SOLVED
Home

Domain Functional Level and AAD Hybrid Join

%3CLINGO-SUB%20id%3D%22lingo-sub-857788%22%20slang%3D%22en-US%22%3EDomain%20Functional%20Level%20and%20AAD%20Hybrid%20Join%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-857788%22%20slang%3D%22en-US%22%3E%3CP%3EGood%20Afternoon!%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20apologize%20if%20this%20question%20has%20been%20asked%20before%2C%20but%20I%20have%20searched%20for%20the%20answer%20and%20just%20want%20to%20get%20some%20clarification.%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EThis%20article%20states%2C%20%22%3CSPAN%3EThe%20minimum%20required%20domain%20controller%20version%20for%20Windows%2010%20hybrid%20Azure%20AD%20join%20is%20Windows%20Server%202008%20R2.%22%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fazure%2Factive-directory%2Fdevices%2Fhybrid-azuread-join-plan%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fazure%2Factive-directory%2Fdevices%2Fhybrid-azuread-join-plan%3C%2FA%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EDoes%20this%20mean%20the%20minimum%20domain%20functional%20level%20needs%20to%20be%20at%20or%20above%202008%20R2%2C%20or%20just%20that%20we%20have%20to%20have%20servers%20at%20that%20level%3F%20I%20assume%20this%20means%20functional%20level%2C%20but%20wanted%20to%20confirm%20that.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EWe%20are%20in%20the%20process%20of%20upgrading%20our%20functional%20level%20to%202016%2C%20but%20that%20will%20be%20about%203-5%20months%20out.%20We%20want%20to%20roll%20out%20Conditional%20Access%20before%20that%20and%20are%20hoping%20this%20won't%20hold%20us%20up.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20apologize%20if%20this%20seems%20like%20a%20low%20level%20question.%20I%20have%20set%20up%20Hybrid%20Join%20in%20the%20past%2C%20but%20this%20is%20the%20first%20time%20I%20have%20run%20into%20an%20environment%20with%20this%20specific%20scenario.%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EThanks!%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3ESean%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-857788%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EAzure%20AD%20Join%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EConditional%20Access%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-858846%22%20slang%3D%22en-US%22%3ERe%3A%20Domain%20Functional%20Level%20and%20AAD%20Hybrid%20Join%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-858846%22%20slang%3D%22en-US%22%3EHello!%20The%20minimum%20FFL%20and%20DFL%20for%20Hybrid%20azure%20AD%20join%20is%202008%20R2.%3CBR%20%2F%3E%3CBR%20%2F%3EYou%20can%20see%20that%20the%20wording%20was%20changed%20on%20this%20doc%20about%2022%20days%20ago.%3CBR%20%2F%3E%3CBR%20%2F%3E%3CA%20href%3D%22https%3A%2F%2Fgithub.com%2FMicrosoftDocs%2Fazure-docs%2Fcommit%2F8bdd03c7ec77379b4d57fd24520896a1869067a8%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Fgithub.com%2FMicrosoftDocs%2Fazure-docs%2Fcommit%2F8bdd03c7ec77379b4d57fd24520896a1869067a8%3C%2FA%3E%3CBR%20%2F%3E%3CBR%20%2F%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-859444%22%20slang%3D%22en-US%22%3ERe%3A%20Domain%20Functional%20Level%20and%20AAD%20Hybrid%20Join%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-859444%22%20slang%3D%22en-US%22%3E%3CP%3EGreat!%20Thank%20you%20for%20the%20quick%20response!%3C%2FP%3E%3C%2FLINGO-BODY%3E
Sean_Bulger
New Contributor

Good Afternoon!

 

I apologize if this question has been asked before, but I have searched for the answer and just want to get some clarification. 

 

This article states, "The minimum required domain controller version for Windows 10 hybrid Azure AD join is Windows Server 2008 R2."

 

https://docs.microsoft.com/en-us/azure/active-directory/devices/hybrid-azuread-join-plan

 

Does this mean the minimum domain functional level needs to be at or above 2008 R2, or just that we have to have servers at that level? I assume this means functional level, but wanted to confirm that.

 

We are in the process of upgrading our functional level to 2016, but that will be about 3-5 months out. We want to roll out Conditional Access before that and are hoping this won't hold us up.

 

I apologize if this seems like a low level question. I have set up Hybrid Join in the past, but this is the first time I have run into an environment with this specific scenario. 

 

Thanks!

 

Sean

2 Replies
Solution
Hello! The minimum FFL and DFL for Hybrid azure AD join is 2008 R2.

You can see that the wording was changed on this doc about 22 days ago.

https://github.com/MicrosoftDocs/azure-docs/commit/8bdd03c7ec77379b4d57fd24520896a1869067a8

Great! Thank you for the quick response!

Related Conversations
Extentions Synchronization
ChirmyRam in Discussions on
3 Replies
Tabs and Dark Mode
cjc2112 in Discussions on
35 Replies
flashing a white screen while open new tab
Deleted in Discussions on
14 Replies
Stable version of Edge insider browser
HotCakeX in Discussions on
35 Replies