What is Office 365 / Microsoft 365

Microsoft 365 (previously known as Office 365) is a cloud-based productivity and collaboration platform provided by Microsoft. It combines productivity applications, cloud services, security features, and device management tools into a single subscription-based service.

Microsoft 365 enables users to work from anywhere using an internet connection while accessing emails, documents, meetings, storage, and collaboration tools.

Earlier, Office 365 primarily focused on providing Office applications and cloud services. Microsoft later expanded the platform by adding security, device management, and advanced collaboration capabilities, which led to the introduction of Microsoft 365.

Today, Microsoft 365 is one of the most widely used cloud productivity platforms by businesses, educational institutions, and government organizations.

Key Components of Microsoft 365:

Microsoft 365 includes several services and applications that help organizations improve productivity and collaboration.

• Productivity Applications

These applications help users create and manage documents, spreadsheets, presentations, and notes.

Examples:

    • Microsoft Word
    • Microsoft Excel
    • Microsoft PowerPoint
    • Microsoft OneNote
    • Microsoft Outlook

• Communication and Collaboration Services

These services help employees communicate and work together efficiently.

Examples:

    • Microsoft Teams
    • Exchange Online
    • Microsoft Forms
    • Microsoft Planner

• Cloud Storage Services

Microsoft 365 provides cloud-based storage solutions that allow users to access files from anywhere.

Examples:

    • OneDrive for Business
    • SharePoint Online

• Security and Identity Services

Microsoft 365 includes identity and security management features.

Examples:

    • Microsoft Entra ID (Azure AD)
    • Multi-Factor Authentication (MFA)
    • Conditional Access
    • Microsoft Defender

• Benefits of Microsoft 365:

Organizations use Microsoft 365 because it offers several advantages.

Benefits include:

    • Anywhere access to applications and data
    • Cloud-based email services
    • Centralized administration
    • Improved collaboration
    • Advanced security features
    • Automatic updates
    • Reduced infrastructure costs
    • Business continuity support

Q: Why do organizations use Microsoft 365?

Modern organizations require flexibility, remote access, and secure collaboration. Microsoft 365 provides these capabilities through cloud-based services.

Organizations use Microsoft 365 for:

    • Email communication
    • Team collaboration
    • Document sharing
    • Online meetings
    • Identity management
    • Data protection

Importance of Microsoft 365:

Microsoft 365 helps organizations modernize their IT infrastructure by reducing dependency on on-premises systems.

It provides:

    • Better productivity
    • Secure access to resources
    • Simplified administration
    • Scalable cloud solutions
    • Improved user experience

Example: A company uses Microsoft 365 to provide employees with Outlook email, Teams meetings, OneDrive storage, and SharePoint collaboration. Employees can securely access company resources from office locations, home, or while traveling.

══════════════════════════════════════════════════

1.2 Microsoft 365 Timeline 

---------------------------------------------------------------------

Microsoft Timeline Overview:

1. Microsoft BPOS (Business Productivity Online Suite)

Period: Before 2010

Microsoft BPOS was Microsoft's first cloud-based business productivity platform.

It included basic online services such as the following:

    • Exchange Server
    • SharePoint Server
    • Office Communications Services
    • Hosted collaboration tools

Although BPOS provided cloud services, it had limited integration and management capabilities compared to modern Microsoft 365 services.

2. Microsoft Office 365 (2010 – 2013)

In 2010, Microsoft launched Office 365 as the successor to BPOS.

Office 365 combined Microsoft Office applications with cloud services and introduced a subscription-based model.

Major services included:

    • Exchange Online
    • SharePoint Online
    • Lync Online (later Skype for Business)
    • Office Applications

Benefits introduced:

    • Cloud-hosted email
    • Online collaboration
    • Reduced on-premises infrastructure
    • Subscription-based licensing

This was the beginning of Microsoft's modern cloud productivity platform.

3. Office 365 Expansion (2013 – 2020)

Between 2013 and 2020, Office 365 received major enhancements and became one of the most widely used business productivity platforms.

Several Microsoft cloud services were integrated into the platform, including:

    • Azure
    • OneDrive for Business
    • Power BI
    • Yammer
    • Skype for Business

Organizations benefited from:

    • Better collaboration
    • Cloud storage
    • Business analytics
    • Improved accessibility
    • Mobile device support

During this period, Microsoft significantly expanded its cloud ecosystem beyond traditional Office applications.

