Canalini Consulting Group determined that Microsoft Azure GCC High was the ideal platform to not only meet the organization’s requirements, but also to enable the consolidation of multiple existing technologies into a single, streamlined platform. Canalini worked with the client to provide end-to-end security with hardware-level MFA and streamlined user experience with single sign–on capabilities that leveraged Azure AD. Canalini delivered the following capabilities:

• Synchronization of identity from on-premises Active Directory to Azure AD
• Migration of messaging platform from on-premises Exchange to Exchange Online while also providing S/MIME capabilities
• Migration of mobile device management from Citrix XenMobile to Microsoft Intune
• Migration of Unified Communications from Skype for Business on-premises to Microsoft Teams
• Migration of on-premises file shares to Microsoft OneDrive with Known Folder Move (KFM)
• Remote access to the environment was previously provided with a Cisco AnyConnect VPN solution. Zscaler Private Access (ZPA) was deployed to provide segmentation at the application level instead of providing full network access.

• All data was migrated securely and stored on a FedRAMP cloud platform that required security controls for user and device access to data and applications.
• Email was migrated to Exchange Online while also adding support for S/MIME encryption.
• Desktops, Laptops and Mobile devices were required to be managed with Hybrid Azure AD Join or Intune registration prior to accessing any corporate data.
• Hardware-based multi-factor authentication was enforced for device and application access while providing single sign-on capabilities. Furthermore, all remote access to data and applications leveraged a solution built on ZTNA architecture.
• Various technology vendors were consolidated to Microsoft Azure GCC High services to lower total cost of ownership by cutting hardware and software licensing cost.