MicrosoftAs usual, Microsoft recommends a big paradigm shift before it's ready. AADJ is great, but it just has so many gaps. If a new technology does not have 99% fidelity with an older technology (and I'm not talking about deprecated or backwards-thinking features), then it's just not ready. And MS does this all the time. How long have we been hearing that WADS completely replaces MMCs? It doesn't. Not even close! Try looking through event logs (a very basic admin task) with WADS and tell me it's ready for primetime.
I know I know, HAADJ is the solution for this. But it's obviously clear MS wants us to cast off the old and embrace the new. Well, give us the tools then. Instead of getting us 65% of the way there, teasing new features, then chanting "old way of thinking," give us what we need. Have you learned nothing from Azure Monitor (formerly Log Analytics, formerly OMS)? It's just *not good* and *not ready* nearly a decade on. And AADJ and WADS feel exactly the same way.
Alternatively, continue to invest in your legacy technologies instead of feature freezing them. There is no reason we don't have an easy tunneling technology for on-prem AD. There's just absolutely no reason for it. And I don't mean AOVPN, which works great when it works, but is complicated to set up and troubleshoot. Why not just have a simple and automatic, certificated based SYSVOL, Kerberos, and LDAP tunneling technology?
Why not fix the bugs in MMC?
Etc.
Come on, Microsoft, do better.
