how to enable hybrid azure ad join without ad connect sync when Organizational Unit is not in sync scope of AADC, still can we make device as Hybrid Azure AD join

Question

how to enable hybrid azure ad join without ad connect sync when Organizational Unit is not in sync scope of AADC, still can we make device as Hybrid Azure AD join

Kumkuse 21

I wanted to enable hybrid azure ad join without ad connect sync when Organizational Unit is not in sync scope of AADC, still can we make device as Hybrid Azure AD join.

I am able to check the documentations where sync is necessary/required . can the device can be joined as Hybrid Azure AD Join with out sync scope.

Please assist me on this issue.

Marilee Turscak-MSFT 37,206 Reputation points Microsoft Employee Moderator

2024-04-02T22:45:43.7633333+00:00

@Kumkuse , just checking to see if you were able to get the information you needed?

2 answers

Your answer

Marilee Turscak-MSFT 37,206 Reputation points Microsoft Employee Moderator

2024-04-02T22:45:43.7633333+00:00

@Kumkuse , just checking to see if you were able to get the information you needed?

Answer 1

Akhilesh Vallamkonda 15,320 Microsoft External Staff Moderator

Hi @Kumkuse

Thank you for reaching out to the community forum!

For your query I understand that you would like to know is it possible to enable hybrid Microsoft Entra ID join without AD Connect sync when the organizational unit is not in the sync scope of AADC.

To answer your question, it is not possible to enable Hybrid Microsoft Entra ID join without Microsoft Entra Connect sync, because hybrid Microsoft Entra ID join relies on Microsoft Entra Connect to synchronize computer objects from the on-premises Active Directory to Microsoft Entra ID.

Without synchronization, the computer object will not be available in Microsoft Entra ID, and the device cannot be Hybrid Microsoft Entra ID joined.

To enable Hybrid Microsoft Entra ID join, it’s necessary to configure Microsoft Entra Connect to synchronize the computer objects from the on-premises Active Directory to Microsoft Entra ID.

Hope this helps. Do let us know if you any further queries.

Thanks,
Akhilesh.

Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

Akhilesh Vallamkonda 15,320 Reputation points Microsoft External Staff Moderator

2024-03-18T14:26:38.0766667+00:00

@Kumkuse

Following up to see if the above answer was helpful. If this answers your query, do click Accept Answer and Yes for was this answer helpful. And, if you have any further query do let us know.
Akhilesh Vallamkonda 15,320 Reputation points Microsoft External Staff Moderator

2024-03-20T12:46:23.33+00:00

@Kumkuse

Following up to see if the above answer was helpful. If this answers your query, do click Accept Answer and Yes for was this answer helpful. And, if you have any further query do let us know.

Answer 2

Thameur-BOURBITA 36,261 Moderator

Hi @Kumkuse •

I am able to check the documentations where sync is necessary/required . can the device can be joined as Hybrid Azure AD Join with out sync scope.

The synchronization of computer object is required for hybrid join. We cannot talk about hybrid join without the synchronization of computer object through Entra connect For more information please read the microsoft article here : Configure Microsoft Entra hybrid join

Please don't forget to accept helpful answer

Thameur-BOURBITA 36,261 Reputation points Moderator

2024-03-22T14:13:00.93+00:00

@Kumkuse Just checking if there is any progress ?

Please don't forget to accept helpful answer
Steven Powell 0 Reputation points

2024-06-20T06:10:36.3233333+00:00

Can we not have AADC sync separate OUs to separate tenants? we have on on prem dc but 6 separate tenants for separate companies and at the moment we can only set one up for hybrid join.

Share via

how to enable hybrid azure ad join without ad connect sync when Organizational Unit is not in sync scope of AADC, still can we make device as Hybrid Azure AD join

2 answers

Your answer