The scenario is that we need to have 2 different Azure accounts (assume account A and B) but the Azure Active Directory is to be hosted on account A. Now, can I provide RBAC roles on my services in account B based on AD from account A? Or do I need to have the users synced into my AD in account B as well before my services can be used by users from account A?
When Account B is migrated to A, both accounts have different domains – will that work the same way as separate accounts?
So managing the user logins from account B will be the same?
And what if we establish peering between the AD accounts and wanted to manage the users login profiles via AD of account A – although tenant is same but AD accounts are different, will this is be possible without syncing the users from B to A.
Impact on network configuration – per my understanding VNET peering gets dropped in migration and do we need to recreate it?
Thanks for the help.