question

RuslanNalivaika-9169 avatar image
0 Votes"
RuslanNalivaika-9169 asked ·

Automatic device join in single AD - multiple Azure topology

Hi all,

Our customer is considering implementing topology with single onprem AD synchronized to multiple Azure AD tenants, using a single ADFS farm. The customer needs availability of Autopilot with Hybrid AD join for devices in all Azure AD tenants.

The document in the link below suggests that this is not supported, but maybe somebody has experience with this kind of set up and can comment ?

MS documentation also says that device writeback is not supported in such topology. But as I understand, that should not be an issue when using Autopilot, because it is the Intune connector (and not the AD sync agent) that creates onprem AD account for the machine, is that correct ?

https://docs.microsoft.com/en-us/azure/active-directory/hybrid/how-to-connect-fed-single-adfs-multitenant-federation

BR, Ruslan

azure-active-directoryadfsazure-ad-connect
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

NagappanVeerappan-MSFT avatar image
0 Votes"
NagappanVeerappan-MSFT answered ·

Thank you for reaching out. Since this Intune supporting multiple connector and doing Domain join (offline) for Hybrid Azure AD Join. I would recommend to check with Intune and Auto pilot team on supportability point.

As long as Intune connector have the ability to reach correct on-prem AD forest to create/delete computer objects. it should work. Since I am from Azure AD team, I can't comment on support points of view from Intune/Autopilot.

Please reach out to Autopilot and Intune to get their comment on this implementation.

· 1 · Share
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Hi, thanks for your comment ! Originally I posted this question in Intune forum on technet, but they sent me to Azure AD forums instead.. BR, Ruslan

0 Votes 0 ·