A young person with curly brown hair looking at a laptop A young person with curly brown hair looking at a laptop

Cerium Networks enhances security with Microsoft Exchange and MFA

Microsoft partner Cerium Networks delivered a thorough implementation and migration for Heritage University to help them increase their agility in a rapidly changing tech landscape.

March 7, 2025

For over 25 years, Cerium Networks has been a trusted managed services provider for organizations across industries, from education and finance to healthcare and government. As a Solutions Partner for Modern Work, Cerium offers a range of products and services—including consulting, implementation, adoption, and more—to help customers realize the full potential of the Microsoft Cloud.

“We take a consultative, value-driven approach, tailoring solutions to address specific challenges and deliver meaningful results,” said Kyle Brown, Microsoft Solutions Architect at Cerium. “By aligning our services with your strategic goals, we ensure that every deployment maximizes impact and drives business success.”

Beyond their products and services, Cerium prioritizes fostering long-term partnerships and crafting thoughtful strategies to set their customers up for success in today’s rapidly changing digital world. This level of care and their thorough approach made all the difference for one customer in particular: Heritage University.

Adapting to a digital-first education experience

Rooted in the homeland of the Yakama Nation, Washington state’s Heritage University operates from a 23-acre main campus in the town of Toppenish and branch locations in Kennewick and Pasco. Their diverse population includes nearly 200 faculty and staff serving over 900 students.

Given the rise of digital learning and remote collaboration, the university decided it was time to scale and enhance communication by migrating to Microsoft Exchange and to strengthen their security posture by implementing Microsoft Entra multifactor authentication (MFA) across their network.

With over 5,000 on-premises Microsoft Exchange 2013 email mailboxes and a host of legacy public folders, Heritage University reached out to Cerium, their long-time technology partner, to help plan and execute the Exchange migration and MFA implementation.

Three friends laughing together at a café one with a phone

“Migrating to Exchange Online was a strategic move towards efficiency, security, and scalability, ensuring we stay agile in a rapidly evolving digital landscape.”

—Aaron Krantz, Director of Information Technology, Heritage University

A two-part approach

Cerium Networks worked with the university’s IT team to identify stakeholders, understand the current environment, assess potential challenges, and ensure alignment with organizational priorities. The team opted for a two-phased approach, with special considerations for maintaining data integrity during the migration process to help prevent loss, corruption, and unauthorized access to critical email, calendar, and contact data.

Cerium also provided detailed project timelines for both phases, complete with milestones, deadlines, and downtime windows coordinated with other ongoing projects to minimize user disruptions.

Phase 1: Migrating to Exchange Online

Cerium began Phase 1 by thoroughly assessing the university's existing infrastructure, email system, and security protocols. They introduced Exchange Server 2019 to create an isolated environment in which to test configurations, validate settings, and troubleshoot without affecting the existing production environment. The new server acted as a bridge between Exchange 2013—the on-premises environment—and Exchange Online, ensuring a smooth transition without disrupting user access.

The mailbox migration began with a 50-user pilot to test the new system's performance, functionality, and security. Cerium then collected feedback from the participants and evaluated the results of the pilot deployment so they could fine-tune processes and configurations before proceeding with the full-scale launch.

After thorough testing and approval, the remaining mailboxes were migrated in batches to streamline the process. Then, the university’s legacy public folders were migrated to modern public folders. Once all mailboxes, services, and data were successfully migrated to Exchange Online, the legacy on-premises Exchange 2013 server was decommissioned.

Phase 2: Implementing Microsoft Entra MFA

Phase 2 began with a deep dive into the university’s MFA goals and expected impact. Cerium conducted an MFA-readiness assessment to identify gaps and potential risks to the deployment. Because their faculty, staff, and students are the first line of defense against cyberthreats, Heritage University knew it was critical to be proactive and transparent about the planned changes and MFA’s potential impacts on the user experience.

