Onboarding a new client is one of the most important moments in managed IT. It is your chance to remove hidden risks, standardize systems, and build trust. A clear onboarding checklist makes the process fast, predictable, and secure.
TL;DR
Standardize access, lock down identity and endpoints, review networks and backups, and finish with documentation and training.
Step 1: Inventory and access
Document devices, users, licenses, and critical vendors. Secure admin access to core systems like Microsoft 365, backups, firewalls, and domain registrars. If you cannot access it, you cannot secure it.
Step 2: Identity baseline
Enforce MFA for every user and move admins to phishing-resistant methods where possible. Disable legacy authentication, reset shared passwords, and create separate admin accounts.
Step 3: Endpoint health
Enroll all endpoints in your management platform, apply patching policies, enable disk encryption, and validate endpoint protection. This is where most hidden risk lives.
Step 4: Network and Wi-Fi
Audit firewall rules, remove unknown port forwards, and segment guest Wi-Fi. Update firmware and standardize VLANs so every site is consistent and supportable.
Step 5: Backup and recovery
Verify that backups are running, immutable, and tested. Set recovery time and recovery point expectations with leadership, then schedule the first restore test.
Step 6: Email and collaboration
Apply anti-phishing policies, enable safe links, and lock down external sharing. Add a one-click phishing report button for users.
Step 7: Documentation and training
Deliver a clean network diagram, an access matrix, and a short user training session. This reduces future support calls and helps the client understand the new security baseline.
A structured onboarding process lowers risk quickly and sets the tone for long-term success. If you want to standardize your onboarding, we can help build a checklist tailored to your services and client base.