Is Azure ATP in any way usable in a single domain, multiple tenant setup? Our legacy on-prem AD is shared with our service provider and several other customers, but each has a dedicated AAD tenant for O365 use, etc. AADC sync is set up per OU, which is functional if not particularly flexible. We don't have hybrid join for obvious reasons, although have considered the per-workstation GPO route to get there.
So, where does Azure ATP fall on this spectrum? Is the on-prem ATP sensor multitenant compatible? Can you have multiple sensors serving different AAD tenants in a single on-prem domain? Or if not sensors, how about standalones? Also, is the sensor smart enough to be aware of its own AAD tenant, and collect and forward on-prem data that is relevant to those AAD users, and those users only? Can we manually setup a sensor instance per OU, similar to AADC?