Sprint 1 Outline - brian-anderson01/Capstone GitHub Wiki

Overview

The main purpose of this sprint is to get a new local AD server integrated into my existing Azure AD. Once that is done I need to test and make sure they are syncing up and working as expected. I will then look into using AD authentication with Azure file shares.

Objectives

• Switch from Azure AD DS to a local domain controller
• Setup Azure AD connect on the local server
• Integrate Azure files into the server
• Get AD authentication working with Azure file shares via local AD/Azure hybrid setup

Tasks

• The following are the tasks to be completed during Sprint 1. These tasks can also be found on the Kanban Board.

• Create a new local Windows Server VM
• Connect server to Azure AD
• Setup Azure AD connect to sync the local server with Azure AD
• Confirm that Azure AD Connect is syncing properly
• Configure AD so that any new computers that join the domain automatically hybrid join
• Research and implement a way to automatically enroll new devices into Intune
• Enable SSO so local accounts can login on Azure
• Create new Azure file share(s)
• Integrate Azure files with the server
• Configure the Azure file share to use AD authentication
• Get the AD authentication working for Azure file shares, using the hybrid AD DS setup
• Test the authentication and confirm it is working

Sprint 1 Outcome

All tasks that are checked off above have been completed. I set up a local Windows server and made it a domain controller. I then installed Azure AD connect and configured hybrid AD and SSO. Once configured, the DC was hybrid joined and SSO was enabled and working. I then set up a group policy to automatically join new computers to Azure AD and enroll in Intune. I then tested the functionality by creating a new VM and connecting it to the domain, The computer automatically hybrid connected, and then auto-enrolled in Intune after logging in with an account that has an Intune license.