4. Microsoft 365 (2020 – Present)

In 2020, Microsoft officially expanded Office 365 into Microsoft 365.

Microsoft 365 is not just a productivity suite; it is a complete cloud platform that combines the following:

    • Productivity applications
    • Collaboration tools
    • Security solutions
    • Identity management
    • Device management

New services and capabilities include:

    • Microsoft Teams
    • Microsoft Entra ID (Azure AD)
    • Microsoft Intune
    • Microsoft Defender
    • Windows 10 / Windows 11 integration
    • Enterprise Mobility + Security (EMS)

---------------------------------------------------------------------

Major Improvements in Microsoft 365:

Microsoft 365 introduced several advanced capabilities that were not available in the earlier Office 365 platform.

• Advanced Device Management

Administrators can manage:

    • Laptops
    • Mobile devices
    • Tablets
    • Corporate endpoints

through Microsoft Intune and Endpoint Manager.

• Intelligent Security

Microsoft 365 includes:

    • Multi-Factor Authentication (MFA)
    • Conditional Access
    • Microsoft Defender
    • Identity Protection
    • Data Loss Prevention (DLP)

These features help organizations protect users and data.

• Innovative Online Services

Microsoft continuously adds cloud services such as:

    • Microsoft Teams
    • Power Platform
    • AI-powered services
    • Microsoft Copilot
    • Advanced collaboration tools

These innovations improve productivity and business efficiency.

---------------------------------------------------------------------

Why did Microsoft change from Office 365 to Microsoft 365?

The name change reflects Microsoft's broader vision.

Office 365 mainly focuses on the following:

    • Office applications
    • Email services
    • Cloud collaboration

Microsoft 365 now includes the following:

    • Office applications
    • Windows operating system integration
    • Security services
    • Device management
    • Identity management
    • Enterprise mobility solutions

Therefore, Microsoft 365 provides a complete workplace solution instead of only Office applications.

---------------------------------------------------------------------

Timeline Summary

Example: A company initially used Office 365 only for Outlook email and Office applications. After migrating to Microsoft 365, the organization now uses Teams for communication, Intune for device management, Entra ID for identity management, and Microsoft Defender for security protection, all within a single cloud platform.

---------------------------------------------------------------------
1.3 Enterprise Licensing 

Microsoft offers different licensing plans to meet the requirements of organizations of various sizes. Not every employee in a company requires the same tools and security features. For example, a customer support executive may only need email and Microsoft Teams, while an IT administrator may require advanced security, device management, and compliance features.

To address these different needs, Microsoft provides multiple enterprise licensing options under two categories:

Office 365 Enterprise Licensing

• Office 365 E1 
• Office 365 E3 
• Office 365 E5 

Microsoft 365 Enterprise Licensing

• Microsoft 365 E3 
• Microsoft 365 E5 
• Microsoft 365 E7 

Before understanding each license, it is important to know the difference between Office 365 and Microsoft 365.

Office 365 mainly provides productivity and collaboration services such as Outlook, Teams, SharePoint, OneDrive, and Office applications. Microsoft 365 includes everything in Office 365 and adds Windows Enterprise, Microsoft Intune, Microsoft Entra ID Premium, and advanced security and device management capabilities.

---------------------------------------------------------------------

Office 365 Enterprise Licensing:

---------------------------------------------------------------------

1. Office 365 E1

Office 365 E1 is the basic enterprise plan designed for users who primarily work through web browsers and do not require desktop Office applications.

With Office 365 E1, users can access Outlook email, Microsoft Teams, SharePoint Online, OneDrive for Business, and web-based versions of Word, Excel, and PowerPoint.

Since E1 does not include desktop Office applications, users must work using browser-based Office apps.

Suitable For

Office 365 E1 is suitable for

• Customer support teams 
• Call center employees 
• Frontline workers 
• Sales representatives 
• Users who mainly use email and Teams 

Example : Consider a customer support executive who spends most of the day responding to emails and attending Teams meetings. Since this employee does not create complex Excel reports or PowerPoint presentations, Office 365 E1 is sufficient.

Advantages

• Lower licensing cost 
• Email and Teams included 
• Cloud storage through OneDrive 
• Suitable for large numbers of users 

Limitations

• No desktop Office applications 
• Limited security and compliance features 

---------------------------------------------------------------------

2. Office 365 E3

Office 365 E3 is one of the most commonly used enterprise licenses.

