Hi Kamil D,
Thank you for your patience and apologies for the delayed response.
According to the documentation, the installation prerequisites specify domain-joined servers. However, it is also possible to install Microsoft Entra Connect on a non-domain joined server. This statement is valid due to the following explanation:
Microsoft Entra Connect is engineered to deliver authentication and access control functionalities irrespective of whether the server is integrated into a domain environment or not. This adaptability empowers organizations to implement Entra Connect across diverse network configurations, including standalone environments where servers may not be affiliated with a domain. Hence, installing Entra Connect on a non-domain joined server constitutes a legitimate and supported configuration.
While less prevalent, there may exist scenarios necessitating the management of identities from a server not included in the domain. For instance, this could be applicable in cases where a distinct management network is established or connectivity to external systems is required. Consequently, deploying Entra Connect on a non-domain joined server is a possible approach.
It is essential to recognize that the selection of server type depends on the specific requirements, security policies, and best practices of the organization. Consequently, it is imperative to carefully consider the security implications and ensure the implementation of proper access controls regardless of the chosen server type.
If the provided information proves beneficial, please indicate your approval by clicking the "Upvote" or "Accept Answer" button.