Lukas Beran
Lukas Beran

Welcome to my blog! If you're looking for tutorials, hints or tips for IT, you're right here. You will find mostly articles on Microsoft products and technologies - operating systems, servers, virtualization, networks, management, but also the cloud. Sometimes I add some other interesting things.

October 2016


Transferring federated domain to standard in Office 365

Lukas BeranLukas Beran

If you want to get rid of domain federation in Office 365 and remove your ADFS server which means moving from single sign-on to cloud identities, you can easily do it using Office 365 Management Shell by Convert-MsolDomainToStandard .

But if your ADFS server is not available for some reason, you can use this approach because it requires connection to the ADFS server.

Transferring federated domain with unavailable ADFS server

We have to get rid of the ADFS server which means disconnect our Office 365 domain and then convert our users to cloud-only identities.

First step is to change authentication method from ADFS to Office 365. We can do it using cmdlet Set-MsolDomainAuthentication . For example

Now I was able to authenticate to Office 365 servers instead of my local ADFS server. Now I also wanted to convert all of my identities from synchronized to cloud-only identities. We can do it directly from Office 365 Admin Center. This feature is not available from the new Office 365 admin portal in the time of writing this article, I had to switch to the old portal.

In the old portal, move to Users – Active Users and in the top part of the page is Active Directory synchronization and choose Manage.

Here is available Directory sync status where you should see Activated. Click on Deactivate and the synchronization will be deactivated. The process of deactivation and conversion of user accounts can take up to 72 hours. But in my case it completed in 15 minutes.

My primary focus is the security of identities, devices and data in the cloud using Microsoft services, technologies and tools.

Comments 0
There are currently no comments.