How to Merge Microsoft 365 Tenants: Basic Process and Step-by-Step Process for M&A Scenarios

Whether you're navigating post-M&A IT complexities, or trying to manage digital sprawl, merging Microsoft 365 tenants is often the solution of choice to tame the chaos. There are, however, potential pitfalls that make merging Microsoft tenants more challenging than most organizations imagine, chief among them the “privilege problem”. That is, consolidation is frequently not possible because putting everyone and everything into a single tenant creates major privilege and access rights challenges. And this is the kind of migration and integration problem that leads to frustration and possibly even failure.

In fact, a Bain report states that 83% of practitioners cite poor integration as one of the primary causes of failed deals. Done right, though, tenant consolidation is not only possible, it also simplifies complexity, boosts security by reducing the potential attack surface, and makes collaboration easier. This article chronicles how to merge Microsoft 365 tenants, the reasons for a possible 365 tenant consolidation, and what steps to consider and take to combine M365 tenants, particularly after a merger or acquisition process.

Inside this article:

• Why organizations merge Microsoft 365 tenants
• General steps in merging M365 tenants
• How to merge Microsoft 365 tenants from an M&A
• Best practices for merging M365 tenants
• Simplifying the tenant merging process

Executive summary

Merging Microsoft 365 tenants after a merger or acquisition is a complex, high-stakes process that involves not only technical migration but also business, cultural, and security considerations. The biggest challenges include privilege management, security risks, and aligning IT governance. Successful tenant consolidation requires meticulous pre-migration planning, thorough auditing, strategic user provisioning, and post-migration optimization. CoreView simplifies this process with tools for visibility, virtual tenant segmentation and granular delegation, automation, and compliance. The guide outlines best practices and phased steps—pre-migration, migration, and post-migration—emphasizing that tenant merges are as much about people and processes as technology. CoreView helps mitigate risks while improving productivity and security.

What is Microsoft 365 tenant consolidation

Microsoft 365 tenant consolidation is the process by which the resources of two or more M365 environments are merged into a single, unified tenant. The idea is that the resources of individual tenants, including all users, domains, policies, licenses and configurations, can be moved successfully to a new master tenant.  

Merging M365 tenants is a complex but often necessary project involving data mapping and migration, domain management, identity management and consolidation, and data governance alignment, among other processes. Each tenant merge is unique, which is why there is no one-size-fits-all approach to tenant consolidation and migration and why careful planning is essential. CoreView’s Director of Product, Alberto Brianza, explains that a tenant merging process is “not a tech project. It’s about merging, or redefining, business processes between the new unified entity and aligning information flows and IT processes to match it. The organizational and cultural structure of the company has to be reflected by their information systems and enabling and empowering the new organization.”

Why organizations merge Microsoft 365 tenants

Organizations merge Microsoft 365 tenants for a variety of reasons, including everything from the most common use case – mergers and acquisitions – to compliance, productivity, or security demands.  

At its most basic, a key reason for, or ideal result of, merging tenants is to create an optimal user experience. Microsoft 365 & Azure Subject Matter Expert, Vasil Michev, shares, “In the context of cloud services, you want to end up in a situation where all your objects and users are in the same tenant because this allows for the best end-user experience, for example with being able to easily collaborate or share documents – all much easier within the confines of a single, unified tenant.”

Most common scenarios for combining tenants

• Merger and/or acquisition (M&A) activity when two companies combine and need to consolidate IT resources
• Divestitures when organizations need to separate tenants due to selling parts of their business or different business units  
• Operational efficiency measures when centralization efforts help to reduce IT overhead or license overprovisioning or excessive storage, and/or increase productivity and the ability to collaborate
• Business restructuring or reorganization activity when unified governance, visibility and oversight is needed
• Security or compliance requirements, such as a legal requirement to keep data in one geographic region while most other data is kept in another

Why tenant consolidation is hard: The tug-of-war between productivity and security

Even if the M365 tenant consolidation process appears to be purely a technical migration, there are always human-centered concerns at play, motivating how M365 tenants are merged. Merging tenants involves not only joining companies’ IT infrastructure and operations but also joining different companies’ cultures together, which inevitably involves people, processes, and politics as well as strategic business decisions that influence the consolidation process, especially in M&A situations.