It includes everything available in E1 along with full desktop versions of Microsoft Office applications such as Word, Excel, PowerPoint, Outlook, and Access.

This license is designed for employees who regularly work with Office documents and require advanced productivity tools.

Suitable For

Office 365 E3 is suitable for:

• HR departments 
• Finance teams 
• Project managers 
• Business analysts 
• Corporate employees 

Example : A finance executive creates detailed Excel reports and financial models daily. Since browser-based Office apps are not sufficient for advanced Excel functions, Office 365 E3 is a better choice.

Advantages :

• Desktop Office applications included 
• Better productivity features 
• Larger storage allocation 
• Information protection capabilities 

Limitations :

• Advanced security features are limited compared to E5 

---------------------------------------------------------------------

3. Office 365 E5

Office 365 E5 is the most advanced Office 365 enterprise license.

It includes all features available in E3 and adds advanced security, compliance, analytics, and threat protection capabilities.

Organizations handling sensitive information often choose E5 because it provides enhanced protection against cyber threats.

Suitable For

Office 365 E5 is suitable for:

• Security teams 
• Compliance departments 
• Financial institutions 
• Healthcare organizations 
• Large enterprises 

Example : A bank handles confidential customer data and must comply with strict security regulations. Office 365 E5 helps protect emails, detect threats, and maintain compliance requirements.

Advantages :

• Advanced threat protection 
• Data Loss Prevention (DLP) 
• Advanced compliance tools 
• Enhanced email security 
• Teams Phone capabilities 

Limitations :

• Higher licensing cost 

---------------------------------------------------------------------

Microsoft 365 Enterprise Licensing

Microsoft 365 Enterprise licenses combine Office 365 services with Windows Enterprise, Microsoft Intune, and Microsoft Entra ID.

These licenses are intended for organizations that want centralized management of users, devices, applications, and security.

1. Microsoft 365 E3

Microsoft 365 E3 includes all Office 365 E3 features plus:

• Windows Enterprise E3 
• Microsoft Intune 
• Microsoft Entra ID Premium P1 
• Device management capabilities 

This license is ideal for organizations adopting a modern workplace environment.

Suitable For

Microsoft 365 E3 is suitable for:

• IT-enabled organizations 
• Hybrid work environments 
• Medium and large enterprises 
• Companies managing laptops and mobile devices 

Example : A company provides laptops to all employees and wants to manage updates, security policies, and applications centrally. Microsoft 365 E3 allows administrators to manage these devices using Intune.

Advantages :

• Desktop Office applications 
• Device management 
• Identity management 
• Windows Enterprise features 

---------------------------------------------------------------------

2. Microsoft 365 E5

Microsoft 365 E5 is Microsoft's premium enterprise license.

It includes everything in Microsoft 365 E3 and adds advanced cybersecurity and identity protection capabilities.

Organizations with strict security requirements often choose Microsoft 365 E5.

Additional Features

• Microsoft Defender 
• Microsoft Entra ID Premium P2 
• Privileged Identity Management (PIM) 
• Identity Protection 
• Advanced Threat Analytics 

Suitable For

Microsoft 365 E5 is suitable for:

• Enterprise IT teams 
• Government organizations 
• Financial institutions 
• Security-focused organizations 

Example : A multinational company wants to detect suspicious login activities, monitor threats, and protect privileged administrator accounts. Microsoft 365 E5 provides these capabilities.

Advantages :

• Enterprise-grade security 
• Advanced threat detection 
• Identity protection 
• Risk-based access control 

---------------------------------------------------------------------

3. Microsoft 365 E7

Microsoft 365 E7 is Microsoft's latest AI-focused enterprise offering.

This license is designed for organizations that want to integrate Artificial Intelligence into daily business operations.

Microsoft 365 E7 includes all Microsoft 365 E5 capabilities and adds AI-powered productivity features.

Additional Features :

• Microsoft Copilot 
• AI-powered assistants 
• Intelligent automation 
• Advanced productivity insights 

Suitable For :

Microsoft 365 E7 is suitable for:

• Large enterprises 
• AI-driven organizations 
• Research organizations 
• Companies investing heavily in automation 

Example : A consulting company wants employees to generate reports, presentations, and summaries using AI. Microsoft 365 E7 provides integrated AI tools through Microsoft Copilot.
 ---------------------------------------------------------------------

Office 365 Enterprise License Comparison 

Microsoft 365 Enterprise License Comparison

Quick Licensing Recommendation

---------------------------------------------------------------------

1.4 Microsoft 365 Admin Center 

What is Microsoft 365 Admin Center?

