0 votes

We have a hybrid environment with On-Prem AD and Azure AD. We currently have our On-Prem AD registered (See screenshot). For us to take advantage of the Azure AD management feature in version 2023, do we need register Azure AD domain as well as our On-Prem AD at the same time?

2022-12-15_16-14-46.jpg

by (160 points)

1 Answer

0 votes
by (289k points)

Hello,

Yes, that is correct. You need to follow the steps for registering a managed domain and select the Cloud domain option on the corresponding step of the wizard. The following articles should be helpful:

0

Thank you. If we have 2 registered domains, on-prem Active Directory and Azure AD (cloud), will that affect our Managed Microsoft 365 Tenant Cloud Service in any way? See screenshot

2022-12-16_10-23-26.jpg

0

Hello,

If you just register an Azure AD domain and your Microsoft 365 tenant is associated with users in the domain, it should not have any effect on Azure AD users themselves.

0

How does this affect licensing, if you add both your on-prem domain and the correspong azure AD domain ( which does have mostly the same users)

0

Hello,

Adaxes is still licensed based on the number of enabled and not expired user accounts in all the managed domains. This includes both on-premises AD and Azure AD users. If you register an Azure AD domain and a synchronized on-premises AD domain in Adaxes, synchronized users will only be counted once towards the license limit.

0

Yes, make sure to know how many accounts are in Azure AD. We went over our license limit after adding AAD. Then we had to remove AAD until we are able to upgrade our license. Now we are having issues with our scheduled tasks and scripts. Not sure if the issue is related to the changes but it was working fine before we added and removed AAD domain.

0

Hello,

What do you mean by issues with our scheduled tasks and scripts? There were quite a lot of changes that require adjusting scripts. If you face any errors/warnings, please, post here or send us screenshots.

0

Do external users who are invited to Azure AD as guests count towards the Adaxes license count?

0

Hello,

Yes, all enabled and not expired user accounts in all the managed domains count for license validation.

0

Hi, How can we exclude Azure AD guest accounts or users in an Azure AD user group?

0

Hello,

Have a look at the following help article: https://www.adaxes.com/help/AddUsersToUnmanagedList.

0

We have an Adaxes instance that is currently connected to our AD Domain with Microsoft 365 services included.

We have several thousand accounts excluded in our Active Directory that have been added to the unmanaged user list.

If we connect our Entra (Azure) tenant to Adaxes, will those accounts on the unmanaged list still be unmanaged?

Also, how can we exclude large groups of cloud-only accounts? The scripts appear to be geared towards the distinguished name in AD, which would not apply for cloud-only.

thanks

0

Hello,

If we connect our Entra (Azure) tenant to Adaxes, will those accounts on the unmanaged list still be unmanaged?

Yes, sure, registering an Entra domain in Adaxes does not influence the unmanaged list.

how can we exclude large groups of cloud-only accounts?

You can use scripts from our repository: https://www.adaxes.com/script-repository.htm?cat=32.

The scripts appear to be geared towards the distinguished name in AD, which would not apply for cloud-only.

That is not correct. In Adaxes, even cloud-only objects from Entra ID have distinguished names.

0

Thank You for your assistance.

I have already read these scripts. How would you identify the distinguished name of a cloud only object?

0

Hello,

For information on how to get an object DN, have a look at the following article: https://adaxes.com/sdk/HowDoI.GetDnOfObject. It works the same for both Entra ID and on-premises AD objects.

Related questions

0 votes
1 answer

Hello there, We have recently moved (almost) every computer from on-prem to cloud only and have setup some scheduled tasks to disable users based off of Last Logon and Last Logon ... in a different way? And if not, are there any plans to leverage that data?

asked May 21 by jacobchugg (20 points)
0 votes
1 answer

Hi When reading the REST API documentation it does not mention working directly against Azure AD and Exchange Online. Will this be added? Thanks /Peter Sonander

asked Jan 26, 2023 by Sonander (40 points)
+1 vote
1 answer

I'm evaluating Adaxes and so far, there have only been a few hiccups, and I am happy with the feature set. However, I'm a bit dissappointed that it does not seem to be able ... the TODO list for Adaxes? Or, am I just missing something to get them to show up?

asked Mar 3, 2023 by Michael Long (70 points)
0 votes
1 answer

Hello, We really like the new Azure AD functionality in Adaxes. Is it possible (or planned) to managed Azure AD Custom Security Attributes (currently in Preview) using Adaxes? We have ... an AAD only user so we'd like to start with Azure attrbiutes if we can.

asked Dec 9, 2022 by Gavin.Raymen (40 points)
0 votes
0 answers

Currently, it is not possible to manage Azure AD password policies via Adaxes. Cause Microsoft Graph API currently doesn't support password policy management. The issue is outlined here.

asked Nov 16, 2022 by Adaxes (560 points)
3,548 questions
3,238 answers
8,232 comments
547,813 users