How To Convert Federated Domain To Managed Domain In Azure AD - Part One

Radhakrishnan Govindan
Dec 09, 2018

30.4k
0
4
- facebook
- twitter
- linkedIn
- Reddit
- WhatsApp
- Email
- Print
- Other Artcile

In this article, we will see how to convert a federated domain which is using the ADFS Authentication against the on-premises Active Directory to Managed Authentication against Azure Active Directory(AAD). ADFS Authentication is a token-based authentication and it is very secured wherein it has some limitation as it requires a Web Application Proxy(WAP) set up to allow the users to get authenticated from the connected internet.

ADFS Authentication has some limitations and it is time consuming process. Most of the organizations prefer ADFS Authentication since they don’t want to sync the passwords to Azure AD. On the other hand, the Azure AD authentication is very fast and secured. It removes the dependency of On-premises.

To convert to a managed domain, we need to do the following tasks.

Enable the Password sync using the AADConnect Agent Server
Sync the Passwords of the users to the Azure AD using the Full Sync
Convert the domain from Federated to Managed
check the user Authentication happens against Azure AD

Let’s do it one by one,

Enable the Password sync using the AADConnect Agent Server.

Login to AADConnect Server, Open Azure AD Connect. Ensure Sync is not in progress if it is in progress ensure that Sync Cycle is completed and open the AAD Connect

Convert Federated Domain To Managed Domain In Azure AD

Click on Configure.

Select Customize Synchronization Options and click "Next".

Enter the Office365 Global Admin Credentials. Ideally, it should be created in the Office365 tenant and enabled with Global Administrator, ID should be like [email protected].