The Microsoft 365 Admin Center is a web-based management portal that allows administrators to manage and monitor Microsoft 365 services, users, licenses, subscriptions, security settings, and organizational resources from a centralized location.

It serves as the primary administration interface for Microsoft 365 environments. Through this portal, administrators can perform day-to-day management tasks without needing direct access to individual Microsoft 365 services.

The Microsoft 365 Admin Center can be accessed through https://admin.microsoft.com.

After signing in with an administrator account, administrators can manage all Microsoft 365 services from a single dashboard.

---------------------------------------------------------------------

Why is Microsoft 365 Admin Center Important?

In an organization with hundreds or thousands of users, manually managing accounts, licenses, passwords, and services would be extremely difficult.

The Microsoft 365 Admin Center simplifies administration by providing a centralized platform where administrators can:

• Create and manage users 
• Assign licenses 
• Manage domains 
• Monitor service health 
• Reset passwords 
• Manage subscriptions 
• Access security settings 
• View reports and usage statistics 

This centralized approach reduces administrative effort and improves operational efficiency.

---------------------------------------------------------------------

Key Functions of Microsoft 365 Admin Center:

• User Management

One of the primary functions of the Admin Center is user management.

Administrators can:

• Create new user accounts 
• Modify user information 
• Disable or delete accounts 
• Reset passwords 
• Assign administrative roles 
• Manage user sign-in settings 

Example : When a new employee joins the company, the administrator creates a Microsoft 365 account, assigns a license, and provides login credentials through the Admin Center.

• License Management

Microsoft 365 services require licenses before users can access them.

Administrators can:

• Assign licenses to users 
• Remove licenses 
• Monitor license usage 
• Purchase additional licenses 
• Track available licenses 

Example : A company purchases 100 Microsoft 365 E3 licenses. The administrator assigns these licenses to employees through the Admin Center.

• Domain Management

Organizations often use their own company domain instead of Microsoft's default domain.

Administrators can:

• Add custom domains 
• Verify domain ownership 
• Configure DNS records 
• Manage domain settings 

Example : 

Instead of using: user@company.onmicrosoft.com

an organization can use: user@company.com

after adding and verifying its custom domain.

• Service Health Monitoring

The Admin Center provides real-time information about Microsoft 365 services.

Administrators can monitor:

• Exchange Online status 
• Teams service availability 
• SharePoint Online health 
• OneDrive service status 

Example : If Microsoft Teams experiences a service outage, administrators can view alerts and updates in the Service Health Dashboard.

• Password Management

Administrators can manage user passwords directly from the portal.

Tasks include:

• Password reset 
• Temporary password generation 
• Unlocking user accounts 
• Managing password policies 

Example : If an employee forgets their password, the Helpdesk Administrator can reset it through the Admin Center.

• Subscription Management

The Admin Center allows organizations to manage Microsoft subscriptions.

Administrators can:

• View active subscriptions 
• Renew subscriptions 
• Upgrade licenses 
• Monitor billing information 

Example : A company upgrading from Office 365 E1 to Microsoft 365 E3 can manage the subscription change through the Admin Center.

• Reports and Usage Analytics

Administrators can generate reports related to Microsoft 365 usage.

Reports include:

• Email activity 
• Teams usage 
• OneDrive storage usage 
• User activity 
• License consumption 

These reports help organizations understand how Microsoft 365 services are being utilized.

---------------------------------------------------------------------

Advantages of Microsoft 365 Admin Center:

• Centralized Administration : All Microsoft 365 services can be managed from a single portal, reducing complexity and administrative overhead.
• Simplified User Management : Administrators can quickly create, modify, or remove users without accessing multiple platforms.
• Easy License Assignment : Licenses can be assigned or removed in a few clicks, ensuring users receive appropriate access.
• Improved Monitoring : The Service Health Dashboard helps administrators quickly identify and respond to service-related issues.
• Better Security Management : Administrative roles, user access, and security configurations can be managed centrally.
• Time Saving : Routine administrative tasks can be completed faster through a unified management interface.
• Scalability :The Admin Center supports organizations ranging from small businesses to large enterprises with thousands of users.

