Define a hybrid group management strategy for security and governance. Plan for self-service or IT-led group management with oversight. Provision groups with their lifecycle in mind, including owners, location, and department. Use dynamic groups or automation to periodically review membership and usage, and archive unused groups to support a zero-trust security policy.
Microsoft Groups Demystified: Groups, Teams and Distribution Groups End to End
1. Resources
Manage Groups with PowerShell https://bit.ly/ManageGroupsPS
Manage Microsoft 365 Groups with Graph https://bit.ly/MS365Groups
Microsoft Groups for IT Architects https://bit.ly/MSGroupsForArchitects
@joeloleson
https://www.Cayosoft.com
Active Directory Security & Management Tools
Download our FREE
Collabshow.com
I D E N T I T Y
DEFINEPLAN
PROVISION
AUDIT
ARCHIVE
THE FIVE KEYS TOTHE FIVE KEYS TO
GROUP MANAGEMENT
SUCCESSFUL
Define Hybrid Group Management
Strategy for Security and Governance
DEFINE
0101
Plan Self-Service or IT Led
Group Management with Oversight
PLAN
02
PROVISION
Provision Groups with Lifecycle in Mind.
Include Owners Location and Department.03
AUDIT
Use Dynamic Groups or Automation to
Periodicly Review Membership and Usage.04
ARCHIVE
Archive unused groups. Cleanup obsolete
groups to support zero-trust security policy.05
MICROSOFT MVP & RD
GROUPS
MICROSOFT 365
ADMIN CENTER
EXCHANGE
ADMIN CENTER
ON PREMISES
EXCHANGE &
ACTIVE DIRECTORY AZURE AD
ADMIN CENTER
Microsoft 365 Groups
Security Groups
Mail-Enabled Security Groups
Distribution Groups
Shared Mailboxes
Microsoft 365 Group
Shared Mailboxes (EXO)
Distribution Groups
Mail Enabled
Security group
Microsoft 365 Groups
Security Groups
Group-based licensing
Security Groups
Distribution Lists
Exchange Distribution Groups
Shared Mailbox (no sync)
MICROSOFT 365
P
O
W
E
R
S
H
E
L
L
S
E
R
V
I
C
E
M
A
N
A
G
E
M
E
N
T
MICROSOFT GRAPH API - GRANULAR MANAGEMENT
AZURE AD
CONNECT
A HYBRID APPROACH
MANAGING GROUPS
MICROSOFT GROUPS
A SINGLE IDENTITY ACROSS
MICROSOFT RESOURCES
MAIL–ENABLED GROUPS
Grant access to resources
and use for email notifications.
MEMBERSHIP & ACCESS CONTROLS
Teams, Outlook, Yammer, SharePoint,
Planner, Stream, Forms, StaffHub and more
ADMINISTRATIVE UI
Microsoft 365 Admin Center,Azure AD
Admin Center and Exchange Admin Center
DISTRIBUTION GROUPS
Send notifications and
email alerts to a group of people.
.
SECURITY GROUPS
Grant access to resources such
as SharePoint sites and file shares.
MICROSOFT 365 GROUPS
Collaboration between users,
inside and outside your company.
Identity and access managed and secured
centrally for all users within the organization
IDENTITY BASED SECURITY PERIMETER
MICROSOFT
GROUPS
DEMYSTIFIED
Five Keys To
GROUP MANAGEMENT
SUCCESSFUL
MICROSOFT
GROUPS
SPONSORED BY
Cayosoft