Forum Discussion
Hybrid AD Join with Okta - SCP? possible? how?
I came across this SCP configuration step when turning on Hybrid AD Join options in our Azure AD Connect tool. I'm not sure what to choose here: Okta or Azure Active Directory? Okta doesn'...
Don’t know much about Okta, but in regular native Azure AD environment, it default to Azure AD authentication and you don’t have to choose. I think you need to use Azure AD authentication, otherwise it wont work. You can test one pc by syncing specific OU- Use Synchronization Service to do that.
Is this important? Yes, if not enabled you can’t sync your PCs to the cloud, which means you can’t do hybrid join.
Hope this helps!
Moe
Is this important? Yes, if not enabled you can’t sync your PCs to the cloud, which means you can’t do hybrid join.
Hope this helps!
Moe
Hi Moe_Kinani ,
Thanks for advice. How do I specify only certain computers?
Is that through specifying the ccontainer/OU in the Sync Service manager ( Connectors > Domain > Properties > Configure Directory partitions > Containers)?
- You got it. I would create new OU->move the pc and sync it.
Lastly, you need to enroll the device with Intune so you can push policies to the device.
https://docs.microsoft.com/en-us/windows/client-management/mdm/enroll-a-windows-10-device-automatically-using-group-policy
MoeJgq85 Did you ever figure this out? Which one to pick? We are in the same boat with Azure AD Federated by Okta and trying to set up the same thing.
cyber-tk I am looking at the same situation here. Wondering what you ended up doing for SCP selection? *.okta.com, Azure AD, etc.
I want to convert my existing hybrid AD from having my devices AD Registered to AD Hybrid Joined and I'm confused around whether to just use the existing OKTA SCP in the ADConnect configuration or if I am overlooking something.