“Administrative control over a tenant, and all of the related behind-the-scenes mechanisms, is typically quite political and sensitive,” explains CoreView’s Senior Director, Solution Architecture, Simon Hughes. “Certain people in organizations have high levels of privilege within their tenants, and other people rely on those people to do their jobs easily. In any consolidation process, there is the perceived or real risk that the power to manage this change is not reconstituted back into the consolidated tenant correctly. This is a source of political tension. Part of making the case for merging M365 tenants is establishing the right balance of power and ensuring that you have the tooling in place to grant exactly the right level of privilege in the newly combined environment – whatever the reasons for the merger of M365 tenants.”

Consultancy Gartner has added flavor to this tension. Despite the idea that a single tenant offers the optimal experience and a single point of administration, in practice, organizations find that single tenants do not meet the complex requirements for data and user separation, service isolation, and data residency. These sentiments are echoed in an upcoming CoreView survey of 250 IT leaders, in which they cite the pains of multi-tenant management and the inherent challenges of tenant consolidation. Complexity runs through both, with IT leaders citing everything from high operational overhead (55%), excessive licensing costs (47%), and inconsistent configuration (46%) as challenges of multi-tenant management and, on the flip side, unwillingness to consolidate tenants stemming from each tenant having its own operating model (47%) and worries that consolidation will undermine least privilege (35%).

As such, making a tenant consolidation project work demands some way to both consolidate and simplify at the same time as being able to segment and isolate users, group, and devices in ways that enable granular permissions while retaining some of the underlying complexity that multiple tenants afforded.  

A big part of a successful tenant consolidation initiative is understanding these complex cultural, political, and productivity issues, and locating the technical solutions and workarounds that can reduce the cultural resistance to M&A processes. As Simon explains, businesses need to make a lot of decisions when consolidating tenants, and this can be tricky. “An organization needs to compare and contrast tenants, and there isn’t adequate native tooling to do this. Determining which of multiple existing tenants is ‘best’, which should be the primary tenant to move everything into, whether a company should start over from scratch with a greenfield tenant project, and then what objects actually need to exist in the new unified tenant are all questions that need to be answered.”    

But these organizational and technical decisions are just one challenge. Another, and possibly most significant, challenge is, as Simon describes it, “the power problem”: who has administrative control over a tenant, who believes they need access, and so on? In many cases, organizations have struggled to consolidate tenants for these kinds of reasons. Because they have not historically been able to segment privilege and permissions at a more granular level, companies have had all-or-nothing-style dilemmas. That is, choose between security or productivity; choose restricting access and permissions to the point that productivity suffers and people are unhappy, or open the floodgates and overdeliver access to everything, which might help productivity but exposes the tenant and all its data (and the organization as a whole) to much wider and broader risk.

General steps in merging M365 tenants

Every tenant consolidation endeavor is as unique as the resources that live within each tenant, and as such, no blanket blueprint exists for merging M365 tenants. At a high level the process is roughly the same across use cases, with particular aspects being critical across the board. Robust and comprehensive upfront business planning, according to CoreView’s Chief Technology Officer, Ivan Fioravanti, can make or break a tenant merger initiative.

“Visibility is key,” Ivan explains. “Not only do you need a full and precise picture of the technical aspects your tenant merger needs to achieve, you also need to understand the cultural and structural underpinnings of your organization as it relates to business continuity, productivity, and making sure that everyone is able to do their jobs once your merger happens. Fundamentally tenant consolidation comes down to people. When people are unhappy because things don’t work, the organization struggles. But if you can act pre-emptively, plan effectively, and extend the specific rights and correct privilege level needed to everyone to do their jobs, your tenant merger effort will have a positive outcome.”  

With this in mind, a basic, high-level process for merging tenants, regardless of use case, can be broken into three phases: Pre-migration, which is arguably the most critical, migration, and post-migration.  

Pre-migration

Pre-migration assessment and planning is essential to any successful M365 tenant merger.  

Perform pre-migration assessment and business planning

• Discover and assess: Conduct a thorough audit and inventory of users, licenses, groups, SharePoint, Teams, OneDrive, email, security policies, compliance settings and any other resources in the source tenant
• Consider complex settings: Identify custom configurations, domain settings, and third-party integrations
• Perform cleanup: Identify data for cleanup or archiving  
• Make decisions on migration scope and approach: Analyze the number of users, mailboxes, and data volume to determine the right migration approach, which will inform the timeline, selection of migration tools, and the communication plan for notifying users about the planned migration, potential outages, and support functions
• Take account of compliance and security considerations
• Assess cultural and organizational needs carefully: Define objectives, risks, milestones, and success metrics within a cross-functional team with representatives from impacted departments across the organization. CoreView’s CTO Ivan continues, “If you do not have a clear picture or understand your target from the beginning, success is difficult to track.” Similarly, taking into account the “power problem” highlighted earlier, map out very clearly who needs access to what and what levels of privilege should be granted. According to CoreView’s Senior Director of Product Marketing, Rob Edmondson, “The privilege problem and virtual tenant segmentation is one of the main challenges businesses face in a consolidation process.”  

Set up target tenant

• Create the target Microsoft 365 tenant (if it does not exist)
• Configure settings, security, and domains in the target tenant
• Manage identity migration and user provisioning

Prepare the source and target

• Ensure correct permissions, access and privileges in both the source and target tenants

Configure your domain

• Confirm domain settings and update DNS settings, if needed

Migration

Execute technical migration

• Use the steps you have pre-determined to complete your physical migration process, as defined by your selected migration approach. A more detailed overview of the steps involved in migration is available in this step-by-step guide to Microsoft 365 tenant migration.  

Post-migration

Complete testing & validation

• Perform post-migration testing to verify that all systems and applications work as expected, and that identity, data integrity, and access control functions are also working normally.

Clean up and organize in post-migration

• Remove or clean up redundant policies, users, and groups once you take your old tenant out of commission.  

Develop documentation, governance and support functions

• Develop ongoing processes and functions as a final but continuous step in managing your new tenant, such as finalizing policies, admin roles, and compliance records and document your processes while providing ongoing support for users and monitoring the system for any anomalies or problems.

How to merge Microsoft 365 tenants after a merger or acquisition

Mergers and acquisitions (M&A) pose challenges for companies no matter their size. Microsoft 365 is the digital backbone of more than three million companies worldwide, making the scope and scale of merging M365 tenants significant and daunting. The same complexities that exist in single-tenant M365 management continue to exist but multiply in a multi-tenant environment.  

Cutting these complexities down to size by gaining visibility into processes and resources in all the affected tenants and performing a comprehensive pre-migration assessment will go a long way toward making a post-merger unified tenant run smoothly. If not scoped and managed properly, the companies involved are exposed to real risks to business productivity, security, and compliance. And once again, the people angle is front and center. In an M&A situation, there will undoubtedly be IT admins, for example, who want to retain the privilege level they have always had, but, as Director of Product, Alberto reasons, “when you have two or more companies, one is going to be able to do more than someone else. Someone will lose the level of access and responsibility they once had.”  

Alberto continues by highlighting some of the primary challenges faced in M&A processes, stating, “Delegation becomes even more challenging due to the lack of native Microsoft tools. As companies attempt to merge their processes, they encounter insurmountable technical constraints and they are pushed into a security versus productivity tradeoff, which most of the time ends up with the centralized IT functions of both companies becoming overwhelmed, doubling the burden.”

