Any impact to users PC when configured Entra hybird join?

Jero Cheng 140 Reputation points
2024-04-15T06:34:00.9933333+00:00

Hello

My company running a hybrid environment (on-prem AD and Azure).

I would like to setup a conditional access policy that require users device compliant with Entra hybrid join.

And will deploy Intune to Windows laptop later.

I study the below KB

https://learn.microsoft.com/en-us/entra/identity/devices/how-to-hybrid-join

It seems quite simple and straight forward.just enable in the [Azure AD connect]

But I would like to know after I configured this in the [Azure AD connect].

What impact will be happen to users?

Or the only result is the devices will be seen in Entra ID admin portal and no impact to users?

If a PC is fail to setup the Entra Hybird join,will it become inaccessible or user cannot login the PC?

I would like to clarify this before I setup the Entra Hybrid join in [Azure AD connect].

I do not have any policy or GPO related to Hybrid join yet.

Thanks

Windows 11
Windows 11
A Microsoft operating system designed for productivity, creativity, and ease of use.
9,847 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
22,068 questions
{count} votes

1 answer

Sort by: Most helpful
  1. Sandeep G-MSFT 19,686 Reputation points Microsoft Employee
    2024-04-19T09:30:23.6333333+00:00

    @Jero Cheng

    Thank you for posting this in Microsoft Q&A.

    As I understand you want to know the impact on user's if you set up hybrid Entra join for user devices.

    Since you already have hybrid environment it means that users are already synced to Entra ID and they are currently accessing there Entra resources.

    If you do a device hybrid Entra ID join, there is no impact on users. User's will be able to utilize the Single Sign-on capability.

    Apart from that as per your requirement, you will be able to configure conditional access policies devices.

    If the device failed to Hybrid Entra ID join, then users will still be able to login to the device because while logging in to device users will use there on-premises credentials.

    Only single sign-on will fail for Entra ID resources. Or if you have set up any conditional access policy for any Entra resource, then even that will fail.

    Apart from this there is no other impact if Hybrid Entra ID join fails.

    Let me know if you have any further questions.

    Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.