M365 Administration Runbook Series β€” Magister Operis Systems
Portfolio Project Β· M365 Administration

M365 Administration
Runbook Series

A complete Microsoft 365 tenant built from scratch for a fictional company "Magister Operis Systems" demonstrating real-world admin workflows from user creation to security policy enforcement.

6
Runbooks
95
Slides
23
Fictional Users
M365
Platform
πŸ§ͺ

The Lab Setup

To practise M365 administration hands-on, I designed a realistic fictional scenario: Magister Operis Systems (MOS), a Berlin company with 23 simulated users across 7 departments. I built their full M365 tenant from scratch, treating it exactly as I would a real client environment.

πŸ“‹

What a Runbook Is

Each runbook is a step-by-step admin guide with real screenshots from the M365 Admin Center, Entra ID, and Teams, documenting exactly what I did, what errors appeared, and how I resolved them.

🎯

Why I Built This

To demonstrate M365 administration in a structured, professional way, not just knowing the theory, but executing and documenting it as an IT Systems Administrator would on the job.

All 6 Runbooks

Download & Explore

Each runbook covers a distinct admin workflow. Click a card to download the PowerPoint file.

Runbook #001
Create Users in M365
Single user creation and bulk CSV import for 22 staff members
  • Create a single user (Chris Vogel) via Admin Center
  • Build and validate a bulk import CSV file
  • Diagnose and fix real CSV import errors
  • Understand Error 530035, auth vs. licencing
⏱ 30 min 🟒 Beginner Admin Center
↓ Download PDF
Runbook #002
Enable MFA
Two methods, Security Defaults and Per-User MFA in Entra ID
  • Enable Security Defaults in Entra ID Properties
  • Use the legacy Per-User MFA interface
  • Enable MFA for Anfreas Schutz and Claudia Hartmann
  • Understand MFA status: Not enabled / Enabled / Enforced
⏱ 30 min 🟒 Beginner Entra ID
↓ Download PDF
Runbook #003
Teams & SharePoint
Create an IT Support Team and configure the auto-provisioned SharePoint site
  • Create MOS IT Support Team via Teams Admin Center
  • Add members and channels (Incidents, Announcements)
  • Understand that Teams auto-creates the SharePoint site
  • Set Site Owner and Member permission levels
⏱ 20 min 🟒 Beginner Teams + SharePoint
↓ Download PDF
Runbook #004
Conditional Access
Policy design & documentation, Entra ID P1 not available in this lab
  • Policy 1 : Block sign-ins from outside Germany
  • Policy 2 : Require MFA for all admin accounts
  • Policy 3 : Block legacy authentication protocols
  • Documented from Microsoft Learn, not executed in tenant
⏱ 45 min 🟑 Intermediate Entra ID P1 Required
⚠ Lab limitation: This runbook could not be executed, Conditional Access requires Entra ID P1, which is not included in M365 Business Standard. The runbook documents the intended configuration based on Microsoft documentation.
↓ Download PDF
Runbook #005
Offboard a User
Complete 6-step offboarding workflow for Felix Wagner, safely and correctly
  • Block sign-in and revoke active sessions immediately
  • Reset password and remove all group memberships
  • Convert mailbox to shared (preserves email, frees licence)
  • Remove licence, freed for the next new hire
⏱ 20 min 🟒 Beginner Admin Center + Exchange
↓ Download PDF
Runbook #006
Configure SSPR
Self-Service Password Reset, users reset their own passwords without IT help
  • Enable SSPR for all 23 MOS users in Entra ID
  • Require 2 authentication methods (email + phone)
  • Configure registration and notification settings
  • Verify SSPR portal at aka.ms/sspr
⏱ 30 min 🟒 Beginner Entra ID
↓ Download PDF
What This Project Demonstrates

Skills & Competencies

πŸ‘€
Identity Management
User lifecycle, create, licence, configure, and offboard accounts at scale
πŸ”’
Security Administration
MFA, Conditional Access policies, legacy auth blocking, SSPR configuration
🀝
Collaboration Tools
Microsoft Teams setup, SharePoint site provisioning, permission management
πŸ“„
Technical Documentation
Step-by-step runbooks with real screenshots, error analysis, and lessons learned
πŸ› οΈ
Troubleshooting
Diagnosed and resolved real M365 errors, CSV import issues, Error 530035, policy conflicts
πŸ“Š
Admin Centers
M365 Admin, Entra ID, Teams Admin, SharePoint Admin, Exchange Admin Center
πŸ—ΊοΈ
Project Planning
Designed a fictional company from scratch with naming conventions, org structure, and user directory
πŸŽ“
Best Practices
Report-only mode, break-glass accounts, shared mailboxes, licence management

Want to See More?

Explore more hands-on infrastructure and networking projects, or reach out directly if you have questions about this M365 portfolio work.

← All Projects Get In Touch
0
Would love your thoughts, please comment.x
()
x