Required Azure AD edition for hybrid identities

Philippe Guillon 21 Reputation points
2023-01-27T14:38:49.8466667+00:00

The Azure AD Connect feature for hybrid identities is available for free as part of an Azure subscription, according to this documentation:

https://learn.microsoft.com/en-us/azure/active-directory/hybrid/whatis-hybrid-identity

However, the table in this training module states that a P1 or P2 license is required for hybrid identities:

https://learn.microsoft.com/en-us/training/modules/configure-azure-active-directory/5-select-editions

The confusion seems to lie in the specific feature of allowing hybrid users to access both on-premises and cloud resources, which may require a P1 license. It is unclear whether this applies to the hybrid identities feature as a whole or only to the remote access to on-premises applications. Can you please clarify the license requirements?

Thank you

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,438 questions
0 comments
Accepted answer
  1. Marilee Turscak-MSFT 33,801 Reputation points Microsoft Employee
    2023-01-30T22:56:36.25+00:00

    Hi @Philippe Guillon ,

    Thanks for your post! You are correct that Azure AD Connect in itself just for basic synchronization is free, but more advanced features such as cross-tenant user synchronization and global password protection and management require at least a Premium P1 license. The official pricing page breaks down these features in more detail.

    User's image

    Synchronization of users/groups from on-premises to Azure AD works even with free version and without Premium licenses but other premium features such as Group assignment to applications, group provisioning to SaaS apps, password writeback, Self-service group management, and seamless access to on-premises and cloud capabilities would require an Azure AD Premium license.

    These licenses are always licensed per user. For an example, if you have 15 accounts then you need to buy 15 licenses for your tenant.

    Let me know if this helps. You can also chat with the Sales/Subscription team for free if you are looking for clarity around any of the pricing or licensing for specific features. https://azure.microsoft.com/en-us/contact/

    -

    If the information helped you, please Accept the answer. This will help us as well as others in the community who might be researching the same question.

    2 people found this answer helpful.

1 additional answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. JimmySalian-2011 41,916 Reputation points
    2023-01-27T17:18:25.8766667+00:00

    Hi,

    If it is Hybrid setup and requirement you will require Azure AD p1 - Azure Active Directory Premium edition adds feature-rich enterprise-level identity management capabilities and enables hybrid users to seamlessly access on-premises and cloud capabilities. This edition includes everything you need for information worker and identity administrators in hybrid environments across application access, self-service identity and access management (IAM), and security in the cloud.

    [https://azure.microsoft.com/en-gb/pricing/details/active-directory/

    Hope this helps.

    JS

    ==

    Please Accept the answer if the information helped you. This will help us and others in the community as well.

    0 comments