Microsoft 365 Business is the new way to get Office 365. It’s all the features of the Office 365 Business Premium plan, plus Advanced Security (including Windows 10 Pro upgrade) with Safe Links and Safe Attachments, plus Device Management using Intune to manage remote computers and devices (think remote wipe of a company-owned device).

The graphic above shows the left-hand, blue-highlighted column as a stack of 3rd-party services that a company might combine to create a desktop productivity solution, a comprehensive security solution, and a device management solution. As a sum of the whole 3rd-party stack, the company might very well spend over $100 per month per end-user.

If we were to consider all the various Microsoft offerings individually to accomplish the same, then the company would pay $33.50 per month per end-user.

But as a bundle of services called Microsoft 365 Business, the company can opt for the $20 plan per month per end-user.

I use Microsoft 365 Business myself. Prior to this, I paid the same amount for the Office 365 Enterprise E3 plan. But now I get all the added features for the same price. To switch from Office 365 E3 was a wash.

For those currently on the Office 365 Premium Business plan, you can realize a considerable improvement to your company’s security, data integrity and overall productivity for only $7.50 additional per month per end-user. From my point of view, just the addition of Safe Links and Safe Attachments as integral parts of Office 365 Advanced Threat Protection would make the investment worthwhile.

If we have communicated and agreed upon the best Office 365 services plan for you going forward and the option is available below, then please choose the respective PURCHASE button. Otherwise, a customized invoice will be sent to you as it’s considered appropriate for the given scope of services to be provided. If we haven’t spoken yet, then please either contact us by the form below, email, text, or schedulea free 15-30 minute meeting to initiate a preliminary plan.

Annual HelpDesk – $250 Per Person Per Year

  • One Year of Remote-Only Technical Support:
    • One license for one user and *all* of their devices.
    • On-demand support throughout the year.
    • Limited to five support incidents (tickets) per month per organization.
      • Each ticket or incident not to exceed any of the following:
        • 1 phone call
        • 10 email replies
        • 10 chat or text sessions
          • Microsoft Teams
          • Microsoft Skype
          • Facebook Messenger
          • Mobile text
    • Covers support for Windows 10, MacOS, iOS, Android, all Office 365 plans (software and services), and Complete Annual Cloud Backup.
    • Support of Line of Business (LOB) applications requires Managed IT Services agreement.
    • Any services provided beyond this scope will be billed at Professional Services rate.
    • Requires automatic payments via credit card billed in advance of services.
    • Maximum 5 seats per organization.
    • Ongoing training.

Monthly HelpDesk – $30 Per Person Per Month (+ $120 First Hour)

  • One Month of Remote-Only Technical Support:
    • One license for one user and *all* of their devices
    • On-demand support throughout the one-month term.
    • Limited to five support incidents (tickets) per month per organization.
      • Each ticket or incident not to exceed any of the following:
        • 1 phone call
        • 10 email replies
        • 10 chat or text sessions
          • Microsoft Teams
          • Microsoft Skype
          • Facebook Messenger
          • Mobile text
    • Covers Windows 10, MacOS, iOS, Android, all Office 365 plans (software and services), and cloud-to-cloud backup offered by RIT.
    • Support of Line of Business (LOB) applications requires Managed IT Services agreement.
    • Any services provided beyond this scope will be billed at Professional Services rate.
    • Requires automatic payments via credit card billed in advance of service, plus:
      • First hour billed at the hourly rate for Professional Services.
    • Maximum 5 seats per organization.
    • Ongoing training.

Professional Services – $120 Per Hour Pre-Paid

  • Hourly Remediation and Professional Consulting Services:
    • Per request and approved proposal.
    • Minimum one hour required to initiate Monthly HelpDesk.
    • Same rate for remote and onsite.
      • Minimum 1 hour for remote control.
      • Minimum 4 hours for on-site visit.

Complete Cloud Backup – $100 Per Seat Per Year

  • One User License:
    • 1 year of cloud-to-cloud, unlimited backup with lightning-fast search and one-click restore of Office 365 data:
      • SharePoint, OneDrive, Exchange, Office 365 Groups, and Microsoft Teams.
        • Microsoft Teams conversations, calendar, files, and notebook.
    • Six daily snapshots.

