Part 16 – Entra Hybrid Join
In this guide, we’ll explore the process of joining the Domain Joined devices to Microsoft Entra, previously known as Azure Active Directory. Upon successful configuration, our device will be Entra Hybrid Joined, providing us the flexibility to manage certain settings in the cloud.
The configuration process is straightforward. Let’s dive in.
Entra Hybrid Join Configuration
Open Microsoft Entra Connect (formerly Microsoft Azure AD Connect) and select ‘Customize synchronization options’.
Ensure the Computers organizational Unit is included in the sync to Microsoft Entra. For the devices to be recognized as hybrid joined, they need to be synced to the cloud. Once this is done, proceed by clicking ‘Next’ and complete the synchronization.
Reopen Microsoft Entra Connect and select the ‘Configure device options’.
Select the ‘Configure Hybrid Azure AD join’ option.
We’re using Windows 10 and later domain-joined devices for this setup.
Create a Service Connection Point (SCP) to discover your Entra AD tenant information. This establishes a connection between your On-Premise and Cloud environments (Microsoft Entra). Click ‘Configure’ to create the SCP Connection point.
After a short while, devices will initiate the enrollment process. This process is seamless and won’t disrupt the user experience.
Then click configure. SCP Connection point will be created.
Please wait before checking if the device has joined. It can take hours. Early troubleshooting is often unnecessary as the process just needs time. Just let it sit for a couple of hours.
You can verify if a device is a hybrid joined by using the dsregcmd /status
command in the command prompt.
Alternatively, you can check via the Event Viewer.
Then you can check into Microsoft Entra Portal.
Note: Interestingly, this process is also compatible with Windows Server Operating Systems. While it was initially designed for Windows 10 and 11 operating systems, it now works seamlessly with servers too.
See yaa in next blog post 🙂