Are You Ready for Cloud Only?

SystemEngineer If they still have legacy applications/devices they may need to have further discussions before taking this step as addressing those should be part of the overall design.  Depending on the purpose of the appliance it may/may not be able to use AAD for auth but the provider would note this.  There is the option for the legacy applications to lift and shift to Azure ADDS and/or possibly begin discussing modernizing those.  Recoding or replacing LDAP apps can take time so this may extend the hybrid environment.  Discussions around using an RODC means that you will still be supporting an Active Directory domain; so RODC if not used now probably is not the answer as that just increases infrastructure with no benefit.  And this would mean you are either still in a hybrid scenario or the users may have two different credential sets.