SSO - What Are You Using and Why?
-
Why do you have on prem old Exchange when you also have modern, hosted Exchange? What's the need for a seven year old on prem email?
-
@wrx7m said in SSO - What Are You Using and Why?:
@Tim_G Unfortunately, it won't allow a .local because it isn't a public TLD.
Right, which is why you'd have to change the users' UPN to the new domain .com, as you mentioned earlier.
Because of the huge difference between the AD username and their email address, I understand the users' confusion of the change.
-
@scottalanmiller said in SSO - What Are You Using and Why?:
@wrx7m said in SSO - What Are You Using and Why?:
@scottalanmiller - I can't seem to find how I would implement the Azure AD outside-in approach. I see tons of stuff on how I have already installed AADConnect and sync out.
You just... use it. There's nothing to know. Shut down AD, use Azure AD.
I think he's saying that his on-prem network would then need access to his Azure AD for user/computer authentication.
-
@Tim_G said in SSO - What Are You Using and Why?:
@scottalanmiller said in SSO - What Are You Using and Why?:
@wrx7m said in SSO - What Are You Using and Why?:
@scottalanmiller - I can't seem to find how I would implement the Azure AD outside-in approach. I see tons of stuff on how I have already installed AADConnect and sync out.
You just... use it. There's nothing to know. Shut down AD, use Azure AD.
I think he's saying that his on-prem network would then need access to his Azure AD for user/computer authentication.
Well the users just authenticate to it. But since Azure AD comes with your hosted email, it's weird to want old on prem email to authenticate to it, too.
-
@scottalanmiller said in SSO - What Are You Using and Why?:
@Tim_G said in SSO - What Are You Using and Why?:
@scottalanmiller said in SSO - What Are You Using and Why?:
@wrx7m said in SSO - What Are You Using and Why?:
@scottalanmiller - I can't seem to find how I would implement the Azure AD outside-in approach. I see tons of stuff on how I have already installed AADConnect and sync out.
You just... use it. There's nothing to know. Shut down AD, use Azure AD.
I think he's saying that his on-prem network would then need access to his Azure AD for user/computer authentication.
Well the users just authenticate to it. But since Azure AD comes with your hosted email, it's weird to want old on prem email to authenticate to it, too.
I will be ditching my Exchange 2010 but was wondering how it would be affected by it. So what about about the rest of the on-prem servers that are all AD domain members?
-
@wrx7m said in SSO - What Are You Using and Why?:
@scottalanmiller said in SSO - What Are You Using and Why?:
@Tim_G said in SSO - What Are You Using and Why?:
@scottalanmiller said in SSO - What Are You Using and Why?:
@wrx7m said in SSO - What Are You Using and Why?:
@scottalanmiller - I can't seem to find how I would implement the Azure AD outside-in approach. I see tons of stuff on how I have already installed AADConnect and sync out.
You just... use it. There's nothing to know. Shut down AD, use Azure AD.
I think he's saying that his on-prem network would then need access to his Azure AD for user/computer authentication.
Well the users just authenticate to it. But since Azure AD comes with your hosted email, it's weird to want old on prem email to authenticate to it, too.
I will be ditching my Exchange 2010 but was wondering how it would be affected by it. So what about about the rest of the on-prem servers that are all AD domain members?
Yeah - this is what I'm wondering as well? Does Windows Server 2016 support Azure AD? Assuming it does, can you still get things like local network shares when using Azure AD? or does MS assume you've given that up and moved purely to OneDrive for Business?
-
@wrx7m said in SSO - What Are You Using and Why?:
@scottalanmiller said in SSO - What Are You Using and Why?:
@Tim_G said in SSO - What Are You Using and Why?:
@scottalanmiller said in SSO - What Are You Using and Why?:
@wrx7m said in SSO - What Are You Using and Why?:
@scottalanmiller - I can't seem to find how I would implement the Azure AD outside-in approach. I see tons of stuff on how I have already installed AADConnect and sync out.
You just... use it. There's nothing to know. Shut down AD, use Azure AD.
I think he's saying that his on-prem network would then need access to his Azure AD for user/computer authentication.
Well the users just authenticate to it. But since Azure AD comes with your hosted email, it's weird to want old on prem email to authenticate to it, too.
I will be ditching my Exchange 2010 but was wondering how it would be affected by it. So what about about the rest of the on-prem servers that are all AD domain members?
That'll be case by case. What's an example workload?
-
@scottalanmiller said in SSO - What Are You Using and Why?:
@wrx7m said in SSO - What Are You Using and Why?:
@scottalanmiller said in SSO - What Are You Using and Why?:
@Tim_G said in SSO - What Are You Using and Why?:
@scottalanmiller said in SSO - What Are You Using and Why?:
@wrx7m said in SSO - What Are You Using and Why?:
@scottalanmiller - I can't seem to find how I would implement the Azure AD outside-in approach. I see tons of stuff on how I have already installed AADConnect and sync out.
You just... use it. There's nothing to know. Shut down AD, use Azure AD.
I think he's saying that his on-prem network would then need access to his Azure AD for user/computer authentication.
Well the users just authenticate to it. But since Azure AD comes with your hosted email, it's weird to want old on prem email to authenticate to it, too.
I will be ditching my Exchange 2010 but was wondering how it would be affected by it. So what about about the rest of the on-prem servers that are all AD domain members?
That'll be case by case. What's an example workload?
Filemaker Server, ShoreTel Server, an ERP server, File and Print servers, RDGateway/Terminal Server, vCenter, Spiceworks, PRTG, Veeam