Example:

Consider an organization with 500 employees using Microsoft 365.

Using the Microsoft 365 Admin Center, administrators can:

• Create accounts for new employees 
• Assign Microsoft 365 E3 licenses 
• Reset passwords when required 
• Monitor Teams and Exchange Online health 
• Generate usage reports 
• Manage custom domains 
• View security and compliance alerts 

Without the Admin Center, these tasks would require separate management tools, increasing complexity and administrative effort.

 ---------------------------------------------------------------------

1.5 Office 365 Administrator Roles

Introduction to Administrative Roles

Microsoft 365 is used by organizations of all sizes, from small businesses to large enterprises with thousands of users. Managing all Microsoft 365 services through a single administrator account is neither practical nor secure.

To follow the principle of least privilege, Microsoft provides Role-Based Access Control (RBAC), which allows administrators to assign specific permissions based on job responsibilities. Instead of giving every administrator full control over the environment, organizations can assign specialized roles for managing users, email, Teams, SharePoint, passwords, and other services.

Each administrative role has a defined set of permissions that determines what tasks the administrator can perform.

---------------------------------------------------------------------

1. Global Administrator

What is a global administrator?

The Global Administrator is the highest privileged administrative role in Microsoft 365. Users assigned this role have complete control over the Microsoft 365 tenant and can manage nearly all services and settings.

This role is equivalent to an Enterprise Administrator in an on-premises Active Directory environment.

Responsibilities

A Global Administrator can:

• Create and delete users 
• Assign licenses 
• Reset passwords for all users and administrators 
• Manage domains 
• Configure security settings 
• Assign administrative roles 
• Manage subscriptions and billing 
• Access all Microsoft 365 admin centers 

Suitable For

This role is usually assigned to:

• IT Managers 
• Senior System Administrators 
• Microsoft 365 Administrators 

Example : In a company, the IT Head is responsible for managing the entire Microsoft 365 environment. Therefore, the IT Head is assigned the Global Administrator role.

---------------------------------------------------------------------

2. Exchange Administrator

What is an Exchange Administrator?

The Exchange Administrator manages Exchange Online, which is Microsoft's cloud-based email service.

This role focuses specifically on email-related administration.

Responsibilities :-

An Exchange Administrator can:

• Create and manage mailboxes 
• Configure mail flow rules 
• Manage shared mailboxes 
• Configure email security policies 
• Manage distribution groups 
• Configure email forwarding 
• Troubleshoot mail delivery issues 

Suitable For

This role is suitable for:

• Messaging Administrators 
• Email Support Teams 
• Exchange Administrators 

Example : If users are unable to send or receive emails, the Exchange Administrator investigates and resolves the issue.

---------------------------------------------------------------------

3. Helpdesk Administrator

What is a Helpdesk Administrator?

The Helpdesk Administrator role is designed for first-level support personnel who assist users with common account-related issues.

This role provides limited administrative permissions focused on user support.

Responsibilities

A Helpdesk Administrator can:

• Reset user passwords 
• Assist users with sign-in issues 
• Unlock user accounts 
• View user information 
• Manage basic support requests 

Suitable For

This role is suitable for:

• IT Support Engineers 
• Service Desk Teams 
• Technical Support Staff 

Example : When an employee forgets their Microsoft 365 password, the Helpdesk Administrator can reset the password without requiring Global Administrator privileges.

---------------------------------------------------------------------

4. Global Reader Administrator

What is a Global Reader?

The Global Reader role provides read-only access across Microsoft 365 services.

Users assigned this role can view settings and configurations but cannot make any changes.

Responsibilities

A Global Reader can:

• View Microsoft 365 settings 
• Access reports 
• Monitor service health 
• Review security information 
• Audit configurations 

Suitable For 

This role is suitable for:

• Auditors 
• Compliance Officers 
• Senior Management 
• Security Review Teams 

Example : An internal auditor reviewing Microsoft 365 security settings can use the Global Reader role to inspect configurations without the risk of accidentally modifying them.

---------------------------------------------------------------------

5. Teams Administrator

What is a Teams Administrator?

The Teams Administrator manages Microsoft Teams and collaboration services.

This role focuses on configuring Teams settings and communication policies.

