cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Configuring Teams for an on-premise domain without synchronizing AD with O365

Chris48
Copper Contributor

‎Aug 17 2021 04:16 AM

‎Aug 17 2021 04:16 AM

Configuring Teams for an on-premise domain without synchronizing AD with O365

I have an on-premise domain which needs to remain that way for security reasons.  I am trying to propose a pilot for some of the users in that domain, and these users will have very limited internet access.  I want to keep the domain on-prem and don't want to synchronize it with O365, so wondered what the best approach for this would be?  For instance, could I use ADFS or something similar to provide the on-prem users access to an O365 domain which could be used to host the Teams application?

1,373 Views
0 Likes
2 Replies
Reply
2 Replies
pvanberlo

‎Aug 17 2021 04:42 AM

‎Aug 17 2021 04:42 AM

Re: Configuring Teams for an on-premise domain without synchronizing AD with O365

You'll want to set up hybrid identity, which does mean you will need to synchronize user details into Azure AD, but you can then leverage ADFS for actual authentication. You do not necessarily have to sync password hashes with Azure AD for this, and you can also scope it to a subset of users in your on-premise AD.

Alternatively, you can also configure Microsoft 365 with an internet domain you own and just have people directly sign into that - which is the alternative to a hybrid identity - a cloud only identity. You do not have to do anything then, but obviously there won't be any single sign on and all those other fancy things you could have with ADFS.
1 Like
Reply
Chris48

‎Aug 23 2021 01:25 AM

‎Aug 23 2021 01:25 AM

Re: Configuring Teams for an on-premise domain without synchronizing AD with O365

Thanks pvanberlo. The Hybrid identity sounds the best way forward, however we would need to see if we can get accredited to do this first. Thanks for your help, Chris.
0 Likes
Reply