Managed IT Services – $150 Per Person Per Month

  • All-inclusive and proactive IT services (per user per month):
    • Remote and onsite calls included.
    • Vendor liaison and purchasing agent roles.
    • Network documentation.
    • Network health reporting.
    • Customer support ticketing portal and knowledge base.
    • Security hardening with best practices.
    • Complete Annual Cloud Backup included.
    • One license for one user and *all* of their devices to enjoy on-demand support throughout the year.
    • Unlimited support incidents (tickets) per month.
    • Covers Windows 10 Pro, MacOS, iOS, Android, all Office 365 plans (software and services), and cloud-to-cloud backup offered by RIT.
    • Support of Line of Business (LOB) applications included.
      • Must have current maintenance or service plan
      • Must have proper & complete licensing for every user
    • Infrastructure ramp-up project required prior to start of agreement.
      • Computers and servers fully updated and running optimally
      • Printers under service plan
      • Mobile devices (phones and tablets) updated to recent model and current OS
        • Only iOS and Android
      • Internet service(s)
        • Two for failover and load-balancing
      • Local Area Network (wired and secured wireless)
        • Gigabit certification
        • Clean and orderly communications closet
        • Separate guest WiFi network
      • Billed as an hourly project under Professional Services
    • Ongoing training & coaching.

Documents and Mailbox Migration – $250 Per Person One-Time Fee

  • One Seat – covers all of the following:
    • Automatically discover email environment and configure a migration plan that’s right for you.
    • Identify the impact of migrating your file server to SharePoint Online with Office 365.
    • Perform identity mapping by scanning SharePoint, Active Directory, and Azure Active Directory.
    • Monitor progress and output files into the Logs directory showing the summary and more detailed insights into the scenarios that could be impacted by migration.
    • Data automatically synced before, during and after migration cutover.
    • Full fidelity sync technology ensures no data loss on final data sync post-cutover.
    • Account provisioning and DNS updates take place during Migration Sync.
    • Desktop readiness and remediation:
      • Outlook configured to work with Office 365.
      • Local data moved as required.
      • User’s previous Outlook experience recreated as closely as possible post-migration.
    • Seat defined:
      • For billing purposes, any migrating top-level Public Folder or Mailbox (Individual, Shared, or Resource Room/Equipment) is considered a seat.

 

I used to recommend Office 365 Enterprise E3 as the best bang for the 20 bucks within the realm of Microsoft’s Office 365 offerings. But when Microsoft 365 Business was launched at the same $20 mark in August of 2017, then there was a new kid on the block – and this one had Office 365 Advanced Threat Protection.

 

Office 365 Advanced Threat Protection (ATP) adds important layers to the security stack, such as ATP Safe Links and ATP Safe Attachments. And to round out the trilogy, there’s ATP for SharePoint, OneDrive, and Microsoft Teams.

 

Just to test drive this latter member of the trio, I downloaded a sample virus file and then uploaded that test malware to my OneDrive file repository. I opened the Office portal and navigated to the supposedly-infected file to give it a click. Because I’ve configured an alert for just such a problem, I instantly received an urgent notification:

 

office 365 advanced threat protection

 

Fortunately, this was a harmless test file. But if it were the real thing, then we would take immediate measures.

 

And the file is locked down:

So as much as we have Exchange Online Protection for email scanning and filtering, I’m more than pleased to know that we have built-in security when it comes to Microsoft Teams, SharePoint and OneDrive for Business.

 

 

One of the loudest buzzwords heard these days within the business computing environment is SECURITY. And the number one method to prevent a security breach is the use of multi-factor (MFA) or two-step authentication.

 

The most common practice in the MFA arena is to use SMS texting to receive an authentication code. When prompted, you enter the code into the field provided and voilà! The problem with this is that hackers are now SIM swapping or hijacking your mobile phone. When they’re successful, the hackers can request and receive a security code to access your account, lock you out of your own account, and wreak havoc with your life.

