as per agreed format
Create / Edit / Delete shared mailboxes as per requests
Create / Edit / Delete cloud email accounts
Create / Edit / Delete groups as per requests
Configure/re-configure AADSync as required
Configure / troubleshoot any settings / rules on O365 Services in scope as required by business/IT.
Scavenge licenses on a monthly basis to ensure that there is no excess license purchase