Lonnie Gaither
asked on
HCW8104 - The tenant Federated Organization Identifier is corrupt. No Delegation Trust Link.
I had this question after viewing Exchange 2013 Hybrid setup - HCW0 No federation trust is configured for this organization.
We have had an Office 365 tenant for years now, but have never migrated to it. Now that we wish to do so, I am getting the error in the subject line. Microsoft has worked on our inability to create a hybrid config off and on for the past year or more, with ZERO progress.
I see that one solution is to create a new tenant...does that mean creating an entirely new Office 365 account setup for our entire K-12 school district? It's hard to imagine that switching to an entirely new Office 365 tenant domain name would not be a huge headache!
Perhaps I just don't understand the process. It was mentioned in the solution article listed above.
HELP!
-=Lon=-
We have had an Office 365 tenant for years now, but have never migrated to it. Now that we wish to do so, I am getting the error in the subject line. Microsoft has worked on our inability to create a hybrid config off and on for the past year or more, with ZERO progress.
I see that one solution is to create a new tenant...does that mean creating an entirely new Office 365 account setup for our entire K-12 school district? It's hard to imagine that switching to an entirely new Office 365 tenant domain name would not be a huge headache!
Perhaps I just don't understand the process. It was mentioned in the solution article listed above.
HELP!
-=Lon=-
ASKER
The Get-FederatedOrganizationI
ExchangeVersion: 0.10 (14.0.100.0)
IsValid: True
WhenChanged: 8/15/2017
WhenCreated: 11/12/2010
ExchangeVersion: 0.10 (14.0.100.0)
IsValid: True
WhenChanged: 8/15/2017
WhenCreated: 11/12/2010
It seems a bit old, maybe they've introduced some changes since that are causing the issue? Try recreating it.
ASKER
How can I recreate it without deleting or breaking what is already in place?
Well that's the idea - remove what's already there as it does seem broken. The steps to create new trust are listed in the article I linked above.
ASKER
So, if we are talking about creating a new tenant, does that mean I need to register a new domain name and everything?
-=Lon=-
-=Lon=-
Registering a new tenant will take you a lot more compared to simply trying to recreate the trust.
ASKER
I have deleted and recreated the federation trust a couple of times, making sure to also change the DNS TXT records to match the new proof IDs. Creating the Federation Trust works (Microsoft Federation Gateway), adding the domains to the Federation Trust works, creating the Organizational Relationship does NOT work, and the Hybrid Config Wizard does NOT complete, and gives the message in the subject of this question.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks for that info Vasil. However, once I have used the wizard the first time and chosen the full hybrid configuration, I no longer have the option to select Minimal. I'm trying to research if it's possible to get that option back. Any idea if that's possible?
-=Lon=-
-=Lon=-
I guess it detects some setting on the tenant or the Hybrid object on-premises and thus doesnt allow you to use the minimal Hybrid option. You should definitely check with support, and have them escalate this.
Other than that, you can certainly use other migration methods, but they lack the end user experience offered by Hybrid.
Other than that, you can certainly use other migration methods, but they lack the end user experience offered by Hybrid.
ASKER
Well, we settled on using the Minimal Hybrid configuration, as that would allow the HCW to complete. Thanks for your help!
-=Lon=-
-=Lon=-
If support is giving you trouble, ask to get the issue escalated.