Moving one (and only) user from Azure AD and keeping Office 365 / OneDrive
Reference: https://www.experts-exchange.com/questions/29172281/How-to-get-rid-of-AzureAD-logon-while-not-breaking-Exchange-email-OneDrive-etc.html
Now I have to actually do this. My notion is to disjoin from Azure AD first.
My concern is how to handle Office 365 - maybe that's not going to be a big deal as everyone else in the same office is using it without any Azure AD join.
And no SSO.
But, since I need this to go smoothly and efficiently, I figured I'd ask what I might expect and what steps I might plan on using.
I can have an account that is a member of local Administartors - all ready to go.
I believe I can disjoin from Azure AD.
I just want to make sure that Office, including OneDrive, is available.
Any hints or suggestions?
Now I have to actually do this. My notion is to disjoin from Azure AD first.
My concern is how to handle Office 365 - maybe that's not going to be a big deal as everyone else in the same office is using it without any Azure AD join.
And no SSO.
But, since I need this to go smoothly and efficiently, I figured I'd ask what I might expect and what steps I might plan on using.
I can have an account that is a member of local Administartors - all ready to go.
I believe I can disjoin from Azure AD.
I just want to make sure that Office, including OneDrive, is available.
Any hints or suggestions?
Vasil Michev (MVP)
Not sure I understand the quesiton here. If you remove the user from Azure AD, you will no longer be able to use any products associated with Office 365. Unless you are talking about personal OneDrive.
ASKER
Vasil Michev: Well, allow me to expand on the description of the situation:
There is a small office in which all of the people in the office use Office 365.
I have access to the Azure AD control panel and I can see that all of them are "listed" there.
None of the users (except the one of concern) are logged on to Azure AD. They log on to Windows with independent local accounts.
So, somehow they *ARE* using products associated with Office 365. And, I don't find that at all surprising as so many people do exactly that - completely oblivious to Azure.
However, the ONE user is logged on to Azure AD and this causes considerable confusion regarding file access on their local fileserving workstation.
The intent is to get this one person/computer into the same condition as all the others.
There is a small office in which all of the people in the office use Office 365.
I have access to the Azure AD control panel and I can see that all of them are "listed" there.
None of the users (except the one of concern) are logged on to Azure AD. They log on to Windows with independent local accounts.
So, somehow they *ARE* using products associated with Office 365. And, I don't find that at all surprising as so many people do exactly that - completely oblivious to Azure.
However, the ONE user is logged on to Azure AD and this causes considerable confusion regarding file access on their local fileserving workstation.
The intent is to get this one person/computer into the same condition as all the others.
He has probably "joined" the device to Azure AD (workspace join): https://docs.microsoft.com/en-us/azure/active-directory/devices/concept-azure-ad-join
You can check under Settings -> Accounts -> Access work or School, and if the account is listed there, hit the Disconnect button.
You can check under Settings -> Accounts -> Access work or School, and if the account is listed there, hit the Disconnect button.
ASKER
Yes. I'm sure that's what had been done.
The original question was about what we might expect to do with getting Office working after the change?
The original question was about what we might expect to do with getting Office working after the change?
Nothing, Office will work just fine. At most he will have to enter credentials.
ASKER
OK. I'l know in a couple of days. Thanks
I might describe the situation a bit more and why I'm being cautious:
This is a setup for which I provide network support but the users have been pretty good and willing to set things up themselves.
But, they are backing away from doing as much "hands on" computer work these days - they're busy with their mainline work!
The email for *all* the users comes through the services of some EXTERNAL Exchange server - and I know little about it.
They have their own company name in their email addresses: e.g. user@companyname.com
Sorry to be so pedantic but when I change this one computer, I sure don't want to lose his email. Worst case would be a disaster.
What should I do to ensure a smooth transition? That's the question and the focus right now is on the email and it's historical contents / messages.
I might describe the situation a bit more and why I'm being cautious:
This is a setup for which I provide network support but the users have been pretty good and willing to set things up themselves.
But, they are backing away from doing as much "hands on" computer work these days - they're busy with their mainline work!
The email for *all* the users comes through the services of some EXTERNAL Exchange server - and I know little about it.
They have their own company name in their email addresses: e.g. user@companyname.com
Sorry to be so pedantic but when I change this one computer, I sure don't want to lose his email. Worst case would be a disaster.
What should I do to ensure a smooth transition? That's the question and the focus right now is on the email and it's historical contents / messages.
ASKER
So far, I've done this.
We have another account set up which is a member of the local Administrators.
I have that logon working and I have Outlook email working there as well.
However, I'm having trouble "Disconnect" ing this account.
I log into the account and go to Settings \ Accounts\ Access work or school and click on the account.
I click on Disconnect
Click on YES
Click on Disconnect
At this point, it asks for alternate account info and asks for an email address.
Well, I have no intention of changing the email address so I enter it along with the password
The error message says:
That account info didn't work. Make sure you're entering info for a local administrator account and try again.
Well, gee, there is no local administrator account for which there would be a different email address.
There is a local administrator account which has no email address associated with it though......
????
We have another account set up which is a member of the local Administrators.
I have that logon working and I have Outlook email working there as well.
However, I'm having trouble "Disconnect" ing this account.
I log into the account and go to Settings \ Accounts\ Access work or school and click on the account.
I click on Disconnect
Click on YES
Click on Disconnect
At this point, it asks for alternate account info and asks for an email address.
Well, I have no intention of changing the email address so I enter it along with the password
The error message says:
That account info didn't work. Make sure you're entering info for a local administrator account and try again.
Well, gee, there is no local administrator account for which there would be a different email address.
There is a local administrator account which has no email address associated with it though......
????
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks!