Dynamics 365 · Success by Design
Idealized D365 Implementation — Project Gantt Chart
A general, end-to-end view of a Dynamics 365 implementation mapped to Microsoft's
Success by Design framework and its five methodology-agnostic phases:
Discover, Initiate, Implement, Prepare, and Operate. Timeline shown is an idealized
~9-month (36-week) mid-enterprise project; durations will compress or expand with scope.
Source: Dynamics 365 guidance documentation — Microsoft Learn
· Built around the Success by Design phases, workstreams, and mandatory reviews described in the implementation guide.
👆 Click any workstream name in the left column to expand details — what happens, key stakeholders, and best practices.
Phase / Workstream
Month 1Wk 1–4
Month 2Wk 5–8
Month 3Wk 9–12
Month 4Wk 13–16
Month 5Wk 17–20
Month 6Wk 21–24
Month 7Wk 25–28
Month 8Wk 29–32
Month 9Wk 33–36
1 · Discover
Weeks 1–6 · Validate requirements & shape the high-level solution
What happens
Stand up the project team, confirm executive sponsorship, define roles and responsibilities (RACI), and establish the organizational structure that will own the solution. The team aligns on vision, scope, and ways of working before detailed work begins.
Key stakeholders
Executive sponsorProgram / Project managerBusiness ownersImplementation partner leadOrg-change / HR lead
Best practices
- Secure visible, active executive sponsorship early.
- Define a clear RACI and decision rights up front.
- Align partner and customer teams as one team.
- Agree escalation and communication paths before build.
What happens
Articulate why you're implementing D365 and the value or digital transformation it should deliver. Choose the deployment approach (phased vs. big-bang, single vs. multi-app) and set guiding principles such as "keep it standard" and cloud-first agility.
Key stakeholders
Executive sponsorSteering committeeEnterprise / Solution architectBusiness process owners
Best practices
- Tie the strategy to measurable business outcomes.
- Favor out-of-the-box capability; minimize customization.
- Claim value early rather than running a long waterfall.
- Stay aligned to the Microsoft product roadmap.
What happens
Elicit, document, and validate functional and non-functional requirements through workshops, then prioritize them (e.g., MoSCoW) and trace them back to the business processes they support.
Key stakeholders
Business analystsProcess owners / SMEsEnd-user repsSolution architectProduct owner
Best practices
- Anchor requirements to end-to-end business processes.
- Prioritize ruthlessly — not everything is "must have."
- Capture non-functional needs (volume, performance, compliance).
- Maintain a single, traceable backlog.
What happens
Document current-state ("as-is") processes and design future-state ("to-be") processes aligned to standard D365 capabilities, using Microsoft's end-to-end business process catalog as the reference model.
Key stakeholders
Process ownersSMEsBusiness analystsSolution architectChange manager
Best practices
- Start from the standard process catalog, then adapt.
- Design to standard before considering customization.
- Name an accountable owner for each process.
- Log every gap as a candidate backlog item.
What happens
Map requirements to D365 capabilities, identify gaps, and decide configure vs. extend vs. integrate for each one. Produces the conceptual solution that frames scope and effort.
Key stakeholders
Solution architectFunctional / technical consultantsProduct ownerIntegration architect
Best practices
- Resolve gaps with configuration first.
- Document the rationale for every customization.
- Flag high-risk gaps early for deeper review.
- Validate feasibility with prototypes or spikes.
What happens
Plan the set of environments (dev, test, UAT, training, production), their topology, data refresh and retention policies, and how code and configuration promote between them.
Key stakeholders
Solution architectD365 administratorDevOps engineerSecurity / IT
Best practices
- Define each environment and its purpose early.
- Automate provisioning wherever possible.
- Tightly control who can deploy to production.
- Keep production isolated and well governed.
2 · Initiate
Weeks 5–10 · Define in-scope workstreams, blueprint & governance
What happens
Break the solution into in-scope workstreams and define the delivery plan (sprints / milestones), dependencies, and resourcing. The plan is refined as the solution blueprint firms up.
Key stakeholders
Project / Program managerWorkstream leadsSolution architectPMO
Best practices
- Plan in iterations, not one long waterfall.
- Make cross-workstream dependencies explicit.
- Build in time for Success by Design reviews and testing.
- Treat the plan as living — revisit it continuously.
