I came to this page trying to understand the architecture of Azure ("commercial" and "government") and its impact on our planned implementations of MS Teams/InTune as well as on compliance to CJIS for our Office 365 and for our new backup solution (which the vendors are telling us could use either Azure commercial or government). RichardWakeman please correct me if i am wrong in my reading of this article. As an SLTT:
- our Azure AD is in the Azure Commercial (it is) as it should have been
- building out virtual servers for InTune in Azure Government is wrong since it cannot use our existing Azure AD
- establishing an organizational root CA should be done now for both MS Teams (and either now or future AIP deployment) and for the new backup solution, and that root CA would dictate the use of Azure commercial for both MS Teams and the new backup solution
- We've confirmed that control of our encryption key within the organization is sufficient for CJIS. #3 does not break such compliance.
- Is additionally establishing an organizational root CA now necessary for ensuring police emails and devices managed by InTune are protected up to CJIS standards, or do the police need to move to one of the Azure government series? ANd, if the latter, what all needs to be in there?
- What else is needed to of the current Office 365 (in commercial) in order to meet CJIS requirements?
Please feel free to reply and post here as well as directly to me. Thank you.
Microsoft
