Configure Azure AD Connect: Pass-through Authentication

Pre-Requirements

• Microsoft 365 E5 License

• Custom domain added to Microsoft 365.

• Active Directory Domain Controller and Active Directory Federation Services (AD FS) Server

  • Azure Bastion set up.

Configure Azure AD Connect

1. Connect to Domain Controller via Azure Bastion

2. Double click on the Azure AD connect icon on the desktop to start the setup process.

3. Agree to the license terms and privacy notice and continue.

1. Click on the Customize option.

1. Keep the defaults and click on Install.

1. Select Pass-through authentication.

1. Enter Azure AD Global Admin creds

1. Connect on-prem forest. Verify the Forest name and click on Add Directory.

1. Select the first option to create a new AD account. You have to enter the credentials of a domain admin in the on-prem environment.

1. Keep the defaults and click Next.

2. Select specific domains and OUS. Select Users OU and click Next.

3. Keep the defaults and click Next.

1. Keep the defaults (Synchronize all users and devices) and click Next.

2. Keep the default optional Features and click Next.

1. Keep the default settings and click on Install.

1. Done.

1. That’s it! Click “Exit”

Verify PTA Connection

Azure AD Connect

1. Browse to Azure portal

2. Azure AD > Manage > Azure AD Connect