Practical guides forarchitects
Enterprise M365 architecture, endpoint management, security baselines, and infrastructure automation. Deep dives with companion code you can use today.
14+
Articles
38
Topics
M365
Focus
Free
Always
Intune Security Baselines vs CIS Benchmarks: A Decision Guide
Compare Intune security baselines against CIS benchmarks using a PowerShell export-and-diff workflow. Includes ASR deployment, deviation tracking, and a decision framework.
Intune Security Baselines vs CIS Benchmarks: A Decision Guide
Microsoft 365 E3 vs E5: Decision Framework for Architects
M365 E3 vs E5 decision framework for architects: TCO breakpoints, cost comparison scripts, and the rule for when E5 actually beats E3 plus add-ons.
Microsoft 365 E3 vs E5: Decision Framework for Architects
Why Your M365 Tenant Is a Mess (And How to Fix It)
Microsoft 365 tenant health audit checklist: detect orphaned groups, expired app secrets, CA policy sprawl, and SharePoint chaos with Graph API scripts.
Why Your M365 Tenant Is a Mess (And How to Fix It)
Conditional Access Policies That Actually Work: Lessons from 20 Deployments
The patterns that survive contact with production, a baseline CA policy set built from common mistakes, circular dependencies, and hard-won lessons across multiple Microsoft 365 deployments.
Conditional Access Policies That Actually Work: Lessons from 20 Deployments
Microsoft Graph API for Architects: The Endpoints That Actually Matter
Production-ready PowerShell scripts for M365 tenant assessment via Microsoft Graph API. Covers discovery, identity auditing, security posture, governance, and licensing.
Microsoft Graph API for Architects: The Endpoints That Actually Matter
More Articles
View allStay in the loop
New articles on M365 architecture, security baselines, and automation. No spam, just practical engineering content.