The Queensland Department of Education and Training had 650,000 active staff and school students being managed by an on premise identity and access management solution, supporting close to 30 separate applications. In order to enable pressing cloud and mobile requirements, the department recognised that significant changes were required. Hence, an ambitious project was established to carry out a complete refresh of all the access management components – replacing them with a more agile solution in an aggressive timeframe. This was completed in time to support a complete Office 365 (Exchange Online) migration for all 650,000 staff and students. This presentation will discuss the approach, pitfalls and learnings of this successful project.