BeGentleWithMe-INeedHelp
asked on
How do we keep domain and office 365 hosted exchange passwords in sync with sbs 2011 standard?
Sorry if this seems so ignorant.
A couple different companies are moving to office 365 for hosted exchange from their sbs 2011 standard network (We'll keep the server around for file sharing for now). Each location has about 15 users.
I know from dealing with SBS essentials that it keeps the domain passwords in sync with the office 365 hosted exchange passwords.
There's a DIrSync tool I walked through in office 365 admin and it dissuades you from doing that for less than 50 users.
a) do you agree that there's no need / not wanted to keep the office 365 password in sync with the inhouse domain computer login password?
b) If you don't agree, with SBS 2011 standard, what are the options to be able to keep them in sync? I thin k I saw something about azure active directory. is that the only way?
c) If Azure AD is needed, what's the cost? That's a different interface, exprience than office 365? Is pricing like office 365 (a flat amount per month) or does it depend on usage - number of accesses, etc?
there;s likely loads of more questions I have once I get pointed in the right direction.,
A couple different companies are moving to office 365 for hosted exchange from their sbs 2011 standard network (We'll keep the server around for file sharing for now). Each location has about 15 users.
I know from dealing with SBS essentials that it keeps the domain passwords in sync with the office 365 hosted exchange passwords.
There's a DIrSync tool I walked through in office 365 admin and it dissuades you from doing that for less than 50 users.
a) do you agree that there's no need / not wanted to keep the office 365 password in sync with the inhouse domain computer login password?
b) If you don't agree, with SBS 2011 standard, what are the options to be able to keep them in sync? I thin k I saw something about azure active directory. is that the only way?
c) If Azure AD is needed, what's the cost? That's a different interface, exprience than office 365? Is pricing like office 365 (a flat amount per month) or does it depend on usage - number of accesses, etc?
there;s likely loads of more questions I have once I get pointed in the right direction.,
Before implementing Azure AD connect aka dirsync you need to Set UPN on all users to match the Primary SMTP address in AD. for all syncing users i.e. from .local to .com
So basically you can go to domains and trust and add the UPN for the domain which is registered in O365 tenant.
So basically you can go to domains and trust and add the UPN for the domain which is registered in O365 tenant.
c) If Azure AD is needed, what's the cost? That's a different interface, exprience than office 365? Is pricing like office 365 (a flat amount per month) or does it depend on usage - number of accesses, etc?
Azure AD connect is implemented in your onpremise environment so there is cost with regards to hardware and no cost with regards to O365 license and all.
Azure AD connect is implemented in your onpremise environment so there is cost with regards to hardware and no cost with regards to O365 license and all.
ASKER
OK, maybe I'm not asking the right question? Or you misunderstood?
Or more likely - this just reaffirms my thinking that Microsoft is soooo convoluted and F__d up.
Their Azure AD, based on Azure, their CLOUD BASED SERVERS.... needs MORE hardware at my office and is implemented in house?
Or more likely - this just reaffirms my thinking that Microsoft is soooo convoluted and F__d up.
Their Azure AD, based on Azure, their CLOUD BASED SERVERS.... needs MORE hardware at my office and is implemented in house?
Yes, If you need to sync passwords then yes no choice.
If you do not want to sync passwords, then users domain password and email password will be different.
You also have an option to install Azure AD connect on a DC if it has the above requirement of OS passed just to SAVE HARDWARE COST...................... ....MICROS OFT....... .......... ........
If you do not want to sync passwords, then users domain password and email password will be different.
You also have an option to install Azure AD connect on a DC if it has the above requirement of OS passed just to SAVE HARDWARE COST......................
ASKER
what do most people do? why do they call it azure AD then?
So am I way off base? i thought Microsoft is pushing everything to the cloud... you have your onedrive for shared files, hosted exchange. And AD in the cloud. So people at work have just desktops, no servers in the office?
So am I way off base? i thought Microsoft is pushing everything to the cloud... you have your onedrive for shared files, hosted exchange. And AD in the cloud. So people at work have just desktops, no servers in the office?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
You need to have a separate member server joined in domain.
We need the Azure AD server with Windows 2008 R2 SP1 and above operating system for installation of AD Connect. The following versions of the Windows Server operating system are supported for DirSync:
• Windows Server 2008 R2 Standard, Enterprise or Datacenter edition with SP1 or later
• Windows Server 2012 Standard or Datacenter
• Windows Server 2012 R2 Standard or Datacenter