Share via

Azure AD limitations

Vadim Bondaruk 41 Reputation points
2022-11-13T14:12:48.993+00:00

I am planning to migrate my app from on-prem to Azure Cloud. Currently there are about 600k users that are stored in Active Directory. It seems like there is 300k users limit for Azure AD free plan. Will i exceed this limit in case of using Azure AD Connect? Does synchronization type (hash synchronization, pass-through synchronization) somehow affect this limit?

Microsoft Security | Microsoft Entra | Microsoft Entra ID

2 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. JimmySalian-2011 44,721 Reputation points
    2022-11-13T14:29:39.01+00:00

    Hi Vadim

    I guess you will hit the max limit at 300k , so as per Microsoft the only way to design and plan the pre-reqs and solution for this kind of setup is to contact Microsoft and gather some valuable design inputs for this.

    259836-image.png

    You will be able to get to 300k only via the verified Domain in the AAD, however with Azure AD Pricing tiers you should be able to extend the limits, also I will suggest you to raise a Sales call with Microsoft to discuss this requirements.

    Hope this helps.
    JS

    ==
    Please Accept the answer if the information helped you. This will help us and others in the community as well.

    0 comments
  2. Sandeep G-MSFT 21,121 Reputation points Microsoft Employee Moderator
    2022-11-14T06:47:54.007+00:00

    @VadimBondaruk-5363

    There is a limit defined for directory objects in a given Azure AD tenant, which includes users, groups, applications, and servicePrincipals. By default, a maximum of 50,000 Azure AD resources can be created in the Free Edition of the Azure Active Directory tenant.

    When you add at least one verified domain in the tenant, the default Azure AD directory object limit is raised to 300,000. To go beyond the default quota, you must contact Microsoft Support and for the free edition of Azure Active Directory tenant, you can get it raised up to 500,000. If you have Azure AD Premium P1/P2, you can get it raised beyond 500,000 by contacting support and providing a business justification for the same.

    You can go through below article to get more information on this.
    https://learn.microsoft.com/en-us/azure/active-directory/enterprise-users/directory-service-limits-restrictions

    Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

    0 comments

Your answer

Answers can be marked as 'Accepted' by the question author and 'Recommended' by moderators, which helps users know the answer solved the author's problem.