Introduction
Azure AD is a cloud-based identity and access management service, that helps employees sign in and access company resources such as Microsoft 365, the Azure portal, and thousands of other SaaS applications. AZURE AD provides the following features.
- Employee admin can enable Azure AD to require multi-factor authentication when accessing important organizational resources. You can use Azure AD to automate user provisioning between your existing Windows Server AD and your cloud apps, including Microsoft 365.
- If the company has any enterprise application that provides related company information, timesheet app, employee inventory management app, etc., then the company can develop any application that allows only company users to access this using Azure AD as a standards-based approach for adding single sign-on (SSO). They can also allow it to work with a user's pre-existing credentials and there's then no need to add any other registration or login screen for your application.
Create new tenant
- Log in to the personal / organization Azure portal here.
- Create a new Resource menu having “Azure Active Directory” as like below and click on Azure Active Directory.
- On Create a Tenant page, click on “Create active directory”.
On the create a tenant confirmation.
- Organization name: you can provide your organization name here
- Initial domain name: provide here your initial domain name
- Country/ Region: provide your country name.
You will get a new screen for review and confirmation of tenant creation, after validation, you will get an initial domain like this: <your domain name>.onmicrosoft.com, example MSDEVJS.onmicrosoft.com
Tenant creation is in progress and it will take a few minutes to get confirmation.
Your new tenant is created with the domain MSDEVJS.onmicrosoft.com.
Setup Custom Domain Name
You have successfully created a new Azure AD tenant with the default Microsoft subdomain. You can’t change the Microsoft default subdomain, but you can add your company's custom domain, it will help you to create an email and access the Microsoft app with your domain name.
Step 1. Select the option as a Custom Domain.
Step 2. Click on Add Custom domain in the menu options.
In the Custom domain name, enter your organization's new name, in this example, devenvexe.com. Select Add domain.
You must add a universal domain extension like .in, .com, etc.devenvexe.com. The page appears to show your DNS information. Save this information. You need to provide a TXT or MX record to configure DNS.
After you add your custom domain name to Azure AD, you must return to your domain registrar provider and add the Azure AD DNS information from your copied TXT file.
Creating this TXT record for your domain verifies ownership of your domain name.
Go back to your domain registrar. We have registered the domain in Big Rock and created a new TXT record for your domain based on your copied DNS information. Set the time to live (TTL) to 3600 seconds (60 minutes), and then add the record.
After you add your custom domain name, make sure it is valid in Azure AD. The domain registrar to Azure AD can take a few days, depending on your domain registrar.
Summary
In this article, you learned about how to create a new tenant with a custom domain in Azure Active Directory. If you have any questions/ feedback/ issues, please write them in the comment box.