I'm currently using Hybrid Office 365 and On-premise Azure AD Sync to synchronize one way up to AD information to Azure AD P2,
not synch/write back to OnPremise.
How can I utilize the Privileged Identity Management feature so
I do not have to create separate Admin account:
Domain\User.Name --> normal AD login for logon to the PC. No MFA or admin access privilege. Domain\Admin.UserName --> separate AD admin account to be a member of Global Administrator for Office 365 and Azure administrator, secured by MFA.
My understanding is that I can use one single AD account that is secured with MFA and
secured again with the Azure Privileged Identity Management, is that achievable?
