Share via

SCP de Microsoft Windows Server Active Directory

Javier Jordan 0 Reputation points
2024-09-25T15:02:22.49+00:00

Buenos días, Estamos revisando la posibilidad de activar el dominio Hibrido con entra ID y nos gustaría hacerlo de forma controlada. En la documentación proporcionada he podido revisar que existe la posibilidad haciendo cambios en la configuración SCP del Active Directory local. Ante esta configuración me surge una duda, si modifico los parámetros que me indica la documentación, afectaré a la sincronización de los usuarios que ya estamos realizando? Por otro lado, si activo la unión a Dominio hibrido, pero previamente he cambiado las OU de sincronización para que no incluir a los servidores, estos se sincronizaran o la opción de hybrid entra id join es independiente a estas opciones? Gracias.

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
22,190 questions
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Raja Pothuraju 8,095 Reputation points Microsoft Vendor
    2024-10-04T22:25:31.1166667+00:00

    Hello @Javier Jordan,

    Thank you for posting your query on Microsoft Q&A.

    Based on your description, I understand that you are trying to enable SCP (Service Connection Point) configuration through Microsoft Entra Connect to make devices Microsoft Entra hybrid join machines. It seems you have a few questions regarding this setup:

    1. Will modifying the parameters indicated in the documentation affect the synchronization of the users we are already syncing?

    Modifying the parameters for SCP configuration in the local Active Directory should not affect the synchronization of users you're already syncing. SCP configuration is used by devices to discover your Azure AD tenant information and is unrelated to user synchronization.

    2. If I enable Hybrid Domain Join but have previously excluded servers from the sync OUs, will the servers be synchronized, or is the Hybrid Entra ID join option independent of these settings?

    Enabling Microsoft Entra hybrid join is independent of the sync OUs you’ve configured. If you have excluded servers from the sync OUs, they will not be synchronized, regardless of the hybrid join configuration. However, devices that are included in the sync OUs (such as Windows 10 or 11 machines) will still be eligible for Microsoft Entra hybrid join.

    I hope this information is helpful. Please feel free to reach out if you have any further questions.

    If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".

    Thanks,
    Raja Pothuraju.

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.