Client name: CIC Research

Default naming schema: CICR-(serial number)

Domain: cic.local

Join the computer to Azure/Intune with Company Portal

Grant domain users local admin rights

• Device join to cic.local domain

• The device has been renamed CICR-SerialNumber

• The user signed in with Domain Credentials

• User’s Office apps, Outlook, Teams, and OneDrive are signed in

• OneDrive Backup is enabled for Desktop, Documents, and Pictures

• VPN Configured with CIC VPN XML

• Umbrella module configured with OrgInfo.json

• Default Apps Set: Mail: Outlook, Browser: Chrome:, PDF: Adobe Reader

• Compliant with Intune Policies

• Bitlocker Key backed up to user’s AzureAD Account

• Apps and Utilities loaded onto the device: per client WI

• N-Able Windows Agent Take Control Tested

• Device and drivers have been updated (Windows Update, Lenovo Vantage/System Update)

• Perform Mic and Camera check with a Teams test call, with user’s permission

• Perform quality checks against the manager’s request and the provisioning Work instruction

• N-Central Agent

• Cisco Secure Client: Place the CIC VPN.xml under attachments and copy it into the following directory: C:\ProgramData\Cisco\Cisco Secure Client\VPN\Profile

• Cisco Umbrella Agent

• Microsoft Office 365

• Microsoft Teams

• Microsoft OneDrive

• Adobe Reader

• Google Chrome

• Mozilla Firefox

• Apply All Lenovo updates

• Apply All Windows updates/patches

• Create “localuser” account with the credentials within 1Password.

• Rename device

• Setup the VPN and connect with admin creds

• Add the device to the jandjdomain.loc domain

• Restart the device

• Enroll the device with the Company portal during user setup

• Activate the CIC VPN

• Switch user accounts

• Have the user sign in with their domain credentials.

• Once you are signed into the user account, launch task manager as admin

• Switch to the signed-in user’s tab, right-click on local user, and select Sign off.

• You can now launch the VPN and sign in with the user’s credentials

• Sign in to the VPN before attempting Microsoft 365 app sign-ins.

• Sign in to Outlook, pin it to the taskbar

• When presented with this screen, uncheck the box that “Allows this organization to manage my device” as it tends to cause authentication issues with TPM.

• Set up Teams, perform a test call to ensure the camera and mic work and that no network authentication message pops up during the user’s first meeting.

• Setup OneDrive from taskbar shortcut

• Set App defaults within Settings

• Uninstall bloatware

• Clean up the taskbar and Start menu bloat

• Remove Widgets, CoPilot, Shrink the Search menu

• Pinned apps: File Explorer, Google Chrome, Outlook, Teams

• Set system sleep times 15-30-30-1Hr.