Hi @jan.fs , This documentation goes into a lot of detail on how you can accomplish this. If you look this over and have any questions I would be happy to answer them!
Best,
James
This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
Hello everyone,
Goal:
The goal is merging two domains into one domain to enable sso for office365 and authentification for all clients no matter if they are in the internal network or anywhere else.
Current State:
I don't really know where to start and what the perfect result should look like.
I think in the end there should be one main domain like ad.company.com running on our dc synced with the office365 cloud to enable single sign on.
Thank you for your help!
Hi @jan.fs .
If I really understood your question here: you have one DC under a ".local" domain and you would like to use your O365 custom domain "company.com" to setup SSO and let your users authenticate with your custom domain. if that's the case.
Then you will first need to add your O365 custom domain "company.com" as a UPN Suffix in AD.
To do that: go to your DC > Server manager > Tools > Active Directory Domain and Trusts > right click and then go to properties. Then you will be able to add your "company.com" domain as a UPN suffix.
Once you apply it, then you will be able to create all your users in AD with that domain "company.com".
Next, you will then need to download AAD-Connect and configure it to sync with your O365 environment.
Hi,
how-to-connect-install-prerequisites
For your information , merge your domains to ensure the SSO is not required because Azure Ad connect support the synchronization of many forest to get more details take a look on the following links:
how-to-connect-install-roadmap
please don't forget to mark this reply as answer if it help to fix your issue