 

The best way around this is to use an authenticator app. Google has one, Microsoft has one, and there are popular third-party authenticator apps, such as Authy. They all work with any of your online accounts, but you should find one and use it!

 

As a Microsoft-centric technician, my preference is to use Microsoft Authenticator. It provides security codes for all Microsoft accounts either free and business, Google/Gmail, Reddit, Facebook, and so on. The easiest account to access with Authenticator is your Office 365 account – a balloon pops up on your mobile device and you simply tap it to authenticate.

 

When your devices are managed through Intune and Enterprise, Mobility + Security (EMS), then you have to have permission to use the app first. In my case, the Touch ID biometric thumb reader on my iPhone provides quick access to the Authenticator app itself, as well as access to any other Microsoft apps on the device.

 

It takes some getting used to, however getting hacked is not an option.

 

Scott Abbotts | https://resolute-it.com | https://office365techguy.com

We’re very careful about choosing our affiliations. Only the highest quality vendors become part of our offerings.

A case in point would be AppRiver, our Microsoft licensing provider for Office 365 and associated services. AppRiver not only provides the software licensing, but they support the product with their award-winning ‘Phenomenal Care’ helpdesk solution, as well.

When you call into AppRiver, they answer within 3 rings and present themselves in a friendly, polite and clear manner. 

This is your second line of support – your first call would be to our primary helpdesk line, but we can scale according to demand by leveraging AppRiver as an option.

Microsoft
Intel
Apple
Cisco Meraki
Dell EMC
HP Enterprise
Lenovo
Android
Plantronics
Polycom
Logitech
BitTitan
SkyKick
Sennheiser
D&H Distributing
AppRiver

 

“On August 17, 1908, the new Bank of Italy (now Bank of America) Headquarters at 552 Montgomery Street (San Francisco) was opened to the public. Here, on the first floor in an open area, A.P. Giannini had his office where all comers were invited to stop and chat about not only financial but family matters as well.” – US Dept. of the Interior, National Park Service, National Register of Historic Places.

In this same spirit, I kept my desk near the door when I had an office on Cape Cod. I can’t tell you how rewarding it was to have a steady stream of people dropping in to sit down and chat with me.

And now that I work solely as a remote consultant, I am opening a client-facing portal on an always-open basis in Microsoft Teams.

As Microsoft announced the free offering of Microsoft Teams yesterday, I feel that people are now unencumbered for the lack of this tool – Teams is free to download for desktop and mobile, and very simple to create an account in a matter of seconds.

To become a member of the Resolute IT Client Portal, sign up here.

A recent study predicts that 42% of the global workforce will be mobile by 2020. I wonder if we aren’t already there.. Another finding says that the number will be 75% by 2025.

Who really wants to get up, get ready, and walk into an office by 9am or earlier? We can easily attend a 10am office meeting using Microsoft Teams, so we can remain at home or in a coffee shop using a laptop, tablet or even a phone to share our presence, our Office documents, and our enthusiasm with colleagues. And of course, we don’t even have to be in the same country as the other attendees. 

While in the meeting, we can easily share the document that we’d been creating over the weekend. Teams allows you to present your original document for others to view within the Teams interface and co-author or co-edit it there. While collaborating on this document, team members can exchange chat messages alongside the open document. Or better yet, collaborating members can start an impromptu video meeting, while other members of the team can join the meeting and participate by co-authoring the document. You can even record the meeting for later review.

So the future is here. Where you are is irrelevant. But how you’re able to interact is key.

In its July 2018 roundup   of Microsoft Teams news, they announced a new feature that I dismissed at first. “Visio in Teams”, I thought. “So what – it’s just read-only with Visio Online.” But this is *not* Visio Online. Or is it?

At the bottom of this article it says, “Viewing diagrams within Teams is free for most Office 365 customers  , but editing is only available for those with a Visio Online Plan 1 or Plan 2 subscription.”

I’ve searched through the articles for ‘co-authoring’, but all it says is “Team members can work together on diagrams through in-app conversations to provide feedback in real time.” But can we edit the same diagram with another member in real time? One article compares the new editing feature to other Office co-authoring capabilities within Word, Excel, and PowerPoint. “We’ve extended these editing capabilities to Visio files, enabling you to make simple changes to your diagrams without leaving the Teams app.

