Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

Office 365 Exchange 2013 Hybrid - Federating a second domain Azure AD

Posted on 2016-08-05
2
50 Views
Last Modified: 2016-08-08
Hello,

We have recently added/verified another domain to Office 365 and would like to Federate it. As of this moment Azure AD is reporting:

Domains Verified for Directory Sync: 2
Domains Configured For Single Sign-On: 1

The instructions for "Configuring An Existing Customer Domain For Single Sign-On" gives me the command:

Convert-MsolDomainToFederated –DomainName domainname.com

My concern is Microsoft's statement in their article which states: "It’s best to perform a conversion when there are the fewest users, such as on a weekend, to reduce the impact on your users."

They don't exactly say or describe what that "impact" will be!

My questions

1. Does anyone know what this "impact" will be?
2. Will this at all affect existing users that are currently logged in via the initial federated domain?
3. Does this change require any additional changes with Azure AD Sync or within On-Premise ADFS?

Any insight or help would be greatly appreciated!
0
Comment
Question by:danherbon
2 Comments
 
LVL 40

Accepted Solution

by:
Vasil Michev (MVP) earned 500 total points
ID: 41744915
Just to clean things up a bit first - Hybrid has nothing to do with AD FS, don't mix them up.

As for federating additional domains, you basically need to recreate the trust with O365. Well, if it's a subdomain, you dont need to do anything. For example, if you have federated domain.com, then uk.domain.com will automatically be federated as well. If you are trying to federate anotherdomain.com however, you need to redo things with using the SupportMultipledomain switch. Details for example here: http://www.msexchange.org/blogs/walther/news/office-365-adfs-support-for-mutiple-upns-724.html

And you need to be careful if you have multiple subdomains: https://blogs.technet.microsoft.com/abizerh/2013/02/05/supportmultipledomain-switch-when-managing-sso-to-office-365/
0
 
LVL 1

Author Closing Comment

by:danherbon
ID: 41747539
Thanks!
0

Featured Post

Master Your Team's Linux and Cloud Stack!

The average business loses $13.5M per year to ineffective training (per 1,000 employees). Keep ahead of the competition and combine in-person quality with online cost and flexibility by training with Linux Academy.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Last week, our Skyport webinar on “How to secure your Active Directory” (https://www.experts-exchange.com/videos/5810/Webinar-Is-Your-Active-Directory-as-Secure-as-You-Think.html?cid=Gene_Skyport) provided 218 attendees with a step-by-step guide for…
The Nano Server Image Builder helps you create a custom Nano Server image and bootable USB media with the aid of a graphical interface. Based on the inputs you provide, it generates images for deployment and creates reusable PowerShell scripts that …
how to add IIS SMTP to handle application/Scanner relays into office 365.
In this video I am going to show you how to back up and restore Office 365 mailboxes using CodeTwo Backup for Office 365. Learn more about the tool used in this video here: http://www.codetwo.com/backup-for-office-365/ (http://www.codetwo.com/ba…

860 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question