1. Add your Entra Tenant Doman name to the On-Prem (DC), if you are using a local domain name so that you can use the same UPN as your email id.
a.
Refer: Add a
domain to the Active Directory — LazyAdmin
2. Enable
cloud sync from Entra Admin Centre & Download the provisioning Agent
Refer: Microsoft
Entra Cloud Sync new agent configuration - Microsoft Entra ID | Microsoft Learn
3.
Install Agent in your DC or any other Domain Joined Server. (Make
sure all the OU's are under DC OU)
4.
Make sure the installed server and DC are under Domain Controller
OU
5.
Provide the enterprise/domain admin credential at the time of
installation for directory sync.
6.
Once the installation is completed, Login to the Entra portal,
under Entra Connect, select configuration-> New configuration and add your
on-prem domain.
7.
Once the domain has been added, configure the synchronization
scope by using a distinguished name. (Example :OU=Hybrid,DC=mydomain,DC=dom).
You may add the attributes if you want to match with (Optional).
8.
Once done, It is recommended to execute the provision
on-demand to test the deployment by using one or two users from On-Prem AD.
9.
If testing is completed successfully, you can restart the sync and
now you can view all the users from your OU will be listed in the Entra ->
users module.
10. If you
wanted to enable passthrough authentication. Go to AD connect
sync, and download the agent for passthrough authentication.
11. Install
the authentication agent in your servers by connecting using the Entra Admin
credential.
12. Once
installed, you can log in with an On-Prem user account you can enjoy Features like user account replication in Microsoft 365, Single password for
cloud and on-prem access, high availability for your AD, etc.
Comments