Azure FIM for on-prem RRS feed

  • Question

  • Hi,
     We have ADFS in our Onprem and we are planning to setup up ADFSP for Office 365 SharePoint. this also require Dirsync. 
    so we need to add three additional servers. two ADFSP and one FIM. 
    Main challenge is cost and we are trying to reduce it. 
    Now we have SalesForces hosted on Azure platform where we have Ad, ADFS, ADFSP, FIM. this is completely separate external environment and not connected with on-prem. 
    Question is can I use FIM sync hosted on Azure for my Office365 SharePoint requirement? can I connect my internal AD to Azure FIM and then Office 365 SharePoint ?

    Thanks in advance.
    Friday, March 14, 2014 5:24 AM

All replies

  • As Azure FIM you mean "FIM on Windows Azure Virtual Machine"? If so, yes, you can do that.

    But you have to ensure that your FIM can communicate to Active Directory. You already have AD in Azure platform - is it a separate AD or is it connected with internal AD somehow (maybe just as an additional Domain Controller)?

    If it holds the same domain as on-premise (it just act as a Domain Controller), then you have everything you need and you can proceed with this configuration.

    If it is other AD instance you have to provide communication between your on-premise AD and FIM in the cloud. There are (at least) two ways to do so:

    • Create VPN connectivity between on-premise and Azure (so FIM can reach any domain controller on-premise)
    • Let FIM communicate to AD directly (You'd have to make your AD accessible from the Internet, so it is not a good way to accomplish your need and still maintain with good security)

    Back to your question - it is realizable as FIM is supported on IaaS

    Keep trying If you found my post helpful, please give it a Helpful vote. If it answered your question, remember to mark it as an Answer.

    • Proposed as answer by ZuziaT Tuesday, March 18, 2014 3:07 PM
    Tuesday, March 18, 2014 7:10 AM