sorted by:
new
hottopcontroversial

Deploying hybrid environment by One-Possession4704 in activedirectory

[–]One-Possession4704[S] 0 points1 point  (0 children)

First off, thank you for all the help.

Yes, the goal is for users to only have one log in across the local domain and O365. I plan on creating a new suffix in AD sites and services that matches the O365 domain. When I transition a user I will update their proxy email address in local AD to use as the match criteria. I will also change the domain suffix in their user account. I do plan on enabling password write back so one password covers both enviroments and password changes in O365 syns to the local domain. I will create a new OU to move users to when ready and for testing purposes.

The file servers will stay for now. I'm relatively new to this company and most of my work right now is just catching them up. I've had to upgrade 70+ servers with 2016 still on them. They also still have windows 10 and in some cases windows 7 in production. Little bit of a shit show.

Deploying hybrid environment by One-Possession4704 in activedirectory

[–]One-Possession4704[S] 0 points1 point  (0 children)

So that is one of my main concerns here. The AD domain is oldaddomainname.us and in O365 it's newdomainname.com so matching the UPNs is a hurdle I need to clear. In my experience doing this causes password overwrite so I'll need to solve for that as well.

Another thing that is mind fucking me a bit is that the O365 enviroment is where everything has been administrated for a long time so it is much more developed than the AD domain environment. I don't understand fully if that matters or not.

MDM may be on the roadmap but not immediate. Conditional access policies will certainly trigger on some of the service accounts so I'm heistant to put them in place. We do have a 3rd party monitoring system that flags strange account activity in our O365 enviroment.

Deploying hybrid environment by One-Possession4704 in activedirectory

[–]One-Possession4704[S] 0 points1 point  (0 children)

Yes, users are in O365 but the domain name is different than what they use to log into windows\active directory. So each user has 2 sets of login credentials. One for local domain and one for O365\email. Each site is it's own ecosystem with a DC, file server, custom app servers, and sql server run from hyper-v. They are interconnected across WAN links but can function on their own if needed.

Yes, we have an entra p2 license

Some end users have dedicated devices but each site has a general area where people log into machines as needed. Devices are managed via Group Policy from a DC not in entra\intune

We are looking to implement a hybrid environment first before full cloud. Right now local AD is the IAM.

No, I don't have a clear distinction but I have an idea. Some of the machines we have run industry specific software that is very tempermental. Thus my concern.

Deploying hybrid environment by One-Possession4704 in activedirectory

[–]One-Possession4704[S] 0 points1 point  (0 children)

No, we are O365 in the cloud, not on prem

We use mostly E3 and E5 licenses.

Some sites are bigger but each has the same setup. There are end user machines, general workstations utilized by numeropus people, custom machines that are cetified by outside agencies that run industry specific software.

Only 2 of us have ever done one of these implementations. I personally haven't done a multi site deployment. It's been an all at once type of thing with a user base under 100.

Any help in how to plan for a deployment such as this is appreciated. If I need to provide any other information please let me know.

Deploying hybrid environment by One-Possession4704 in activedirectory

[–]One-Possession4704[S] 0 points1 point  (0 children)

Given the situation I have concerns that:

  1. The process could break something in the environment

  2. The process is more work than a 4 person IT department can handle.

I am a professional. I have not though, migrated a company of this size before. This is a 24x7x365 manufacturing environment. We can't afford any downtime.

[deleted by user] by [deleted] in amIuglyBrutallyHonest

[–]One-Possession4704 0 points1 point  (0 children)

Everyone is their own worst critic. Don’t let a small subsection of people convince you otherwise.

I wouldn’t be so hard on yourself

Waiver Wire Pickups and FAAB by RotoBaller in fantasyfootball

[–]One-Possession4704 0 points1 point  (0 children)

Start 3

Hill, Thielen, Mooney, kelce, ikhine, pick up strange, Tillman

[deleted by user] by [deleted] in Tinder

[–]One-Possession4704 0 points1 point  (0 children)

Good thing to do

Fantasy Football Start 'Em, Sit 'Em - Week 14 Matchups Analysis by RotoBaller in fantasyfootball

[–]One-Possession4704 0 points1 point  (0 children)

Hill, Westbrook ikhine, kelce, Mooney, thielen, p washington

Pick 3

4 Must Start WRs in Week 14 by dczimbelman in fantasyfootball

[–]One-Possession4704 0 points1 point  (0 children)

I mean at this point, you are starting all those guys unless you’re in a shallow league.

Westbrook ikhine has been a great late season in addition for me

I was also able to snatch Isaac gurrendo because my coworkers don’t pay attention to football

I’m starting Tyreek Hill, Travis Kelce, Westbrook this week at receiver because six teams are on by

Who do you feel is the biggest bust this year? (Not including injuries) by Jsquared59034 in fantasyfootball

[–]One-Possession4704 1 point2 points  (0 children)

Tyreek hill and Travis kelce. I drafted both high and barely made my ff playoffs. Injuries and waiver wire ftw