This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(172.8, 98%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMC%3C/text%3E%3C/svg%3E)
We are syncing our local AD to Azure. Do we need Microsoft Entra Domain Services - Standard or is there an alternative?
A cloud-based identity and access management service for securing user authentication and resource access
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(201.6, 99%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ER%3C/text%3E%3C/svg%3E)
Hey Mike Chilson! It sounds like you're wondering whether to use Microsoft Entra Domain Services - Standard for syncing your local Active Directory (AD) to Azure, or if there are alternatives.
Here's a bit of info to help you out:
If you decide on Microsoft Entra Domain Services, be sure that it aligns with your organization's requirements for directory-based functionalities and access.
I hope this helps clarify your options! If you have more specific requirements or scenarios, feel free to share!
If you need more details or specific advice, here are some follow-up questions you might consider:
Feel free to provide more info, and I'll be happy to assist you further!
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(256, 24%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETN%3C/text%3E%3C/svg%3E)
@Mike Chilson (RUN STUDIOS LLC) the alternative I'd like to suggest would be Microsoft Entra Connect, if that helps
When syncing your local Active Directory (AD) to Azure, using Microsoft Entra Domain Services is not strictly necessary, but it can be beneficial depending on your requirements. Microsoft Entra Domain Services provides managed domain services such as domain join, group policy, LDAP, and Kerberos/NTLM authentication, which can be useful for applications that require these features in Azure.
If your applications do not require these specific features and you are primarily using Microsoft Entra ID for identity management, you may not need to implement Microsoft Entra Domain Services. Instead, you can use Microsoft Entra Connect to synchronize your local AD with Microsoft Entra ID, which allows users to access cloud resources without needing a managed domain.
Ultimately, the decision will depend on the specific needs of your applications and infrastructure. If you need traditional Active Directory features in the cloud, then Microsoft Entra Domain Services would be the right choice. Otherwise, you can manage with just Microsoft Entra ID and Microsoft Entra Connect.
References: