![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(32, 1%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAM%3C/text%3E%3C/svg%3E)
25,151 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(246.4, 20%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESM%3C/text%3E%3C/svg%3E)
Hi Anwar,
As you said it differs from environment to environment and there is some sort of similarlity when you go for Azure Hybrid or SSO deployment, I have come across various environments and issues some of them are :
- Legacy Applications integration
- Onpremise ADFS
- Legacy Operating System for Applications
- Multiple Forests and Domains - all having different FL/DL, User naming standards
- Windows Hello for Business - had issues with multiple domains and single AAD Connect
- Virtual Machine migrations sometimes doesnt work due to the configuration on the source servers customization
- Compliance and Security policies tagging in O365 is very good but testing is required prior to deployment wider audience
- Conditional Access Policies is a excellent tool but requires lot of testing and mapping of user base and devices
- If you are starting try implementing Zero Trust so security is important and baselining the current env will be good
- Password Policies and implementaton - read about it over here in the faqs - active-directory-faq
- Follow the checklist and all the important bits - active-directory-deployment-checklist-p2
Hope this helps and provide some info for your project.
==
Please "Accept the answer" if the information helped you. This will help us and others in the community as well.
