SOLVED

Enabling Hybrid Azure AD

Copper Contributor

I currently manage a local Domain Controller, to which all PCs are connected. We also utilize Microsoft 365 and AD Connect in our system.

 

We are considering incorporating Intune and Defender for Endpoint for our upcoming devices, for which Hybrid join is required. 

 

I am interested to know about the implications of enabling Hybrid Azure Join via AD Connect.

 

Specifically, will there be any disruption or changes in the user login process that we should anticipate?

 

I have concerns that activating Hybrid Join in our existing environment might lead to potential issues.

 

Any insights on this matter would be greatly appreciated.

6 Replies
No Potential issue at all, it's only activating the hybrid join feature in Azure AD connect to convert your synced computers to Azure AD hybrid join type which is a prerequisite for Intune enrollment.
the user login process won't change at all
Fantastic, so the current devices will still connect to the local AD for login and GPO's?
best response confirmed by Kristian Krogstrup (Copper Contributor)
Solution
100% and that why the hybrid mode is available, your device will be connected to local AD and Azure AD at the same time. same login experience and GPOs will remain applicable the same.

keep in mind when you start applying security policies from Intune on your workstations to analyze your current GPOs applied from on Prem and avoid any conflict with Intune.
Thank you !

I'll go ahead with the process 🙂
Great , keep me posted for any further assistance required
Great , keep me posted for any further assistance required
1 best response

Accepted Solutions
best response confirmed by Kristian Krogstrup (Copper Contributor)
Solution
100% and that why the hybrid mode is available, your device will be connected to local AD and Azure AD at the same time. same login experience and GPOs will remain applicable the same.

keep in mind when you start applying security policies from Intune on your workstations to analyze your current GPOs applied from on Prem and avoid any conflict with Intune.

View solution in original post