That’s why they developed an adoption plan with communication and resources to prepare people for the change and help them understand the benefits of MFA. Promoting the change made it clear what they needed to do and, more importantly, why they needed to do it.

“Having a well-defined adoption plan is essential for the successful deployment of multifactor authentication. It ensures that end users are informed, supported, and comprehend the benefits of the new security measures. This leads to a smoother transition, higher acceptance rates, and fosters engagement, thereby minimizing resistance,” said Brown.

The pilot deployment of Microsoft Entra MFA included people from across the university who required different security access levels, so the team could test different MFA scenarios to optimize the deployment process. Once the pilot phase ended, MFA was rolled out to the remaining users in batches to reduce the risk of system disruptions or technical issues.

With a batch deployment, Heritage University could adjust the pace of implementation based on their capacity and priorities. The deployment included implementing Azure Active Directory licenses, applying and testing Conditional Access policies, and configuring MFA access methods for the Microsoft Authenticator App, SMS, and phone calls.

Heritage University monitored the rollout to measure its impact on security and productivity and ensure that the conditional access policies they had defined were working. They tracked security metrics for failed login attempts, blocked credential phishing, and denied privilege escalations. They also gathered feedback and examined help desk tickets to determine whether people were having difficulties with the MFA enrollment processor or taking longer to log in to access critical resources.

“With support from Cerium's engineers, who have significant knowledge of Microsoft best practices, Cerium provided insights into using reporting and monitoring tools within Microsoft 365,” Brown said. “This support allowed Heritage University to effectively track security metrics and ensure their policies were functioning as intended.”

Person with glasses working with papers and a laptop on a desk Person with glasses working with papers and a laptop on a desk

“Our long-standing partnership has allowed us to stay at the forefront of innovation, providing our clients with the latest advancements in Microsoft technologies.”

—Kyle Brown, Microsoft Solutions Architect, Cerium Networks

Strengthening security and collaboration—while reducing costs

Migrating to Microsoft Exchange Online and implementing MFA ultimately enhanced Heritage University's productivity and security posture:

  • Exchange Online provided the university with robust security features and advanced collaboration experiences.
  • MFA provided an additional layer of authentication beyond passwords to significantly reduce the risk of email accounts and sensitive data being compromised.
  • The cloud-based Exchange system eliminated the need for on-premises hardware, reducing maintenance and upgrade costs and offering faculty, staff, and students seamless access to their email, contacts, and calendars across devices.

Together, Exchange Online and MFA enhanced security and reliability—in addition to streamlining email management, fostering collaboration, and enabling flexible, mobile work environments.

“Migrating to Exchange Online was a strategic move towards efficiency, security, and scalability, ensuring we stay agile in a rapidly evolving digital landscape,” said Aaron Krantz, Director of Information Technology at Heritage University. “Our decision to adopt MFA was grounded in risk mitigation and regulatory compliance. Microsoft's MFA solution provides a simple, cost-effective approach to enhancing our security posture.”

By transitioning to a cloud-based email system and implementing MFA, Heritage University proactively tackled their communication and security hurdles. This strategic move not only positioned them to adapt to evolving cybersecurity threats, but it also equipped them with a robust and scalable IT infrastructure.

“With over twenty years of partnering with Microsoft, Cerium has cultivated deep expertise, extensive experience, and a proven track record of delivering cutting-edge solutions,” Brown said. “Our long-standing partnership has allowed us to stay at the forefront of innovation, providing our clients with the latest advancements in Microsoft technologies.”

Learn more

Explore Cerium Networks’ capabilities and services.

Meet Cerium Networks

Learn more about how Cerium can help you make the most of the Microsoft Cloud.

Explore more Partner Success stories

Discover how organizations like yours are using Microsoft technology to help customers solve challenges, drive results, and scale their businesses.

Browse all stories

This document is for informational purposes only. MICROSOFT MAKES NO WARRANTIES, EXPRESS OR IMPLIED, IN THIS SUMMARY.