Become a Member My Atlas
Insights
Training
Advisory & Negotiation
Free Resources
About
Contact Us
Search
Become a Member

Updated: July 15, 2020 (November 7, 2016)

  Analyst Report Archived

Integrating AD and Azure Active Directory

My Atlas / Analyst Reports

921 wordsTime to read: 5 min
Wes Miller by
Wes Miller

Wes Miller analyzes and writes about Microsoft’s security, identity management, and systems management technologies. Before joining Directions on Microsoft, Wes... more

Organizations deploying Microsoft’s hosted services, including Office 365, Intune, and Azure, already use Azure Active Directory (AAD) to authenticate to these services and enforce licensing compliance. Organizations with both AAD and on-premises directories need to integrate those directories to integrate management and simplify sign-on for users. Ongoing changes and updates to AAD, including management, security, and reporting features, require staying alert to avoid redundant AAD tenancies and ensure proper integration with on-premises directories.

Integration Options

Organizations can choose to integrate existing on-premises directories (such as Active Directory Domain Services [AD DS]) into AAD. The degree of integration can span the spectrum from no integration to synchronization of directory information to synchronization and federation, where authentication is performed by the on-premises directory, not AAD. Each scenario offers different trade-offs of security, manageability, and infrastructure required to perform integration. (For a summary of these scenarios, see the chart “AD DS and AAD Integration“.)

Atlas Members have full access

Get access to this and thousands of other unbiased analyses, roadmaps, decision kits, infographics, reference guides, and more, all included with membership. Comprehensive access to the most in-depth and unbiased expertise for Microsoft enterprise decision-making is waiting.

Membership Options

Already have an account? Login Now