Forum Discussion
Multiforest migration to Office 365
NunoAriasSilva Thank you very much for your inputs.
I don't think your first approach (moving Forests B, C, D to forest A and then migrate to Office 365) will help because we're creating brand new tenant in Office 365 and then we need one more tenant to tenant migration which can be done by 3rd party tool only. right? please confirm.
Hi Newlife,
You can create a new tenant and use a third-party tool to migrate all your data to a new tenant, but if you have an infrastructure already implemented with hybrid and using many services and have a lot of users compared to all other forests. The best way for time and cost is to consolidate all into the Forest A and then migrate the others, but you can migrate all to a new tenant if you need it. All of these migrations depending on the workload you are using you need to use third-party tools to each of workload.
Best Regards,
Nuno Árias Silva
- NewlifeFeb 27, 2020Brass Contributor
NunoAriasSilva - now the approach have got slightly changed.
It has basically 2 phases:
Phase 1 :
Keep any one of the Office 365 Tenant and leverage single AAD Connect to sync from all the 4 on-prem ADs to this Office 365 Tenant.
Phase 2:
Create the brand new Office 365 Tenant and leverage Skykick for tenant to tenant migration.
Let's focus on Phase 1 and
Is there any best practices to complete Phase 1?
Many thanks!
- Feb 27, 2020
Hi Newlife,
The best way to archive the phase 1 please read the section "Multiple forests, single Azure AD tenant" on the following link https://docs.microsoft.com/en-us/azure/active-directory/hybrid/plan-connect-topologies.
After identity is implemented in place, that you can start migration.
Best Regards,
Nuno Árias Silva- NewlifeFeb 27, 2020Brass Contributor
NunoAriasSilva - Thank you for your prompt response.
Let's say, on Phase 1,
We'd only need to migrate just the ADs from Forest B, C, D to Forest A and not the Exchange/SP severs, will it be the same approach or do we need to leverage ADMT tool?
Another question is, in order to keep only one AAD connect to sync objects from all other ADs, where do we need to place the AAD server, is that on domain joined, or DMZ zone?
Please assist.