Two way trust between Azure AD P1 and on prem AD

Anonymous
2022-07-18T09:26:35.127+00:00

Hi,

I have company A that has only a footprint in M365 cloud with an Azure P1 ad license.
I have company B that has AD on prem en M365 (AADConnect, ExchangeOnline,...)

Company A wants to have a ad two way trust with Company B, so they can use the same account and have access on prem and in the cloud of Company B.

In the olden days you would have AD on prem and setup a two way trust between the two AD's, use some AD groups to organize the permissions.
But company A is cloud only, so is it possible to do this connection?

Kind regards,

Tom

Microsoft Security | Microsoft Entra | Microsoft Entra ID
Microsoft Security | Microsoft Entra | Other
0 comments No comments
{count} votes

Accepted answer
  1. Alan Kinane 16,951 Reputation points MVP Volunteer Moderator
    2022-07-18T09:38:38.5+00:00

    Azure AD (Azure P1) is not an Active Directory environment and does not native support forest/domain trusts. The only way to have a two-way trust would be to introduce Active Directory to company A.

    However, you can have a one-way trust by introducing Azure Active Directory Domain Services to Company A.

    https://learn.microsoft.com/en-us/azure/active-directory-domain-services/overview

    https://learn.microsoft.com/en-us/azure/active-directory-domain-services/tutorial-create-forest-trust

    0 comments No comments

0 additional answers

Sort by: Most helpful

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.