Azure Project : Integrate on-Premises Active Directory with Microsoft Azure Active Directory using Azure AD Connect

In this project based on a real scenario, I was responsible for designing and implementing On-Premise AD integration with MS Azure AD.

Integrate on-premises Active Directory (AD) with Microsoft Azure Active Directory (AAD) using Azure AD Connect

Architecture

Components

The architecture has the following components.

• Azure AD tenant: An instance of Azure AD created by your organization. It acts as a directory service for cloud applications by storing objects copied from the on-premises Active Directory and provides identity services.
• Web tier subnet: This subnet holds VMs that run a web application. Azure AD can act as an identity broker for this application.
• On-premises AD DS server: An on-premises directory and identity service. The AD DS directory can be synchronized with Azure AD to enable it to authenticate on-premises users.
• Azure AD Connect sync server: An on-premises computer that runs the Azure AD Connect sync service. This service synchronizes information held in the on-premises Active Directory to Azure AD. For example, if you provision or deprovision groups and users on-premises, these changes propagate to Azure AD.

Setup On-Premise Active Directory Domain Service

- Create and login into a Windows Server

- Install ADDS role on that Windows Server

- Configure ADDS — ( Promote the server to a Domain Controller)

- Need an Enterprise Admin Credential

Setup Azure Active Directory

- Create an Azure AD

- Switch to new Azure AD

- Create Global Administrator on the new Directory.

- Login once with the Global Admin for enabling access.

Setup Azure AD sync

- Download Azure AD connect tool on the On-Premise Domain Controller

- Install the Azure AD Connect tool

• Synchronizes and check users on Azure AD.

Goal was to integrate multiple On-Prem users, who needed to authenticate to both Microsoft Azure and On-Prem Infrastructure using the same login and password (single sign-on) to access resources.

Azure AD connects, integrates any on-premises Active Directory with Azure active directory, this allows companies to provide a collective identity for all users for Office 365, Azure and all your SaaS (Software as a service) applications integrated with organization’s Azure Active directory.

< — — — — — Thank You for reading — — — — →