On Premise AD joined PCs to Azure AD joined configuring SCP

Elias Giannakoulias 21 Reputation points
2023-06-06T08:01:57.3633333+00:00

Hello All,

this is more like a general question and not so tech related.

We want our AD joined PCs to become Hybrid Azure AD joined so as to use the benefits of both worlds. We have already a hybrid environment with Azure AD, but only for Users.

following the MS guides for Hybrid Azure AD implementation, the first step is to crate a SCP using the Azure Connector.

  1. Has anyone, ever, configured the SCP in Azure Connector?
  2. Is there any considerations?
  3. Any Impact or change on the already AD joined PCs?

As i said, i'm looking for feedback. Experience you may had working with a similar implementation.

Any input would be much appreciated.

Regards,

Elias

Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
6,711 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
22,401 questions
0 comments No comments
{count} votes

Accepted answer
  1. JimmySalian-2011 42,176 Reputation points
    2023-06-06T08:17:46.8266667+00:00

    Hi,

    I will suggest you to carry out a POC for few devices before you rollout to the wider audience and also follow the detailed guidelines from MS, basically the SCP configuration is a pre-requisites to setup hybrid deployment and this is known as targeted deployments where you deploy only on few devices.

    For Azure AD Connect the process is automated with Azure Hybrid - https://learn.microsoft.com/en-us/azure/active-directory/devices/howto-hybrid-azure-ad-join#configure-hybrid-azure-ad-join

    Targeted Deployment on few devices follow this - https://learn.microsoft.com/en-us/azure/active-directory/devices/hybrid-azuread-join-control

    There is no impact on the already joined PCs and make sure you have backup of all the configuration and documented so it helps you to plan out accordingly.


    Please don't forget to upvote and Accept as answer if the reply is helpful

    0 comments No comments

1 additional answer

Sort by: Most helpful
  1. Elias Giannakoulias 21 Reputation points
    2023-06-06T09:00:21.16+00:00

    Hi,

    thank you for your reply.

    Basically we have reviewed these documents and yes you're right, it's better to follow a targeted deployment.

    i was looking more like a personal experience. someone who has gone through this.

    i will mark the answer as Accepted, but i would like to gather more feedback from as many people as i can.

    Thanks again.

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.