What happens
Establish governance bodies (steering committee, change-control board), meeting cadence, decision rights, risk and issue management, and status reporting for the life of the project.
Key stakeholders
Executive sponsorSteering committeeProgram managerPMOPartner engagement lead
Best practices
- Meet on a predictable cadence.
- Keep one source of truth for risks, issues, and decisions.
- Empower the steering committee to make scope/budget calls.
- Feed Success by Design findings into governance.
What happens
Consolidate the solution design — data model, security, integration, ALM, testing approach, environment plan — into a blueprint that becomes the baseline artifact for the mandatory Solution Blueprint Review.
Key stakeholders
Solution architectTechnical architectIntegration & data leadsFastTrack / partner architect
Best practices
- Make the blueprint complete enough to surface real risks.
- Align the design to the product roadmap.
- Run the Solution Blueprint Review before heavy build.
- Keep the blueprint a living document.
What happens
Stand up the initial development and test environments per the environment strategy, and wire up ALM connections and role-based access so the build can begin.
Key stakeholders
D365 administratorDevOps engineerSolution architectSecurity / IT
Best practices
- Provision early to unblock the build team.
- Apply least-privilege access from the start.
- Baseline configuration as code.
- Document the environment topology.
What it checks
The first and mandatory Success by Design review. It examines the high-level solution design, architecture, scope, and the defined workstreams to confirm the project is following recommended patterns — before the build goes too far. Its findings are what trigger the deeper, topic-specific Implementation Reviews.
Who's involved
Solution architect (leads)FastTrack / partner architectTechnical architectProject managerSteering committee
Outputs & outcomes
- Findings classified as Assertions, Risks, or Issues, each matched to known patterns.
- Recommendations and actions to mitigate risk.
- A list of follow-on Implementation Reviews to schedule.
3 · Implement
Weeks 9–24 · Build, configure, integrate, migrate & test the solution
What happens
Establish application lifecycle management — source control, solution and branching strategy, automated build and deployment pipelines, and release management — so changes flow safely from dev to production.
Key stakeholders
DevOps engineerTechnical architectDevelopersD365 administrator
Best practices
- Use managed solutions and source control from day one.
- Automate builds and deployments.
- Gate releases between dev / test / prod.
- Never make manual changes directly in production.
What happens
Design the Dataverse / finance & operations data model (tables, relationships) and the security model (roles, business units, field-level security) so they support the processes, reporting, and compliance requirements.
Key stakeholders
Solution architectData architectSecurity leadCompliance / InfoSec
Best practices
- Design security around roles and least privilege.
- Model data to support reporting and integration.
- Validate the model against volume and performance.
- Document the data and security design.
What happens
Iteratively configure standard D365 capabilities to meet requirements across functional areas, demonstrating working increments to the business at the end of each sprint.
Key stakeholders
Functional consultantsProduct ownerSMEsBusiness analysts
Best practices
- Configure before customizing.
- Demo every sprint to gather feedback early.
- Keep configuration documented and in source control.
- Work from a prioritized backlog.
What happens
Build the customizations and extensions that standard capabilities can't satisfy — plugins, PCF controls, Power Platform components, or X++ extensions — using supported patterns.
Key stakeholders
DevelopersTechnical architectSolution architectProduct owner
Best practices
- Extend, don't over-customize.
- Follow supported extension patterns only.
- Peer-review code and cover it with automated tests.
- Document every custom component and its justification.
What happens
Design and build integrations with other systems (legacy, third-party, other Microsoft cloud), choosing patterns — real-time vs. batch, APIs, events — and handling throughput and error recovery.
Key stakeholders
Integration architectDevelopersSource / target system ownersSecurity
Best practices
- Match the pattern to the volume and latency needs.
- Design for resilience and idempotency.
- Plan carefully for high-volume legacy systems.
- Monitor and log every integration.
What happens
Build extract/transform/load processes, cleanse and map legacy data, and run repeated migration dry runs to validate data quality and rehearse the timing needed for cutover.
Key stakeholders
Data migration leadData owners / stewardsFunctional consultantsBusiness validators
Best practices
- Start data profiling and cleansing early.
- Migrate only the data you actually need.
- Run multiple dry runs and reconcile results.
- Get business sign-off on migrated data quality.
What happens
Implement the designed security roles, business units, teams, and access controls in the solution, aligning them to the organizational structure and compliance requirements.
