I'm managing around 400 laptops that are currently hybrid joined with Azure AD and also domain joined. Since we migrated our file server to SharePoint, we no longer need Active Directory or domain-joined devices. This setup has led to complications, especially after we removed VPN access, making password resets troublesome. I'm looking for advice from anyone who has gone through the process of moving to fully Entra ID joined devices. I'm particularly worried about managing existing Active Directory security groups during this transition and how to effectively un-domain join all our devices while ensuring a smooth shift to Entra ID.
2 Answers
We wiped all the devices and used Autopilot for the reset. Just make sure to back up all important data through OneDrive first! Most of our Active Directory security groups were linked to on-prem resources, so they lost relevance after the transition. I also scripted the migration of distribution lists and contacts from our on-prem setup to the cloud using Graph API.
AD Connect does sync AD groups with Entra, but you’ll want to plan on migrating those AD groups to Entra in the long run. It’s a necessary step to keep everything organized and functional as you transition.
Related Questions
Can't Load PhpMyadmin On After Server Update
Redirect www to non-www in Apache Conf
How To Check If Your SSL Cert Is SHA 1
Windows TrackPad Gestures