Forum Discussion
Can you Migrate from Microsoft Cloud Identity to ADFS
Hello, If you start a new full-cloud O365 tenant with Azure AD and Azure ADDS using just the Cloud Identity authentication model, can you later upgrade to using ADFS for authentication? https...
Hi Robert,
Thank you for the reply. We're actually planning on moving away from a hybrid environment and we're actively working on not having any on-prem AD servers in-house.
We've been in a hybrid environment for over 4 years and our business model has never needed and/or wanted to use the SSO capabilities with ADFS authentication model.
What I want to know is IF we go to full O365 cloud and use Azure to ONLY host a newly created DC (and a fault tolerance DC), and use Cloud Identity for authentication, can we later (6 months? a year? 5 years?) add ADFS, AD Sync and AD Connect? There is a strong desire to simplify our infrastructure.
Phil
Any users created on-prem will be deleted in Azure AD if you stop the sync from AD.
You can set up your servers in Azure, but before removing anything on-prem you need to migrate the PDC to a DC in Azure and set up a new AAD Connect there.
You can set up your servers in Azure, but before removing anything on-prem you need to migrate the PDC to a DC in Azure and set up a new AAD Connect there.