Responsibilities

A Teams Administrator can:

• Create and manage Teams policies 
• Configure meetings 
• Manage calling features 
• Configure messaging policies 
• Manage Teams settings 
• Troubleshoot Teams-related issues 

Suitable For

This role is suitable for:

• Collaboration Administrators 
• Unified Communication Teams 
• Teams Support Engineers 

Example : If an organization wants to restrict meeting recording permissions, the Teams Administrator can configure the required Teams policy.

---------------------------------------------------------------------

6. SharePoint Administrator

What is a SharePoint Administrator?

The SharePoint Administrator manages SharePoint Online and OneDrive for Business services.

This role focuses on document management and collaboration platforms.

Responsibilities

A SharePoint Administrator can:

• Create SharePoint sites 
• Manage site permissions 
• Configure document libraries 
• Manage OneDrive settings 
• Configure sharing policies 
• Monitor storage usage 

Suitable For

This role is suitable for:

• SharePoint Administrators 
• Content Management Teams 
• Collaboration Teams 

Example : If a department requires a new SharePoint site for project documentation, the SharePoint Administrator can create and manage the site.

---------------------------------------------------------------------

7. User Administrator

What is a user administrator?

The User Administrator role focuses on managing user accounts and licenses.

Unlike the Global Administrator, this role has limited permissions and cannot manage all tenant settings.

Responsibilities

A User Administrator can:

• Create users 
• Modify user information 
• Assign licenses 
• Remove licenses 
• Manage groups 
• Reset passwords for standard users 

Suitable For

This role is suitable for:

• User Management Teams 
• HR IT Teams 
• Identity Management Teams 

Example : When a new employee joins the company, the User Administrator creates the account and assigns the appropriate Microsoft 365 license.

---------------------------------------------------------------------

8. Password Administrator

What is a password administrator?

The Password Administrator role is specifically responsible for managing user passwords.

This role provides fewer permissions than a User Administrator and is commonly assigned to support teams.

Responsibilities

A Password Administrator can:

• Reset user passwords 
• Assist with account access issues 
• Manage password-related requests 

Suitable For

This role is suitable for:

• Service Desk Teams 
• Helpdesk Personnel 
• Support Engineers 

Example : If a user forgets their password while working remotely, the Password Administrator can reset the password and help restore access.

---------------------------------------------------------------------

Why does Microsoft use multiple administrator roles?

Organizations often separate administrative responsibilities to improve security and reduce risk.

Benefits include:

• Better security control 
• Reduced administrative risk 
• Compliance with security standards 
• Easier auditing and monitoring 
• Implementation of the Least Privilege principle 

For example, a Helpdesk Engineer should not have the same permissions as a Global Administrator because their job responsibilities are different.

---------------------------------------------------------------------

Summary of Administrator Roles 

Real-World Example

In a large organization:

• The IT Manager is assigned the Global Administrator role. 
• The Email Team receives the Exchange Administrator role. 
• The Service Desk team receives the Helpdesk Administrator role. 
• The Collaboration Team receives the Teams Administrator role. 
• The SharePoint Team receives the SharePoint Administrator role. 
• The HR IT Team receives the User Administrator role. 
• Internal auditors receive the Global Reader role.

---------------------------------------------------------------------

1.6 Custom Domain?

Introduction:

When a Microsoft 365 tenant is created, Microsoft automatically assigns a default domain name in the format: companyname.onmicrosoft.com

For example:

• contoso.onmicrosoft.com  
• hcl.onmicrosoft.com  
• tcs.onmicrosoft.com 

Although this default domain is fully functional, most organizations prefer to use their own business domain for professional communication and branding.

A Custom Domain is a domain name owned by an organization and added to Microsoft 365 so that users can use business email addresses instead of the default Microsoft domain.

For example:

Instead of:  john@company.onmicrosoft.com

Organizations prefer: john@company.com

This makes email communication more professional and helps establish trust with customers and business partners.

 ---------------------------------------------------------------------

What is a domain?

A domain is a unique name that identifies an organization on the internet.

Examples:

• company.com 
• hcl.com 
• tcs.com 
• microsoft.com  

Organizations purchase domains from domain registrars such as:

• GoDaddy 
• Namecheap 
• Hostinger 
• Google Domains 
• BigRock  

Once purchased, the domain can be integrated with Microsoft 365.

---------------------------------------------------------------------

Why Do Organizations Use Custom Domains?

A custom domain helps organizations create a professional identity and improve brand recognition.

