Hybrid Azure AD and Multiple Forests

Murat-4795 470 Reputation points
2023-09-05T13:29:48.72+00:00

Hi,

We are planning to sync our on-premises AD to Azure using Azure AD Connect. We want to do this in an isolated manner. We have three domains, and each should be synced independently, without depending on the other domains. What is the right way to accomplish this?

Kind regards,

Murat

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
16,564 questions
Azure
Azure
A cloud computing platform and infrastructure for building, deploying and managing applications and services through a worldwide network of Microsoft-managed datacenters.
558 questions
Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
4,850 questions
0 comments
Accepted answer
  1. Andy David - MVP 130.5K Reputation points MVP
    2023-09-05T14:35:06.41+00:00

    Well, if you want to use AADConnect, that is the only supported config.

    If you want to use AADConnect and Azure AD Cloud Sync, then you can do what you want.

    In other words, one forest has AADConnect, the others have Azure AD Cloud Sync

    https://learn.microsoft.com/en-us/azure/active-directory/hybrid/cloud-sync/what-is-cloud-sync

    User's image

    0 comments

1 additional answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Andy David - MVP 130.5K Reputation points MVP
    2023-09-05T14:09:45.66+00:00

    3 domains or 3 forests?

    I assume AD forests. You can do this, since each forest SHOULD have unique values.

    You can see it's supported here:

    https://learn.microsoft.com/en-us/azure/active-directory/hybrid/connect/plan-connect-topologies#multiple-forests-single-azure-ad-tenant

    User's image