Securely into the Microsoft Cloud

To strengthen IT security, efficiency, and future readiness, the existing Microsoft infrastructure of the mechanical engineering company Oskar Frech was to be comprehensively modernized. Aiming to create a secure, cloud‑based working environment based on Microsoft 365 that meets technical, organizational, and legal requirements alike. The focus was on identity management, email migration, device management, and data protection.

-> Discover how we, together with Microsoft, make digital solutions possible. Learn more about our Microsoft expertise!

• Increased IT security and compliance
• Reduced operational costs
• Flexible modern working 

The existing Microsoft infrastructure of the globally active family-owned business needed a fundamental modernization to meet current security, data protection, and operational requirements.

The primary task was to rebuild identity and access management based on the zero-trust principle with minimal privileges. At the same time, the on-premises exchange environment was to be fully migrated to the cloud to create a stable and future-proof email infrastructure. In addition, a modern approach to the provisioning and management of endpoints and office applications was required.

The goal was to reduce administrative processes while ensuring a consistent user experience for employees. Furthermore, all data protection requirements had to be met, particularly through the creation of a data protection impact assessment and a company policy. Overall, the aim was to create a secure, cloud-based, and sustainable Microsoft 365 work environment.

In the first step, Telekom MMS set up the new, central identity and security platform, Microsoft Entra ID Tenant, where users, access rights, and security policies are managed uniformly and in isolation across the company. A multi-factor authentication (MFA) solution was also introduced to effectively secure access to systems and data.

Unnecessary M365 features were deactivated, the local Active Directory was connected in a hybrid configuration, and multi-factor authentication with basic security policies was implemented. Structured license management was carried out in parallel.

Subsequently, the existing on-premises Exchange mailboxes were migrated to Exchange Online. System accounts were transferred, and the local Exchange Server was taken offline. Microsoft Intune was deployed for the centralized management of endpoints—for both mobile devices and desktop workstations. As part of this process, email and device configurations were adjusted, PC provisioning was prepared, and the upgrade to Office 365 was implemented. Additionally, the existing endpoint security solution was replaced by Microsoft Defender.

Furthermore, Telekom MMS conducted a data protection impact assessment and drafted a works agreement. Currently, additional M365 services such as Microsoft Teams, OneDrive, SharePoint, and Planner are being prepared for rollout.

The new Entra ID tenant and the introduction of multi-factor authentication have significantly enhanced IT security. The migration to Exchange Online ensures a stable, highly available, and future-proof email infrastructure, while the elimination of on-premises systems significantly reduces operational and maintenance costs.

With Microsoft Intune, endpoints can now be managed consistently and efficiently. The latest versions of Office improve compatibility and functionality in day-to-day work. At the same time, the company is legally protected: a data protection impact assessment and a works agreement provide clarity and security for the organization and its employees.

The new M365 work environment enables flexible, mobile working and lays the foundation for improved digital collaboration within the fully integrated Microsoft ecosystem.

Oskar Frech GmbH & Co. KG is an internationally active mechanical engineering company headquartered in Schorndorf (Baden-Württemberg). Founded in 1949, the family-owned company is one of the world’s leading manufacturers of die-casting machines for zinc, magnesium, and aluminum, and has several hundred employees at locations in Germany and abroad.