What steps constitute a recipe for success in combining M365 tenants after a merger or acquisition?

Assess the Microsoft 365 environment

Aside from aligning strategy cross-functionally, involving not only IT, but also legal, compliance, HR, finance, and executive teams from both companies, it is important to assess both companies’ Microsoft environments carefully. It is unlikely that the IT teams in each company know what the other company has going on “under the hood”, that is, how is the other company’s M365 set up and managed, if at all? A technical audit and analysis can reveal how M365 is being used, the number of users and licenses, and what applications and services make up the environment. This early planning phase is also critical for identifying cultural and political conflicts that can arise within these ostensibly technical processes.

Assess target company with read-only admin

• Use a read-only admin for assessment of the target company before purchase.

Conduct security assessment

• Audit the state of security at the target company, including the Microsoft 365 Secure Score, Failed Logins, state of multifactor authentication (MFA), Conditional Access, and DLP

Outline workload adoption

• Find out and map the usage level of key applications, such as Exchange, OneDrive, Teams, SharePoint, and so on.

Inventory licenses

• Inventory licenses and their distribution as well as processes for purchasing new licenses. Analyzing licensing helps identify savings and can unearth cases where target-company licenses match the needs of the buyer.  

Map out protocols

• Map out the protocols for client access to the platform, specifically for Exchange, that is, which protocol (MAPI, POP3, IMAP) is used to access mail.

Catalog devices

• Document what devices and operating systems users have and register whether they are updated and patched.

Consider full M365 operations

• Pay attention to the migration of the full operation of M365, not just M365 itself. This means planning for longer-term, post-migration governance and its future requirements. Assess how the target company manages this environment, including existing tenant segmentation (either done by Admin Units or other tools), role-based-access (RBAC) policy templates, and any Microsoft 365 or Azure-specific security policies.

Secure Microsoft 365 before full tenant integration  

• Evaluate carefully the security posture of the target company and address any shortcomings before the IT integration takes place, and ideally, do this before making the purchase. Merger scenarios tend to exacerbate security risk, meaning that acquiring companies should be vigilant about security before integration.  

Perform a full M365 health check  

• Undertake a comprehensive Microsoft 365 health check to identify and isolate security and other issues beyond security the acquiring company might inherit.  

Onboard and provision M365 workloads

• Pay careful attention to onboarding and provisioning. Onboarding IT workloads is a necessary aspect of an M&A integration process, but without proper provisioning ability, admins in the target company can be granted far too much power and more access than is safe or needed. Limiting these rights through role-based access control (RBAC) and building in workflow automation can make for a more secure environment that still allows for specific and granular granting of permissions and rights for admins without giving them too much access.  

Maintain and optimize your tenant  

• Set up a clear plan for maintaining and optimizing your tenant, access to it and its resources. This includes secure delegation, which means delegating admin responsibilities through segmentation and enabling access by role for fewer global admins and better security; ongoing license optimization, which means automating oversight of M365 licenses to locate inactive, oversized or duplicate license to reduce waste and lower costs; and offboarding by workflow, which means safely and securely automating offboarding and de-provisioning resources from inactive users and making the user lifecycle more efficient. This is particularly important in M&A scenarios, where layoffs and significant reorganizations are common.

Best practices for merging M365 tenants

Plan, plan, and when you think you’re done, analyze and plan more. The consensus among experts is that conducting a successful and safe tenant consolidation project relies on getting pre-migration planning right and taking ample time to do the groundwork properly. The best of all best practices is to invest the most time and effort into the pre-migration phase to ensure that critical information and cross-functional perspectives are captured before taking any action.  

Senior Director, Solution Architecture, Simon adds, “It’s an oversimplification to say that the physical migration is just a click of a button, but it really is the easier part of the tenant consolidation. It’s the planning, analysis and getting to what you don’t know but need to know that is the hardest. Before ever starting to consolidate or migrate data, just be able to look at how tenant A differs from tenant B, and what does the work look like, and what steps are required, to make the target tenant ready for the consolidation?”  

