Hybrid SharePoint farm with Microsoft 365

Azure Active Directory
SQL Server
Windows Server

Solution Idea

If you'd like to see us expand this article with more information, such as potential use cases, alternative services, implementation considerations, or pricing guidance, let us know with GitHub Feedback!

This solution provides a highly available deployment of SharePoint, by using a load balanced Azure Active Directory (Azure AD), a highly available SQL always-on instance, and highly available SharePoint resources.

Potential use cases

This solution addresses the need to deliver a highly available intranet capability, by using the latest and greatest supported platforms.


Architecture diagram Download an SVG of this architecture.

Data flow

  1. Create resource group to host all Azure based infrastructure and services.
  2. Create virtual network in Azure.
  3. Deploy Windows Servers to host Active Directory services for SharePoint and SQL server service accounts and machine accounts.
  4. Deploy SQL Server Always on for HA support for the SharePoint farm.
  5. Deploy SharePoint Severs. In this scenario we are using 2 Frontend with Distributed Cache and 2 Application with Search roles. This give us high availability.
  6. Install Azure AD Connect on an on-premises server to synchronize your identities to Azure Active Directory.
  7. Optionally configure Active Directory Federation Services on premises to support federated authentication to Microsoft 365.
  8. Deploy ExpressRoute or setup a site-to-site VPN link for administrative access to the servers hosted in Azure IaaS.
  9. Setup and provision external access to the Hybrid farm hosted in Azure IaaS
  10. Setup and configure Hybrid Workloads between Microsoft 365 and the SharePoint farm.


  • Azure Resource Group: Container that holds related resources for an Azure solution
  • Virtual Network: Provision private networks, optionally connect to on-premises datacenters
  • Storage Accounts: Durable, highly available, and massively scalable cloud storage
  • Azure Active Directory: Synchronize on-premises directories and enable single sign-on
  • SharePoint Server: Microsoft's collaboration server product
  • Host enterprise SQL Server apps in the cloud
  • Load Balancer: Deliver high availability and network performance to your applications
  • Azure ExpressRoute: Dedicated private network fiber connections to Azure
  • VPN Gateway: Establish secure, cross-premises connectivity
  • Azure AD Connect: Synchronize on-premises directories and enable single sign-on
  • Active Directory Federation Services: Synchronize on-premises directories and enable single sign-on
  • Hybrid Workloads: Scales between on-premises environments and the cloud

Next steps