Forum Discussion

Remo Pistor's avatar
Remo Pistor
Copper Contributor
Jan 23, 2019
Solved

Merge/move 2 AD's and 1 Office 365 tenant to new AD

I've stepped into a mess and need to figure a way out. Our current situation: Two locations with separate AD's:  location one - location1.company.com location two - location2.local One Office 3...
hybrid
migration
office 365
On-Premises
  • ChrisHoardMVP's avatar
    ChrisHoardMVP
    Jan 23, 2019

    Hi,

    This is based purely on what you have outlined above and it's a personal opinion - others will have their own.

    1.) Cut AAD Connect on Location two so the AD and 365 tenant is separate.
    2.) Set all 365 users UPN to @company.com, mail addresses remain the same
    3.) Build new Forest corp.company.com
    4.) Consolidate the AD's into the new forest
    5.) In AD all users to have a UPN Suffix of @company.com, or UPN of @company.com
    6.) Install Member Server/Azure AD Connect
    7.) Ensure the AD objects have the right mail address
    8.) Soft match the users from new Forest to 365

    That's a general overview. It's probably best to take a step back and disentangle what's there first even if it means having cloud users and separate credentials for a period of time.

    Hope that helps

    Best, Chris

adam deltinger's avatar
adam deltinger
MVP
Jan 23, 2019
In short, If you are creating a new Forest and new Ad’s and have all accounts in it you need to do a migration as you surely know! Before that stop the sync and uninstall the ad connect! Users will now be cloud only!
Do migration of AD objects to new AD
then you apply the UPN of company.com etc in Ad, then set up ad connect and soft match the users in office 365

https://docs.microsoft.com/en-us/azure/active-directory/hybrid/plan-connect-topologies

https://docs.microsoft.com/en-us/azure/active-directory/hybrid/how-to-connect-syncservice-features

Adam