Fully migrate to Azure Active directory
Currently there is no way to fully migrate an on-prem Active Directory domain to Azure. If there was an option to do so, I would gladly get rid of most of my server infrastructure and have it hosted in Azure.
Being a mid-sized company, most hybrid architectures are geared towards large sized corporations, and so add complexity to environments that make it prohibitive to take fully advantage of Azure Services.
Small and mid-sized companies need the same level of security, configuration capabilities, management and monitoring as large corporations, we just don't have the same resources to implement technologies like ADFS and Configuration manager. Fully capable cloud applications would help us immensely.
There are several Issues involved with this, but not limited to:
- Authentication and authorization to on-prem servers. (File/App/IIS Servers)
- Multi-user capabilities/licensing on shared windows desktops.
- Network management capablilities
- Removal of Exchange on-prem.
I know this is a huge request, but if it was possible, I would migrate fully to Azure AD in a heartbeat.
We would also like to see Active Directory (AD) migration tool from Microsoft to migrate on-prem Active Directory to Azure Active Directory Domain Services (AAD DS) so that we can eventually stop using any on-prem server infrastructure
We would also like to see a AD migration tool from Microsoft to migrate on-prem Active Directory to Azure Active Directory Domain Services instead of current, Extending onprem AD to Azure via site to site VPN connection https://docs.microsoft.com/en-us/azure/architecture/reference-architectures/identity/