Updated: July 15, 2020 (May 26, 2014)

  Charts & Illustrations

Comparing Windows Server Active Directory and Azure Active Directory

My Atlas / Charts & Illustrations

260 wordsTime to read: 2 min
Michael Cherry by
Michael Cherry

Michael analyzed and wrote about Microsoft's operating systems, including the Windows client OS, as well as compliance and governance. Michael... more

Windows Server Active Directory (AD) and Azure Active Directory (Azure AD) share a common heritage and name and both play an important role in Microsoft’s identity management services, but there are significant differences between them. The following chart details the main differences between Windows Server AD and Azure AD.

Windows Server AD is the authentication and authorization service for most of an organization’s infrastructure, including the organization’s devices, line-of-business applications, third-party applications, and on-premises installations of Microsoft applications, such as Exchange.

Azure AD is a multitenant, Microsoft-hosted service, designed to work with a variety of hosted applications from Microsoft and third parties, as well as with other private and public identity providers.

Windows Server AD can also run in Azure-hosted virtual machines (VMs). However, in this configuration, each organization manages all AD servers (domain controllers) and their underlying Windows Server OS installations. With Azure AD, in contrast, Microsoft manages the underlying infrastructure, leaving the customer organization to manage only its users, groups, and other directory data.

Atlas Members have full access

Get access to this and thousands of other unbiased analyses, roadmaps, decision kits, infographics, reference guides, and more, all included with membership. Comprehensive access to the most in-depth and unbiased expertise for Microsoft enterprise decision-making is waiting.

Membership Options

Already have an account? Login Now