Setting up Azure AD - brian-anderson01/Capstone GitHub Wiki
Creating the initial domain
- Start by creating your new Microsoft account at office.com
- With the account created it needs to be licenced with a business, or enterprise subscription
- Upon purchasing a licence you will be asked to create a new domain.
- This will be used for Microsoft accounts created in this organization and will link with emails, logins etc.
- If you have your own domain name already you can use that by putting in your records.
- One the domain name is set, you will be prompted to make a new user.
- This user will be the root admin account of the organization
- Set a strong password and continue onto setting up 2FA.
- Once all of this is done the domain should get created and it can be accessed through the admin panel or through Azure.
Setting up Azure AD Domain Services so that it can be used for authentication and other actions
- Navigate to the Azure Portal
- Once signed in search for "Azure AD Domain Services" and choose it from the search
- Click "Create Azure AD Domain Service"
- Choose your existing subscription and resource group.
- Choose standard SKU and User forest type
- Click next, then next again
- Add the admin user to the AAD DC Administrators
- Click review and create
- Now the service will be created, this may take some time
- Note: The above step is necessary for integrating AAD authentication to things like Azure file shares so it must be done