We are using office 365. Also, Using Azure AD of Office 365 for identity. Now, we are intending to manage and secure our workstations using GPO. So, Can we use Azure AD DS for this case.
We don't want to manage on-premise AD DS. Just want to use the cloud services for identity and management of on-premise windows workstation and servers. The reason to choose the Azure AD DS is we are using LDAP, kerberos. I think we can use Azure AD DS for identity through site to site VPN connection and management of on-premise workstations in on premise site.
Also, We don't have any on-premise AD DS. But our users, groups and devices registration are on Azure AD of Office 365. How to solve the problem? As I referenced, to manage on premise windows machines, I must use the on-premise AD DS. Can I migrate existing users, groups and devices information on the Azure AD to on-premise AD DS?