Set up Microsoft 365 Business by using the setup wizard
Complete steps 1-4 below.
Set up Microsoft 365 Business
Watch a video on how to set up Microsoft 365 Business:
Step 1: Personalize sign-in
Sign in to Microsoft 365 Business by using your global admin credentials. Choose the Admin tile to go to the admin center.
Choose Start setup (depending on your state you may see Continue setup instead) in the admin center to start the wizard.
Enter the domain name you want to use (like contoso.com).
Note: Go ahead and enter your domain even if you have verified it while using Azure AD Connect, for example.
Follow the steps in the wizard to add a TXT or MX record that verifies you own the domain.
You can view an example video of how to add a domain and users. Note that this video does not include the data protection steps of Microsoft 365 Business.
Step 2: Add users and assign licenses
You can add users here, or you can add users later in the admin center.
Any users you add get automatically assigned a Microsoft 365 Business license.
If your Microsoft 365 Business subscription has existing users (for example, if you used Azure AD Connect) , you will get an option to assign licenses to them now. Go ahead and add licenses to them as well.
You will also get an option to share credentials with the new users you added. You can choose to print them out, email them, or download them.
Skip migrating email messages and choose Next on Migrate email messages page.
If you are moving from another email provider and want to copy your data later, you can follow these steps to copy your email and other data.
Step 3: Connect your domain
Note: If you chose to use the .onmicrosoft domain, you will not see this step.
To set up services, you have to update some records at your DNS host or domain registrar.
The setup wizard typically detects your registrar and gives you a link to step-by-step instructions for updating your NS records at the registrar website. If it doesn't, follow these general steps for changing NS records.
Email and other services will be set up for you
Step 4: Manage devices and work files
1. On the Protect work files on your mobile devices page set both Protect work files when devices are lost or stolen and Manage how users access Office files on mobile devices settings to On. You can also access each sub-setting by clicking the chevrons next to each setting.
All of your licensed users' work files are now protected on iOS and Android devices, as soon as they install Office apps (and authenticate with their Microsoft 365 Business credentials).
2. On the Set Windows 10 device configuration page, set Secure Windows 10 Devices setting to On.
You can also access each sub-setting by clicking the chevron next to it.
3. Set the Install Office on Windows 10 Devices setting to Yes if all of your users have Windows 10 computers, and either no existing Office installs, or click-to-run Office installs. If this is not the case, set this option to No. You can automatically install Office later from the admin center after you have prepared the user computers. For instructions, see prepare for Office client installation.
The licensed users' work files on Windows 10 devices will be projected as soon as they join their Windows 10 device to a Microsoft 365 Business Azure AD domain or install Windows 10 on a new computer while simultaneously joining the Microsoft 365 Business Azure AD domain.
4. Click Next and you are done with setup.
Please leave us feedback at this step to help us improve the experience.
Additional security settings
In addition to the security and compliance setting in the setup wizard, you can also set up the following additional settings:
Set up protection against unsafe attachments. Advanced Threat Protection (ATP) identifies malicious content and then blocks delivery of unsafe attachments, helping protect you against phishing schemes and ransomware infections. To activate attachment protection, see Set up an ATP Safe Attachments policy.
Protect your environment when users click malicious links. ATP examines links in email at the time a user clicks them. If a link is unsafe, the user is warned not to visit the site or informed that the site has been blocked. This helps protect against phishing schemes. You can define an ATP Safe Links policy that applies to everyone or add a policy for specific email recipients.
You can preserve all mailbox content including deleted items by putting a user’s entire mailbox on litigation hold. For instructions, see turn on litigation hold.
Set up customized retention policies, for example, to preserve for a specific amount of time or delete content permanently at the end of the retention period. You can enable customized retention policies in the Securities and compliance center, go to Data governance > Retention, and then follow the steps in the wizard. To learn more, see Overview of retention policies.
For the users that have their licenses, the next step is to set up devices. See Set up Windows devices for Microsoft 365 Business users and Set up mobile devices for Microsoft 365 Business users. See Manage Microsoft 365 Business for links to topics on how to set device and app protection polices, and how to remove data from user devices.