Awesome overview, Travis! Thank you so much for providing excellent Azure content. 😎

Thanks for this nice guide!

Thanks for this explanation. Very Helpful.

This guy i swear i recognize his voice he has courses on cloud academy he is a celebrity

Great and clear to me!

Thanks again for this video! Love it

Hi Travis love your stuff didnt realize famous you are !

Limitation: Lack of cloud Kerberos trust, in Entra Domain Services, blocks sign in to domain joined' resources in Entra DS from Entra Joined desktops. Would you loose directory event logs in Defender for Identity (which is amazing) if you can't install it's agent/Defender for Endpoint?

What if we had done it and got stuck in all those limitations? I have three tenants like this. And i am looking for a solution to move to windows AD or a hybrid with least down time.

I'm confused by your Intune Enrollment limitation point. Wouldn't devices be Entra joined, so the auto enrollment would still work?

@Ciraltos

Ай бұрын

Devices joined to Entra DS are not Entra joined. Auto-enrollment with Windows AD joined devices requires Entra Connect Sync for Hybrid join. Entra Connect Sync is not supported with Entra DS. learn.microsoft.com/en-us/windows/client-management/enroll-a-windows-10-device-automatically-using-group-policy

Seems like a convoluted offering

We are at the moment on a journey to replace Active Directory, but it will take years and lots of effort

@Ciraltos

Ай бұрын

Windows AD has been in most businesses for over 20 years; it will take some time to remove all dependencies. It's good to recognize that at the beginning. Good luck!