Benefits of Custom Domains

    • Professional email addresses
    • Improved company branding
    • Better customer trust
    • Easier identification of company users
    • Consistent business communication
    • Enhanced credibility

---------------------------------------------------------------------

Default Domain vs Custom Domain:

• Default Microsoft 365 Domain

Created automatically during tenant creation.

Example: admin@company.onmicrosoft.com

Characteristics:

    • Provided by Microsoft
    • Free to use
    • Cannot be removed completely
    • Used for internal Microsoft 365 operations

• Custom Domain

Added and verified by the organization.

Example: admin@company.com

Characteristics:

    • Owned by the organization
    • Used for business communication
    • Improves branding
    • Can be assigned to users and services

---------------------------------------------------------------------

Where are custom domains used?

Once added to Microsoft 365, custom domains can be used for:

User Accounts

Example: user@company.com

Email Addresses

Example: support@company.com

Microsoft Teams

Users sign in with: user@company.com

SharePoint Online

Organizations can customize SharePoint URLs using their domain identity.

Microsoft 365 Services

The same domain can be used across:

    • Exchange Online
    • Teams
    • SharePoint Online
    • OneDrive
    • Microsoft Entra ID

---------------------------------------------------------------------

Importance of Custom Domains

Without a custom domain, organizations would need to use the default onmicrosoft.com domain, which appears less professional.

Custom domains help organizations:

    • Establish a professional image
    • Strengthen brand identity
    • Improve communication
    • Standardize user accounts
    • Enhance customer confidence

Example:

A company named ABC Technologies creates a Microsoft 365 tenant and receives the default domain: abctechoffice.onmicrosoft.com

User accounts would look like: employee@abctechoffice.onmicrosoft.com

To make communication more professional, the company purchases: abctech.com

After adding the custom domain to Microsoft 365, users receive email addresses such as: employee@abctech.com

This creates a more professional business identity.

---------------------------------------------------------------------

1.8 DNS Records 

Introduction

When a custom domain is added to Microsoft 365, Microsoft must be able to verify domain ownership and direct various services such as email, Teams, SharePoint, and user authentication to the correct destination. This is achieved through DNS (Domain Name System) records.

DNS acts like the internet's phonebook. Instead of remembering IP addresses, users access services using domain names, and DNS translates those names into the appropriate destinations.

In Microsoft 365, DNS records play a critical role in connecting a custom domain to Microsoft services. Without proper DNS configuration, users may experience issues such as email delivery failures, authentication problems, or inability to access Microsoft 365 services.

For example, when an organization adds the domain company.com to Microsoft 365, several DNS records must be configured so that Microsoft knows how to handle email, domain verification, and service connectivity.

---------------------------------------------------------------------

Why Are DNS Records Required in Microsoft 365?

DNS records help Microsoft 365 perform various functions, including:

• Verifying domain ownership 
• Routing emails to Exchange Online 
• Supporting Microsoft Teams services 
• Configuring Outlook automatically 
• Connecting users to Microsoft 365 services 
• Managing custom domains 

Without proper DNS records, Microsoft 365 services cannot function correctly with a custom domain.

---------------------------------------------------------------------

Purpose of DNS Records in Microsoft 365:

1. Domain Verification

Before Microsoft allows a custom domain to be used, it must verify ownership of the domain.

This verification is typically performed using a TXT record.

1. Email Routing

DNS records tell the internet where emails should be delivered.

Exchange Online uses MX records to receive incoming emails.

1. Service Discovery

Applications such as Outlook and Teams use DNS records to automatically locate Microsoft 365 services.

1. Security and Authentication

Certain DNS records help verify email legitimacy and improve security.

1. Collaboration Services

Microsoft Teams, SharePoint, and other services rely on DNS records for proper communication and connectivity.

Example:

Suppose a company purchases the domain: company.com

and wants to use Microsoft 365.

To enable email and Microsoft 365 services, the administrator must add several DNS records provided by Microsoft. These records allow Microsoft to verify ownership of the domain and ensure that services such as Exchange Online and Teams function correctly.

---------------------------------------------------------------------

Types of DNS Records Used in Microsoft 365:

Microsoft 365 commonly uses several DNS record types. Among them, TXT, MX, and CNAME records are the most important and are frequently configured during Microsoft 365 deployment.

1. TXT Record

What is a TXT record?

A TXT (text) Record stores text-based information in DNS.

In Microsoft 365, TXT records are primarily used for domain ownership verification.

