Share via

Hybrid Azure AD and Multiple Forests

Murat-4795 475 Reputation points
2023-09-05T13:29:48.72+00:00

Hi,

We are planning to sync our on-premises AD to Azure using Azure AD Connect. We want to do this in an isolated manner. We have three domains, and each should be synced independently, without depending on the other domains. What is the right way to accomplish this?

Kind regards,

Murat

Azure
Azure
A cloud computing platform and infrastructure for building, deploying and managing applications and services through a worldwide network of Microsoft-managed datacenters.
1,025 questions
Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
6,622 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
22,069 questions
0 comments
Accepted answer
  1. Andy David - MVP 149.1K Reputation points MVP
    2023-09-05T14:35:06.41+00:00

    Well, if you want to use AADConnect, that is the only supported config.

    If you want to use AADConnect and Azure AD Cloud Sync, then you can do what you want.

    In other words, one forest has AADConnect, the others have Azure AD Cloud Sync

    https://learn.microsoft.com/en-us/azure/active-directory/hybrid/cloud-sync/what-is-cloud-sync

    User's image

    0 comments

1 additional answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Andy David - MVP 149.1K Reputation points MVP
    2023-09-05T14:09:45.66+00:00

    3 domains or 3 forests?

    I assume AD forests. You can do this, since each forest SHOULD have unique values.

    You can see it's supported here:

    https://learn.microsoft.com/en-us/azure/active-directory/hybrid/connect/plan-connect-topologies#multiple-forests-single-azure-ad-tenant

    User's image

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.