ACM SIGUCCS 2025 Conference

This presentation aims to demonstrate that migrating from on-premise Windows device management to cloud-based management is possible and outlines the steps Universities should take to accomplish that.
Any organization that has windows devices in their fleet likely uses some sort of domain
binding to join their devices to a Microsoft Active Directory domain. The most basic level is Active Directory join where a device talks to an on-premise domain controller to receive authentication information, group policies, and resources. A more common way is hybrid join. This is for organizations utilizing Microsoft Entra ID, formerly known as Azure Active
directory. This type of domain join sends information from on-premise servers up to the
Microsoft cloud. It enables endpoint devices to authenticate with Azure and allows users to use things like Microsoft Teams, OneDrive, and Office 365. However, Windows authentication is still handled primarily by an on-premise domain controller. This mode,
despite its name, has become outdated with the rise of hybrid work scenarios. Users working off campus are required to use a VPN in order to access on-premise resources. While the effects of this are not immediate, it does present challenges for users that change their password remotely or rarely, if ever, visit campus especially to log on to their device for the first time. Enter Entra-Join. This mode joins the device solely to Microsoft Entra ID and requires no connection to on-premise domain controllers. Only an internet connection is required to perform Windows authentication, not a VPN. This empowers
users to change their password off campus without worrying about syncing issues. It also empowers IT staff to ship devices to users where they can perform their first login from home.
The road to Entra-join is not without its challenges, however. There are many primary and secondary systems that rely on on-premise resources and must be transitioned to the cloud or restructured entirely. Examples include: automatic certificate-based WiFi connections, application deployment, group policies, provisioning and more. Each hurdle requires a unique solution and big picture planning.
In our presentation, we will discuss the reasons why organizations should switch to Entra- join, the barriers to doing so, and how to overcome them.

The ultralight backpacking community builds their practices on the idea that, when you venture into the wilderness, you “don’t pack your fears.” This concept keeps backpackers from being weighed down by unnecessary items that, at best, hinder their progress, and, at worst, put them in danger.
In college and university IT support, there are many fears that weigh down effective solutions and interfere with collaboration. Whether it’s a fear of escalating problems, customer dissatisfaction, new and threatening technologies, or internal conflict, those anxieties lead to a “backpack” full of extraneous tools, procedures, and preparation. These result in overinflated, inefficient solutions that rely on protection, rather than aspiration.
In this interactive presentation, we will explore how both IT-specific and universal fears manifest in our work environments, and how we can move forward with intentional solutions. Participants will be encouraged to share real fears accompanying challenges in their workplace, allowing the group to collaborate on identifying what are essential and what are extraneous tools to address them. Participants will leave with ideas of how to incorporate fear-free approaches that lead to specific solutions at their own organizations.

Our panel discussion will be on moving from on premise network share drives to Microsoft 365 SharePoint. The panel will include viewpoints from 3 different institutions at different stages in the migration process, as well as the benefits experienced by end users.