Our school has students on an E3 licensing for education. Each student is (can be) licensed with:
Azure Active Directory Basic for EDU
Azure Active Directory Premium for EDU
Azure Rights Management
All of these show "for student use benefit".
Why would a student need this access? What access is this giving them? I've searched on MS O365 site and no answers are found. I understand why I need these, but not a student.
Thank you in advance for the assistance.
When you have O365 A3 plan, all the users under your tenant will have an Azure Active Directory Free license.
Your E3 licensing for education also provides the three licenses:
Azure Active Directory Basic for EDU
Azure Active Directory Premium for EDU
Azure Rights Management
Azure Active Directory Basic and Azure Active Directory Premium will have more services for the users.
You can see details from Azure Active Directory pricing page. Note: Azure Active Directory Basic is retired. You can refer to OFFICE 365 APPS edition instead.
Azure Rights Management is used protect important data by using applications and services that support this information protection solution. See details here.
Whether to assign the above licenses to students depends on your needs. You can manage the Azure AD licenses in O365 admin center or Azure portal.
Related
Is it mandatory that the tenant has to have Microsoft Office 365? Can we sync our on premise Active Directory to Azure AD using Azure Connect and login to Microsoft Teams using AD credentials?
the Full version of teams requires an office 365 license. as this is an office 365 product.
Without an office 365 license that includes teams. you won't be able to use the full version of teams regardless of AD Account.
So to answer your question. yes it is mandatory to have a o365/teams license in order to use teams.
There is however a free version of teams that you can use, and if your entire tenant in aad doesn't have any office 365 at all, then 'I believe' you can log into / sign up for that free version.
though there are various limitations on that version but if you are just testing it out, or are a small organization, of less than 25 users then you could use it.
we have been using office 365 E3 for the past number of years. we would like to configure a windows 2019 essentials server locally for file storage and a few shared applications (ie quickbooks multi-user).
is there a process to pull the user information from azure active directory to the local server? any advice is greatly appreciated.
thank you!!
If my understanding is correct, you really want is to be able to grant admin rights to your Azure AD users and allow them to login to the server with their regular Azure AD credentials.
If yes, then most optimum way of doing is to have on prem AD and have you user synced up from Azure AD to local AD. Azure AD Connect comes pretty handy in this scenario.
You can also take a look at Azure AD DS, Azure Active Directory Domain Services (Azure AD DS) provides managed domain services such as domain join, group policy, lightweight directory access protocol (LDAP), and Kerberos / NTLM authentication that is fully compatible with Windows Server Active Directory. You use these domain services without the need to deploy, manage, and patch domain controllers in the cloud. Azure AD DS integrates with your existing Azure AD tenant, which makes it possible for users to sign in using their existing credentials.
https://learn.microsoft.com/en-us/azure/active-directory-domain-services/overview
Check this link as well for additional reference:
https://serverfault.com/questions/808047/how-to-manage-on-premise-servers-using-azure-ad-credentials
Hope it helps.
I have a scenario that I am hoping someone can assist me with. I have a requirement to build an extranet in SharePoint Online (Office 365).
We have a main Office 365 Tenant. There are 15 member organisations that need access and these DO NOT have Office 365. on premise only.
So I can use Azure B2B to grant access to SharePoint Sites no problems. I need the social aspect and Yammer Fits PERFECTLY but identities are separate.
I can create and External Yammer Network and invite users but obviously these are a separate set of credentials to that of Azure AD.
Has anyone done such a thing and is there a way to grant Azure B2B users access to an external Yammer network?
Yammer should allow you to sync with your Azure Active Directory. This should allow users to have the same logins.
Here is some information I found on this matter:
https://products.office.com/en-gb/yammer/yammer-network-administration
My small company (about 100 users) is currently using Office 365. There have previously not been any domain controller. I am building an on premise domain controller and want to sync it with Azure Active Directory (Office 365). I used the sync service, with a small subset of users to no avail.
My main question: Can you sync FROM an Azure Active Directory to a new on premise Active Directory? My understanding is that it's the opposite - the on premise Active Directory is the "master" if you will. Is there a way to set it up the opposite? As in, Office 365 being the "master" or "seed" for an on premise?
At present, the Azure AD connect support the Password writeback, Group writeback and Device writeback.
You can refer the options features of Azure AD Connect from here.
At this point in time, synchronizing users FROM Azure AD to on-premises AD is NOT possible.
As Fei Xue pointed out, there are certain things (such as user passwords, groups and devices) that can be synchronized back to on-prem AD, but not users.
Depending on what you are trying to achieve, Azure Active Directory DS might be worth exploring as it allows you to create a VNet in Azure which has a AD-like support (LDAP, Active Directory domain join, NTLM, and Kerberos authentication).
More info on Azure AD DS: https://azure.microsoft.com/en-us/services/active-directory-ds/
I have the following setup:
Exchange 2013 on-premise with 10 users
AD on-premise
We have Office 365 premium licenses for each person in the company and have an Azure account etc.
I have been tasked with migrating the users to Office365 and also migrating AD
The Exchange Online licenses are not yet active, so currently, there are no user mailboxes on Office365.
We want Azure AD to replace our on-premise AD as at some point, the AD and Exchange servers (on-premise) will be decommissioned.
What path would be the best for me to take to do the migration?
I have read various pages on learn.microsoft.com about AD sync and AD Connect but am not sure whether or not this is the right way to go. the docs all seem to be geared towards companies needing a hybrid setup and we don't want that, ultimately.
Tips and advice will be gratefully welcomed.
Best regards,
Neil.