Key stakeholders
Security leadD365 administratorSolution architectCompliance / InfoSec
Best practices
- Implement least privilege throughout.
- Test roles with representative user personas.
- Honor segregation-of-duties requirements.
- Review security before UAT and again before go-live.
What happens
Build the reporting and analytics layer — dashboards, Power BI, and operational reports — per the reporting and analytics strategy, so the business has the insight it needs from day one.
Key stakeholders
BI / data analystReport developersBusiness ownersData architect
Best practices
- Define a reporting strategy up front.
- Separate operational from analytical workloads.
- Reuse a curated, governed data model.
- Validate every number with the business.
What it checks
Topic-specific deep dives that follow from the Solution Blueprint Review findings — covering the data model, security, integration, ALM, and testing strategy. They address identified risks while the build is still early enough to change course.
Who's involved
Solution / technical architectTopic specialists (data, security, integration)FastTrack / partner architectTest lead
Outputs & outcomes
- Deeper findings and recommendations on the specific area under review.
- Mitigation actions fed back into the build and the risk log.
- Risks resolved before the solution build is too far along.
What happens
Execute end-to-end functional and integration test cycles against the built solution, logging defects and driving them to resolution before user acceptance testing.
Key stakeholders
Test leadQA testersFunctional consultantsIntegration ownersProduct owner
Best practices
- Test end-to-end processes, not just individual features.
- Use representative data and scenarios.
- Automate regression testing where you can.
- Triage defects with clear severity and ownership.
What happens
Validate that the solution meets non-functional performance targets at expected scale — users, data volumes, and integrations. Leaving this out of scope is a well-known risk the Solution Blueprint Review specifically looks for.
Key stakeholders
Performance test engineerTechnical architectIntegration architectInfrastructure
Best practices
- Don't assume the cloud guarantees performance — test your customizations and integrations at scale.
- Model realistic peak load.
- Resolve bottlenecks before go-live.
- Keep performance testing in scope from the start.
4 · Prepare
Weeks 24–32 · UAT, training, cutover readiness & go-live
What happens
Business users validate that the solution supports their real processes end to end and formally sign off that it's ready for go-live.
Key stakeholders
Business users / SMEsProcess ownersProduct ownerTest lead
Best practices
- Use real business scenarios and representative data.
- Require explicit, documented sign-off.
- Reserve time for fixes and a retest cycle.
- Treat UAT as a true readiness gate, not a formality.
What happens
Complete the required security and compliance reviews and approvals — data protection, access controls, regulatory obligations — that must be in place before go-live.
Key stakeholders
InfoSec / CISO teamComplianceSecurity leadSolution architect
Best practices
- Engage InfoSec early, not at the eleventh hour.
- Document data flows and controls clearly.
- Remediate findings before go/no-go.
- Obtain formal, recorded approval.
What happens
Deliver role-based training to end users and administrators per the training strategy, building the capability the organization needs to operate the new solution confidently.
Key stakeholders
Training leadChange managerSuper-users / SMEsEnd usersAdministrators
Best practices
- Train by role, against real processes.
- Develop a network of super-users / champions.
- Provide just-in-time reference materials.
- Reinforce training after go-live.
What happens
Build the detailed cutover / deployment runbook — every task with owners, durations, dependencies, and sequencing — plus a rollback plan and clear go/no-go criteria.
Key stakeholders
Cutover / Release managerProject managerTechnical leadsBusiness owners
Best practices
- Detail every task with an owner and a duration.
- Define go/no-go criteria and a rollback plan.
- Rehearse the runbook in mock go-lives.
- Freeze scope before cutover.
What happens
Stand up the post-go-live support model — tiers, processes, tooling, SLAs — and confirm the people who will run hypercare and ongoing support are ready.
Key stakeholders
Support / Service managerOperations teamSuper-usersPartner supportIT service desk
Best practices
- Define support tiers and escalation before go-live.
- Staff hypercare adequately for fast response.
- Equip support with complete documentation.
- Plan the handover from project to support.
What happens
Execute one or more full rehearsals of the cutover runbook in a production-like environment to validate timing, steps, and overall readiness for the real cutover.
Key stakeholders
Cutover managerTechnical & data leadsBusiness validatorsProject manager
Best practices
- Rehearse the full runbook end to end.
- Time each step to confirm the cutover window.