So does this mean we can also co-author as we would in Word? I think not. Oh, but wait…

On one page of Microsoft’s website it says, “Real-time co-authoring – Not available in Visio Online. Advanced reviewer features, such as merge conflicts and compare diagrams, are only available in the Visio desktop application. With Visio Online, you can view, add, or delete comments.”

But on the features page for Visio Online 2 (not Visio Online 1) it says, “Complete diagrams faster with multiple people working on the same diagram at the same time.”

And in order for members to see any changes, they have to refresh the diagram in Teams.

In order to perform with full functionality, we are advised to use the desktop version of Visio. For ‘almost desktop’ functionality, we can subscribe to Visio Online 2.

Update 07/07/2018: Direct from Microsoft: “At this point in time Visio Online does not support co-authoring inside Teams, irrespective of the license. But this is part of our roadmap and we are working to enable this in future.”

In the May 2018 results at the security lab of AV Comparatives , Microsoft Windows Defender Antivirus performed very well. Often seen as a mediocre solution over the years, Microsoft’s solution is stepping to the plate.

But it isn’t just one solution. Microsoft’s answer has to be seen as a holistic approach as it integrates with Office 365 and its other defense layers as the company depicts here:

Physical security

  • 24-hour monitoring of datacenters.
  • Multi-factor authentication, including biometric scanning for datacenter access.
  • Internal datacenter network is segregated from the external network.
  • Role separation renders location of specific customer data unintelligible to the personnel that have physical access.
  • Faulty drives and hardware are demagnetized and destroyed.

Logical security

  • Lockbox processes  for a strictly supervised escalation process greatly limit human access to your data. Learn how to activate Lockbox .
  • Servers run only processes that are whitelisted, minimizing risk from malicious code.
  • Dedicated threat management teams proactively anticipate, prevent, and mitigate malicious access.
  • Port scanning, perimeter vulnerability scanning, and intrusion detection prevent or detect any malicious access.

Data security

  • Encryption at rest protects your data on our servers.
  • Encryption in transit with SSL/TLS protects your data when it’s transmitted between you and Microsoft.
  • Threat management , security monitoring, and file/data integrity prevent or detect any tampering of data.
  • Exchange Online Protection  provides advanced security and reliability against spam and malware to help protect your information and access to email.

User controls

  • Office 365 Message Encryption  allows users to send encrypted email to anyone, whatever email service recipients may use.
  • Data loss prevention can be combined with Rights Management and Office 365 Message Encryption to give greater controls to your admins to apply appropriate policies to protect sensitive data.
  • S/MIME provides message security with certificate-based email access.
  • Azure Rights Management  prevents file-level access without the right user credentials.

Admin controls

Tab panel for expanded tab number5

  • Multi-factor authentication protects access to the service with a second factor such as phone.
  • Data loss prevention prevents sensitive data from leaking either inside or outside the organization while providing user education and empowerment.
  • Built-in mobile device management capabilities allow you to manage access to corporate data.
  • Mobile application management within Office mobile apps powered by Intune provides granular controls to secure data contained in these apps.
  • Built in antivirus and antispam protection along with advanced threat protection safeguard against external threats.
  • Office 365 Cloud App Security provides enhanced visibility and control into your Office 365 environment.

 

The last article that I wrote was about the Microsoft Office 365 terminology change from “Preservation” to “Retention” in regard to how your data is held – or not – within Exchange, SharePoint and OneDrive.

But when you want to hold your Microsoft Teams data with a retention policy, that policy must be exclusive to Teams – no other service can be part of that policy.

Teams holds its chats, conversations and emails forever by default, but your company might have another inclination to delete data, save it for 7-10 years, or both for whatever reason. Policies can be created and applied in a granular fashion.

Microsoft unveiled its new Teams Retention policies at the end of March 2018 and rolled them out to tenants over the month of April. This is evidently part of the move to bring Skype functionality into the Teams fold.

The next step on the roadmap for Teams data management is eDiscovery.

Scott Abbotts | https://resolute-it.com | https://office365techguy.com