Forum Discussion

Rahulpat120's avatar
Rahulpat120
Copper Contributor
Feb 13, 2022

Using Azure Active Directory as centralized AD

Hello Guys,

I want to understand the scenario where we have say 20-30 on-prem AD's and few other Azure AD tenants say 3 or 4. Can it be integrated and managed with a centralized Azure active directory. Is it possible ?

If YES, what are the ways to do it ?

If No, how this kind of scenario can be achieved?

Thankyou in advance.

Active Directory (AD)
Azure Active Directory (AAD)
Azure AD Connect

6 Replies

  • Jai Verma's avatar
    Jai Verma
    Brass Contributor
    Feb 15, 2022
    When you say, you have different AD forest, it means, you consciously decided to create seperate AD Admin and Security boundary. Why do you want to break that?
    Multiple AD forest can sync to single Azure AD tenant, however, you can not sync one on premise AD to multiple tenants.

    Azure AD supported topologies are describe here - https://docs.microsoft.com/en-us/azure/active-directory/hybrid/plan-connect-topologies
    • Rahulpat120's avatar
      Rahulpat120
      Copper Contributor
      Feb 27, 2022
      Thankyou Jai for the response. I am trying to connect 2 to 3 Azure AD tenant to a centralized Azure AD tenant and also multiple Local AD's lets say 20 or 30 to the centralized Azure AD.
  • abelchior's avatar
    abelchior
    MCT
    Feb 14, 2022
    How many ADDS Forests/Domains do you have? Are you plan to move to Cloud Identity only or planning to have a centralized Azure AD (single AAD Tenant)?
    • Rahulpat120's avatar
      Rahulpat120
      Copper Contributor
      Feb 27, 2022
      thankyou for your response. I am trying to figure out a solution where I can create a centralized Azure AD (Single tenant) and then connect multiple on-prem local AD's and also connect 2 or 3 Azure AD tenant to a centralized AAD.
      • abelchior's avatar
        abelchior
        MCT
        Mar 02, 2022
        Unfortunately, if I'm not wrong, Microsoft currently does not have a solution to consolidate multiples AAD tenants into a single one. You will find some valuable stuff at the link suggested by Jai Verma but, for your scenario, I strongly suggest you engage MCS to help you on this consolidation project
  • Reza_Ameri's avatar
    Reza_Ameri
    Silver Contributor
    Feb 14, 2022
    Your scenario is possible and Azure is very flexible and you may consider Hybrid model, take a look at:
    https://techcommunity.microsoft.com/t5/microsoft-endpoint-manager-blog/understanding-hybrid-azure-ad-join-and-co-management/ba-p/2221201
    https://docs.microsoft.com/en-us/azure/active-directory/hybrid/whatis-hybrid-identity
    https://docs.microsoft.com/en-us/azure/active-directory/devices/howto-hybrid-azure-ad-join
    https://docs.microsoft.com/en-us/azure/active-directory/devices/hybrid-azuread-join-plan

Resources