- Fix gaps and re-rehearse as needed.
- Use results to sharpen go/no-go criteria.
What it checks
The mandatory final review before go-live. It confirms the solution is built and tested, customer approvals are granted, information security reviews are complete, the cutover plan is defined with go/no-go criteria, mock go-lives are scheduled, the support model is ready, and the deployment runbook is complete with tasks, owners, durations, and dependencies.
Who's involved
Solution architectFastTrack / partner architectCutover / release managerProject managerSteering committeeSupport lead
Outputs & outcomes
- Identification of any remaining gaps or issues.
- A clear go / no-go recommendation.
- The last checkpoint to surface risk before cutover.
What happens
Execute the production cutover — final data migration, validation, and switchover to the live solution — following the rehearsed runbook against the go/no-go gates.
Key stakeholders
Cutover managerData migration leadTechnical leadsBusiness ownersSupport team
Best practices
- Follow the rehearsed runbook exactly.
- Reconcile and validate migrated data.
- Keep the rollback plan ready.
- Communicate status against each go/no-go gate.
5 · Operate
Weeks 32–36 · Stabilize, support & plan continuous improvement
What happens
Provide heightened, fast-response support immediately after go-live to stabilize the solution, resolve incidents quickly, and build user confidence in the new system.
Key stakeholders
Hypercare / Support teamSuper-usersTechnical leadsBusiness owners
Best practices
- Staff hypercare for rapid response.
- Triage and prioritize incidents transparently.
- Monitor adoption and performance closely.
- Communicate frequently with users.
What happens
Formally hand the solution from the project / hypercare team to the steady-state support organization, including knowledge transfer, documentation, and closure of open items.
Key stakeholders
Support / Service managerProject managerOperations teamPartner
Best practices
- Transfer knowledge and documentation deliberately.
- Confirm support-readiness criteria are met.
- Phase hypercare down gradually.
- Close out or reassign all open items.
What happens
Tune and refine the live solution — performance, usability, and process adjustments — based on real usage signals and user feedback once the system is in production.
Key stakeholders
Solution architectSupport teamBusiness ownersAnalysts
Best practices
- Use telemetry and feedback to prioritize.
- Address quick wins quickly.
- Keep changes governed and tested.
- Balance stabilization against new enhancements.
What happens
Measure the business value and outcomes the implementation was meant to deliver, against the original strategy and the project's success measures, and report them to leadership.
Key stakeholders
Executive sponsorBusiness ownersPMOFastTrack / partner architect
Best practices
- Tie measures back to the original business case.
- Track both leading and lagging indicators.
- Report realized value to leadership.
- Use insights to shape the next phase.
What happens
Identify and prioritize the next wave of functionality, additional apps, or process improvements — embracing the always-evolving cloud model rather than treating go-live as the finish line.
Key stakeholders
Product ownerBusiness ownersSolution architectSteering committee
Best practices
- Maintain a living roadmap and backlog.
- Adopt new platform releases deliberately.
- Continue claiming value incrementally.
- Keep governance running into the next phase.
Continuous · Spanning workstreams
Run across the full lifecycle
What happens
Ongoing steering, decision-making, and proactive risk and issue management across the entire lifecycle — the backbone that keeps scope, budget, and timeline under control.
Key stakeholders
Steering committeeProgram managerPMOExecutive sponsor
Best practices
- Keep one source of truth for risks, issues, and decisions.
- Meet on a predictable cadence.
- Escalate risks early, before they become issues.
- Let Success by Design findings drive action.
What happens
Prepare the organization for the change — communications, stakeholder engagement, training alignment, and adoption measurement — so people actually embrace and use the new solution.
Key stakeholders
Change managerExecutive sponsorSuper-users / championsHRCommunications
Best practices
- Start change management at project kickoff.
- Build and nurture a champion network.
- Communicate the "why" repeatedly and clearly.
- Measure adoption and adjust your approach.
What happens
Track project health using Success by Design's success measures — 30+ measures across seven categories — updated after each review or compelling project event by the FastTrack or partner architect.
Key stakeholders
FastTrack / partner Solution ArchitectProgram managerSteering committee
Best practices
- Update measures (red / yellow / green) after each review or key event.
- Watch trends, not just point-in-time snapshots.
- Act on "yellow" before it turns "red."
- Use both micro (single project) and macro (portfolio) views.