SOLVED

Azure AD Pass through authentication

%3CLINGO-SUB%20id%3D%22lingo-sub-1555776%22%20slang%3D%22en-US%22%3EAzure%20AD%20Pass%20through%20authentication%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1555776%22%20slang%3D%22en-US%22%3E%3CP%3EHi%20Experts%2C%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EIs%20there%20any%20preview%20available%20to%20test%20Pass%20through%20Authentication%20to%20few%20set%20of%20users%20from%20verified%20domain.%20Instead%20of%20testing%20on%20all%20users%2C%20would%20be%20great%20to%20have%20tested%20only%20on%20few%20users%20as%20a%20POC.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EBest%20regards%3C%2FP%3E%3CP%3ERT%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-1555776%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EPass%20through%20authentication%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1556125%22%20slang%3D%22en-US%22%3ERe%3A%20Azure%20AD%20Pass%20through%20authentication%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1556125%22%20slang%3D%22en-US%22%3E%3CP%3EWhen%20you%20install%20and%20configure%20Azure%20AD%20Connect%2C%20you%20can%20select%20which%20objects%20are%20to%20be%20synchronized.%20Please%20create%20a%20new%20organizational%20unit%20in%20the%20local%20AD%20with%20the%20users%20you%20want%20to%20test.%20You%20can%20then%20select%20this%20OU%20when%20configuring%20Azure%20AD%20Connect.%3C%2FP%3E%3CP%3EI%20hope%20it%20helped%3F%3C%2FP%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F744711%22%20target%3D%22_blank%22%3E%40RTHSC%3C%2FA%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1556253%22%20slang%3D%22en-US%22%3ERe%3A%20Azure%20AD%20Pass%20through%20authentication%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1556253%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F593067%22%20target%3D%22_blank%22%3E%40TomWechsler%3C%2FA%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EThank%20you%20Tom%20for%20the%20swift%20reply!%3C%2FP%3E%3CP%3Elittle%20background%20of%20our%20env%2C%20A%20forest%20with%20few%20child%20domains%20had%20already%20synched%20through%20AADC%20includes%20handful%20of%20OUs.%20Since%20all%20of%20them%20are%20already%20in%20AAD%20enabling%20PTA%20invoke%20these%20identities%20Auth%20against%20DCs.%20To%20avoid%20that%2C%20we%20would%20like%20to%20test%20PTA%20only%20to%20few%20users.%20Is%20there%20any%20other%20alternative%2C%20Please%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1556462%22%20slang%3D%22en-US%22%3ERe%3A%20Azure%20AD%20Pass%20through%20authentication%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1556462%22%20slang%3D%22en-US%22%3EStaged%20rollout%20might%20be%20what%20you%20are%20looking%20for%20-%20%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fazure%2Factive-directory%2Fhybrid%2Fhow-to-connect-staged-rollout%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3Ehttps%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fazure%2Factive-directory%2Fhybrid%2Fhow-to-connect-staged-rollout%3C%2FA%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1558530%22%20slang%3D%22en-US%22%3ERe%3A%20Azure%20AD%20Pass%20through%20authentication%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1558530%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F186539%22%20target%3D%22_blank%22%3E%40Thijs%20Lecomte%3C%2FA%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EHi%20Thijs%2C%20This%20is%20exactly%20was%20trying%20to%20find%2C%20Many%20Thanks!%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EThank%20you%20All.%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E
New Contributor

Hi Experts,

 

Is there any preview available to test Pass through Authentication to few set of users from verified domain. Instead of testing on all users, would be great to have tested only on few users as a POC.

 

 

Best regards

RT

4 Replies

When you install and configure Azure AD Connect, you can select which objects are to be synchronized. Please create a new organizational unit in the local AD with the users you want to test. You can then select this OU when configuring Azure AD Connect.

I hope it helped?

@RTHSC 

@TomWechsler 

 

Thank you Tom for the swift reply!

little background of our env, A forest with few child domains had already synched through AADC includes handful of OUs. Since all of them are already in AAD enabling PTA invoke these identities Auth against DCs. To avoid that, we would like to test PTA only to few users. Is there any other alternative, Please

 

 

best response confirmed by RTHSC (New Contributor)

@Thijs Lecomte 

 

Hi Thijs, This is exactly was trying to find, Many Thanks!

 

Thank you All.