When a custom domain is added, Microsoft generates a unique TXT record that must be added to the DNS zone of the domain.

Microsoft checks this record to confirm that the organization owns the domain.

Uses of TXT Records

• Domain verification 
• Security configurations 
• Email authentication 
• Service validation 

Example :

Type: TXT

Value: MS=ms39500721

Microsoft reads this value and verifies ownership of the domain.

Importance in Microsoft 365

Without the TXT record, Microsoft cannot verify the custom domain, and the domain cannot be used with Microsoft 365 services.

---------------------------------------------------------------------

2. MX Record (Mail Exchange Record)

What is an MX Record?

An MX (Mail Exchange) Record specifies the mail server responsible for receiving emails for a domain.

In Microsoft 365, the MX record directs incoming email traffic to Exchange Online.

Whenever someone sends an email to admin@evision.com, the sender's mail server performs an nslookup for evision.com to find the MX record. The MX record then points the email to Microsoft's mail servers (Exchange Online), which deliver the message to the recipient's mailbox.

Email Flow (As Shown in Diagram):

1. john.doe@gmail.com sends an email to admin@evision.com 
2. The sender's mail server performs an nslookup for evision.com 
3. DNS returns the MX record: johncloud-site.mail.protection.outlook.com  
4. The MX record stored in GoDaddy is replicated and recognized by Microsoft 365. 
5. The email is routed to Exchange Online (Office 365). 
6. Office 365 delivers the email to admin@evision.com.

Uses of MX Records

• Email routing 
• Exchange Online integration 
• Mail delivery management 
• Directing external emails to Microsoft 365 mailboxes

Example :

Type: MX

Domain: evision.com

Value: johncloud-site.mail.protection.outlook.com

This record tells the internet that Microsoft Exchange Online is responsible for receiving emails for the evision.com domain.

Importance in Microsoft 365:

Without a correctly configured MX record:

• Emails may not be delivered to Microsoft 365. 
• Incoming messages may be lost or bounced. 
• Exchange Online will not receive email traffic. 
• External users will be unable to send emails successfully to @evision.com mailboxes.

---------------------------------------------------------------------

3. CNAME Record (Canonical Name Record)

What is a CNAME Record?

A CNAME (Canonical Name) Record creates an alias that points one domain name to another domain name.

Instead of pointing directly to an IP address, a CNAME record redirects DNS requests to another hostname.

When a user accesses www.evision.com, DNS checks the CNAME record and redirects the request to the actual target hostname evisioncom.azurewebsites.net.

DNS Flow (As Shown in Diagram):

1. User enters www.evision.com in a browser.  
2. DNS performs an nslookup for evision.com. 
3. DNS queries the CNAME record stored in GoDaddy. 
4. GoDaddy returns the CNAME record. 
5. DNS resolves www.evision.com to evisioncom.azurewebsites.net. 
6. The website content is delivered to the user.

Uses of CNAME Records

• Website aliasing 
• Subdomain redirection 
• Cloud service integration 
• Simplified DNS management 

Example :-

Type: CNAME

Host/Name: www

Domain: evision.com

Value: evisioncom.azurewebsites.net

This record tells DNS that www.evision.com is an alias for evisioncom.azurewebsites.net.

Importance in Microsoft 365:

CNAME records help:

• Redirect users to the correct web service. 
• Host websites on cloud platforms without changing user-facing URLs. 
• Simplify DNS administration. 
• Support scalable web applications and services.

---------------------------------------------------------------------

DNS Record Summary

How These Records Work Together

When an organization adds a custom domain to Microsoft 365:

1. A TXT Record is added to verify domain ownership. 
2. An MX Record is configured to route emails to Exchange Online. 
3. A CNAME Record is configured to support Outlook and other Microsoft 365 services. 

Together, these records ensure that the custom domain functions properly with Microsoft 365 services.

Scenario:

A company purchases the domain: company.com

The administrator adds the domain to Microsoft 365 and configures:

• TXT Record → Domain verification 
• MX Record → Email delivery to Exchange Online 
• CNAME Record → Outlook AutoDiscover 

After the DNS records are configured and propagated, employees can:

• Sign in using company.com accounts 
• Send and receive emails through Exchange Online 
• Automatically configure Outlook 
• Use Microsoft 365 services seamlessly 

This is why DNS configuration is one of the most important steps when integrating a custom domain with Microsoft 365.