On Premise AD joined PCs to Azure AD joined configuring SCP

Elias Giannakoulias 21 Reputation points
2023-06-06T08:01:57.3633333+00:00

Hello All,

this is more like a general question and not so tech related.

We want our AD joined PCs to become Hybrid Azure AD joined so as to use the benefits of both worlds. We have already a hybrid environment with Azure AD, but only for Users.

following the MS guides for Hybrid Azure AD implementation, the first step is to crate a SCP using the Azure Connector.

  1. Has anyone, ever, configured the SCP in Azure Connector?
  2. Is there any considerations?
  3. Any Impact or change on the already AD joined PCs?

As i said, i'm looking for feedback. Experience you may had working with a similar implementation.

Any input would be much appreciated.

Regards,

Elias

Windows for business | Windows Client for IT Pros | Directory services | Active Directory
Microsoft Security | Microsoft Entra | Microsoft Entra ID
0 comments No comments
{count} votes

Accepted answer
  1. JimmySalian-2011 42,611 Reputation points
    2023-06-06T08:17:46.8266667+00:00

    Hi,

    I will suggest you to carry out a POC for few devices before you rollout to the wider audience and also follow the detailed guidelines from MS, basically the SCP configuration is a pre-requisites to setup hybrid deployment and this is known as targeted deployments where you deploy only on few devices.

    For Azure AD Connect the process is automated with Azure Hybrid - https://learn.microsoft.com/en-us/azure/active-directory/devices/howto-hybrid-azure-ad-join#configure-hybrid-azure-ad-join

    Targeted Deployment on few devices follow this - https://learn.microsoft.com/en-us/azure/active-directory/devices/hybrid-azuread-join-control

    There is no impact on the already joined PCs and make sure you have backup of all the configuration and documented so it helps you to plan out accordingly.


    Please don't forget to upvote and Accept as answer if the reply is helpful

    0 comments No comments

2 additional answers

Sort by: Most helpful
  1. Elias Giannakoulias 21 Reputation points
    2023-06-06T09:00:21.16+00:00

    Hi,

    thank you for your reply.

    Basically we have reviewed these documents and yes you're right, it's better to follow a targeted deployment.

    i was looking more like a personal experience. someone who has gone through this.

    i will mark the answer as Accepted, but i would like to gather more feedback from as many people as i can.

    Thanks again.

    0 comments No comments

  2. Sergio Gonzalez 0 Reputation points
    2025-06-10T18:54:29.92+00:00

    I hate reviving a 2 year old post, but I have done so, and there have been no surprises that have popped out. Nothing screaming at me, no big gotcha's.

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.