Azure AD Pass-through authentication

  • 15 Views
  • Last Post 2 weeks ago
amalchev posted this 2 weeks ago

Hello All, I hope my question is not an off topic.  A while ago, I deployed a DirSync server +ADFS server for O365 authentication. As DirSync was deprecated, I migrated to Azure AD connect. My current setup is two ADFS servers (Windows 2012 R2) and two Azure AD connect servers (one primary and one standby). Everything is working as expected without any issues. Now, I would like to test the pass-through authentication in Azure AD connect. I have installed the connector following instructions in the Microsoft’s web site. Then tried to enable Pass-Through using the Azure AD connect’s wizard but it is failing with "Pass-through authentication cannot be configured on this machine because Azure AD Connect agent is already installed".  I have looked in the trace file and event log but couldn’t find any helpful information. Have you seen that error before? Thanks in advance for your help.Nasko

Order By: Standard | Newest | Votes
amalchev posted this 2 weeks ago

Yes, it is but I think it supported by Microsoft.
Best regards,
Nasko

show

amalchev posted this 2 weeks ago

Thanks! That will be the next thing to test.
Best regards,
Nasko


show

TonyFE posted this 2 weeks ago

Hi Nasko




I assume this is your test environment and you're simply keen on having a look at the features?  Otherwise, I'm not sure there is sufficient value in moving from ADFS.




Tony











show

amalchev posted this 2 weeks ago

Hi Tony,
Thanks for your reply.Actually, we are just testing office 365 and we have 10 users out of 3000. We haven't migrated yet.We prefer the pass-through auth, because we won't need a web app proxy servers and opening any Firewall ports.The traffic will come from MS only. 
Best regards,
Nasko


show

amalchev posted this 2 weeks ago

Yes, we are planning to use Azure AD connect with Azure Conditional Access.
Best Regards,
Nasko
On May 16, 2017 21:48, "Orion Withrow" <orionwithrow@xxxxxxxxxxxxxxxx> wrote:
If you are not going to use ADFS for SSO with any other providers, that is a lot of work/effort to maintain when AD Connect w/ SSO works well
On May 16, 2017, at 4:41 PM, Atanas Malchev <amalchev@xxxxxxxxxxxxxxxx> wrote:
Hi Tony,
Thanks for your reply.Actually, we are just testing office 365 and we have 10 users out of 3000. We haven't migrated yet.We prefer the pass-through auth, because we won't need a web app proxy servers and opening any Firewall ports.The traffic will come from MS only. 
Best regards,
Nasko


show

Close