1. Login to “NALUS1 - DC, DFA, ADFS, Printer Server” through Screenconnect/NCentral
2. Open Active Directory while on the DC, you will be creating your new user based on their employment status provided on the New User Spec Form. Interns are traditionally in the EMPLOYEES OU, unless specified.
3. Basic OU Path:
4. Standard Employees: NALU.local > PEOPLE > EMPLOYEES
5. Consultants: NALU.local > PEOPLE > CONSULTANTS
6. Right click the requested OU, hover New, and select User.
8. Fill out the provided fields with the user’s information provided on the New User Ticket/Form. Usernames for NALU follow the [First Initial][Last Name] format. Adjust the domain to @nalumed.com. Hit next once complete.
10. Create the user’s password based on the following format: 
11. [NALU][Year][User First/Last Initials Lowercase][!]
12. Ex: NALU2022tc!
13. De-select additional options, hit Next once complete. Then Finish.
15. Locate your newly created user then right click and select “properties”. 
16. Start With the user’s General Tab. Fill in the provided information for Description, Phone number, and email if provided on the New User Spec Form.  If information was not provided on the New User Ticket/Form, leave blank.
17. Email should reflect the user’s username, then followed by @nalumed.com
18. Description will be the user’s job title – location (location is only if user is remote)
19. The following example is if the user was located in Texas.
20. Hit Apply once complete.
22. Select the Organization Tab and fill out each of the categories per the New User Spec Ticket/Form. Hit Apply once complete.
24. Go to Member Of Tab, add all requested security groups per the New User Spec Form, hit apply once filled out. 
25. Most users will be requested to be added into the OOO Calendar, 5 Conference Rooms, and All Staff, these are their associated Security Group names:
26. OOO Calendar – FS_OOO_Calendar_RW
27. 5 Conference Rooms – SG_ConfRoom_RW
28. All Staff – All Staff (All new users need this added)
30. Go to Profile Tab, Set Home Folder to Connect: H: To \\nalus1\users\%username%. Example in photo. Hit Apply once complete.
32. Go to “Attribute Editor” tab. Locate “mailNickname” and open it. Update the value to the New User’s username. Hit OK then Apply. Then OK again to close out of Active Directory.
34. Open up Powershell as Admin, run AD Sync Command.
35. Start-ADSyncSyncCycle -PolicyType Delta
36. If erroring out, wait the 30 minute sync time for 365 .
37. Go to portal.office.com and log in as the M365 Admin: ctac@nalumed.com
38. Open the Admin Portal on the left-hand side of the page. Then go to Users>Active Users and search for your newly created account.
39. Open their profile and assign a Business Standard license unless specified differently. If one is not available, reach out to Dylan Quiros. If DQ is not available, please reach out to a lead.
42. Once added/applied, hit save changes. Ensure all requested Groups and mailboxes are added within 365, based on the New User Spec Form / Ticket.
43. Next, go to https://cloudsyncit.com/auth/login/ in a new internet browser. Then log in with your personal work credentials.
44. Can also refer to KB00003114 - Nalu - WI - Importing an AD Users into CloudySync and Install
45. Select “All Organizations” on the left-hand side of the page.
47. Select the NALU Medical dropdown.
49. Go to the Settings Tab from the NALU Medical dashboard.
51. Select Auth**.**
53. Under NALU.local select “Import Users”.
55. Scroll down and expand the AD fields to locate the OU you originally created your New User in.
56. Most will follow the Active Directory > PEOPLE > EMPLOYEES (Or CONSULTANTS)
58. Locate your New User and check by their name. Then select Import Selected Users.
60. Allow the Import Results page to finish processing. Once it states successful, hit Ok.
62. This step may not update from AD/365 immediately, so you may have to return to this step prior to closing out the ticket.
63. From an internet browser, go to https://us2.proofpointessentials.com/app/login.php and log in with your personal Microsoft work account.
64. Once logged on, select Customer Management > Customers on the left-hand side. Then select Nalu Medical.
66. From the Nalu Medical dashboard, select User Management > Users**.** From here, search for your new user. If populated, all is good, if not, allow some time for Proofpoint to sync
67. If it does not automatically populate within the next hour. You will have to select the ADD A USER option on the screen, then fill out the information based on the User Spec Form/Ticket.
69. Note: Next Screenshot only applies if user does not populate. Fill out provided fields then hit Save once complete.
71. Open an incognito tab on your computer and go to portal.office.com
72. Log in as the new user, then test mailflow by sending an email to yourself, and replying to the email. Ensure you delete the emails from the user’s account once tested.
73. Send Creds to the POC via an encrypted email, confirm POC has received the credentials through the ticket. 
74. Most new user’s will need to be “set up” remotely (This is not a provision, just ensuring their desktop profile is set up). Work with the POC to get the New User’s device connected through a ScreenConnect session, you may have to schedule yourself a time slot later to work on this device.
75. Once you have connected to the new device. Ensure the following has been completed
76. Login as User
77. Verify the localuser has been added onto the device
78. Verify NCentral connection
79. Run Windows Updates
80. Run Lenovo Vantage Updates
81. Login to Microsoft Office (64 bit)
82. Login to Microsoft Teams
83. Set-up Outlook Profile
84. Verify user has the Anyconnect VPN pinned to taskbar, with the NALU VPN URL saved for future connection. anyconnect.nalumed.com
85. Log onto CloudSync with the New User’s credentials, download app if not updated on computer
86. Set default printer based on New User Spec Form / Ticket
87. Set default apps, Mail – Outlook, Internet Browser – Chrome, PDF – Adobe Reader
88. Ensure Slack and Zoom are installed
89. If the user is requested to not have a Business Premium License and needs to have MFA enabled please follow these steps:
90. Log on to 365 admin and select Azure
91. Select Enterprise Applications
92. Conditional access
93. Select Nalu - MFA Policy
94. Select Specific users
95. One group
96. Add the user here

Referenced KB00002170 for computer setup.

Close ticket once confirmed with End User.