![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(99.2, 70%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMF%3C/text%3E%3C/svg%3E)
25,080 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(188.79999999999998, 26%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EN%3C/text%3E%3C/svg%3E)
Yes, it is possible to use Microsoft Entra ID (formerly known as Azure Active Directory, Azure AD) without the additional Microsoft Entra Domain Services. Microsoft Entra Domain Services provides managed domain services such as domain join, group policy, LDAP, and Kerberos/NTLM authentication that are similar to those provided by on-premises Active Directory. However, these services are not required for basic Entra ID functionality, including Single Sign-On (SSO) for applications.
Understanding Microsoft Entra ID and Entra Domain Services
- Microsoft Entra ID: This is the core identity and access management service that provides SSO, multi-factor authentication, and conditional access. It allows you to manage user identities and access to cloud applications like Slack, Office 365, and other SaaS applications.
- Microsoft Entra Domain Services: This is an add-on that provides traditional domain services in the cloud. It is useful if you need to manage legacy applications that rely on Windows Server Active Directory features, but it comes with additional costs.
Using Microsoft Entra ID Without Domain Services
For your requirements, which include SSO for applications like Slack, you only need Microsoft Entra ID. You do not need the Domain Services add-on. Here’s what you should do:
Sign Up for Microsoft Entra ID: You can sign up for Microsoft Entra ID and choose the appropriate pricing tier (P1 or P2) based on your needs. The P2 tier includes advanced features like Identity Protection and Privileged Identity Management.
Configure Single Sign-On (SSO): You can configure SSO for your applications directly in the Microsoft Entra portal. This allows your users to sign in once and access multiple applications.
No Need for Domain Services: Unless you have a specific requirement for domain join, group policies, or other domain-based features for legacy applications, you can skip the Domain Services.
Example Steps to Configure SSO for Slack
Access Microsoft Entra ID Portal:
- Go to the Microsoft Entra ID Portal. Add Slack Application:
- Navigate to Enterprise applications.
- Click on New application and search for Slack.
- Follow the prompts to add Slack as an enterprise application.
Configure SSO:
- In the Slack application settings, go to the Single sign-on section.
- Choose the appropriate SSO method (SAML, OAuth, etc.).
- Follow the setup instructions provided by Slack and Entra ID.
- Choose the appropriate SSO method (SAML, OAuth, etc.).
Assign Users and Groups:
- Assign the users or groups that should have access to Slack.
Cost Considerations
- Entra ID Licensing: You will be billed based on the number of users and the tier of Entra ID you choose (e.g., P1 or P2).
- Avoid Domain Services: Since you do not need Microsoft Entra Domain Services, you can avoid the additional $109.50 per month cost associated with it.Yes, it is possible to use Microsoft Entra ID (formerly known as Azure Active Directory, Azure AD) without the additional Microsoft Entra Domain Services. Microsoft Entra Domain Services provides managed domain services such as domain join, group policy, LDAP, and Kerberos/NTLM authentication that are similar to those provided by on-premises Active Directory. However, these services are not required for basic Entra ID functionality, including Single Sign-On (SSO) for applications. Understanding Microsoft Entra ID and Entra Domain Services
- Microsoft Entra ID: This is the core identity and access management service that provides SSO, multi-factor authentication, and conditional access. It allows you to manage user identities and access to cloud applications like Slack, Office 365, and other SaaS applications.
- Microsoft Entra Domain Services: This is an add-on that provides traditional domain services in the cloud. It is useful if you need to manage legacy applications that rely on Windows Server Active Directory features, but it comes with additional costs.
- Sign Up for Microsoft Entra ID: You can sign up for Microsoft Entra ID and choose the appropriate pricing tier (P1 or P2) based on your needs. The P2 tier includes advanced features like Identity Protection and Privileged Identity Management.
- Configure Single Sign-On (SSO): You can configure SSO for your applications directly in the Microsoft Entra portal. This allows your users to sign in once and access multiple applications.
- No Need for Domain Services: Unless you have a specific requirement for domain join, group policies, or other domain-based features for legacy applications, you can skip the Domain Services.
- Access Microsoft Entra ID Portal:
- Go to the Microsoft Entra ID Portal.
- Add Slack Application:
- Navigate to Enterprise applications.
- Click on New application and search for Slack.
- Follow the prompts to add Slack as an enterprise application.
- Configure SSO:
- In the Slack application settings, go to the Single sign-on section.
- Choose the appropriate SSO method (SAML, OAuth, etc.).
- Follow the setup instructions provided by Slack and Entra ID.
- Assign Users and Groups:
- Assign the users or groups that should have access to Slack.
- Entra ID Licensing: You will be billed based on the number of users and the tier of Entra ID you choose (e.g., P1 or P2).
- Avoid Domain Services: Since you do not need Microsoft Entra Domain Services, you can avoid the additional $109.50 per month cost associated with it.