This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
Hi, one of my customers runs an old version of Azure AD Connect with ADFS. I were planing to build a new AADC server and set it to staging mode to do a "swing" migration.
But when configuring new AADC, I am presented with a list of UPN suffixes used in the domain and I have to choose which one to federate with Azure AD. I was not expecting this, as all the UPN suffixes in the list are already federated by using the old AADC server. Is it safe to just let the wizard federate again, or will this break federation activated on the old server? Or is the process for swing migration when using ADFS different than when not using ADFS? Switching away from ADFS to other authentication is not relevant yet. Thanks, Ruslan
For your information, in a hybrid environment, you can install only one or two adconnect servers for each azure tenant.
Instaling 2 adconnect servers is required to ensure the high availability.
The both adconnect servers must have the same configuration, however you must keep only one active server ( with disabled staging mode).
In case of a problem on the active server you can switch to the second server (with enabled staging mode) by deactivating the staging mode.
Regarding your question, you must keep the same ADFS configuration, there will be no conflict between the two adconnect servers since the second server is always in staging mode and when you switch to second server (by disabling staging mode on second server and enabling it on old server) you will keep the same configuration adconnect for synchronisation and federation. Import and export Azure AD Connect configuration settings
Please don't forget to mark helpful answer as accepted
[https://learn.microsoft.com/en-us/azure/active-directory/hybrid/how-to-connect-sync-staging-server is how to setup the staging server.
What is requiring you to keep using ADFS?