Some of these best-practice steps include:

Inventory your data during pre-migration planning

• Don’t mistake the number of items for storage size needed. it's more important to understand the total number of individual items in the SharePoint object model than the total GB size of your storage.  

Don’t forget identity data during pre-migration inventory

• Account for all identity powers, including mailboxes and files but also access to Line of Business (LOB) processes, automation, and third-party integrations to prevent breakdowns of service and lack of access to critical systems

Look at more than one tenant migration tool

• Find a migration tool that fits most of your needs, as it is unlikely that a single migration tool will do everything you need as a part of your migration.  

Build in a buffer to account for overlooked inventory

• Ensure that your migration timeline includes extra time to build in forgotten inventory so you don’t fall victim to deadline creep. The purpose of the pre-migration inventory is to ensure that you do not move things you don’t need or can’t use, but it is almost inevitable that some of these items will still need to be migrated and demand some revision to fit into the new system.

Make sure your migration approach matches your needs and resources  

• Determine what migration approach is best based on your needs, choosing from one of four options - - a single-event migration, the staged, gradual migration, a phased batch-approach or a rapid-switch approach for partial pre-staging and migration.  

Pre-clean your data

• Create a good data and file structure before migration to prevent clutter and ensure a smother migration process.  

Migrate identity data first  

• Prevent potential access issues by prioritizing migration of identity data in order that every piece of content, document, SharePoint site, mailbox, and team has an owner.

Pre-instantiate users to avoid business disruptions

• Switch users over to the new tenant at a predefined time by pre-instantiating users in the target tenant. This is especially important and useful when moving user identities but be sure not to switch over everything before all the other workloads have been migrated.  

Understand compliance-related issues with cross-tenant migration

• Take a serious approach to compliance risk. No IT person is expected to know or understand the legal ramifications of different regulations, so it is important here to ensure that legal and compliance teams have been involved. Violating compliance requirements and/or losing access to protected data are good reasons to make compliance a migration priority.

How CoreView helps with the tenant merging process

Director of Product Alberto notes that many large organizations approach CoreView specifically because of the significant challenges they face in managing complex tenant environments. Their primary concern is the overwhelming intricacy of these systems coupled with frustration stemming from the lack of effective Microsoft tools to manage the resulting chaos. Alberto explains, “Integrating diverse stakeholders and operational methods within a single organization is already difficult, but these challenges intensify during a tenant merger, escalating the chaos to an entirely new level.”

This is exactly the kind of chaos that CoreView was built to handle.  

“Tenant consolidation often feels impossible because creating one giant tenant makes governance, delegation and automation seem impractical at scale,” explains Senior Director of Product Marketing Rob. “CoreView was designed specifically for these challenges, providing visibility and consistency, the ability to create virtual tenants and segment and delegate ‘just enough’ access, and automate tasks while striking the critical balance between security and productivity.”

CoreView simplifies and de-risks tenant consolidations by:

• Offering detailed tenant insights for discovery and assessment
• Providing granular delegation and RBAC during transition
• Automating policy enforcement post-migration
• Supporting hybrid environments and domain coexistence

With CoreView, organizations can:

• Reduce migration time by up to 40%
• Improve IT team productivity with automated workflows
• Ensure compliance through granular auditing and governance tools

With CoreView, you can operate securely and productively whether you are merging multiple Microsoft tenants into a single tenant or managing a multi-tenant environment. It’s possible to overcome the IT security-versus-productivity tradeoff and enable tenant consolidation marked by risk reduction with secure, least privilege delegation and task automation to match your unique complex tenant needs.  

Find out how Marcegaglia saved three days in their M&A-triggered migration process and gained efficiencies in their Microsoft 365 tenant management.  

Request a demo to see how CoreView can streamline your Microsoft 365 tenant consolidation.