Jet Mariano

Migrating Devices from On-Prem Active Directory to Azure AD: A Step-by-Step Guide

Written by

jetnmariano

in

📋 Preparation Checklist:

  • Administrator Access:
    Ensure you have local administrator privileges on the device and permissions to join devices to your Azure AD tenant.
  • Backup Tools:
    Prepare external storage or a secure share for temporary backup of user data.

🛠️ Step-by-Step Migration Process:

1. Backup User Data

Before making any changes to domain membership, back up critical user data:

  • Folders: Documents, Desktop, Downloads, Pictures
  • Browser Favorites and Passwords:
    Export bookmarks from Chrome, Edge, or Firefox.
    Backup or sync saved passwords if available.
  • Mapped Drives and Group Shares:
    Document connections if needed for re-mapping after migration.

2. Disjoin Device from On-Premises Domain

  • Navigate to Settings > System > About > Domain or Workgroup settings.
  • Choose to Disconnect from the domain.
  • When prompted, join a Workgroup (e.g., WORKGROUP).
  • Important:
    Ensure you know the local administrator credentials before disjoining.

Restart the device after disjoining.

3. Join Device to Azure AD

✅ Two methods:

GUI Method (Recommended):

  • Open Settings > Accounts > Access Work or School > Connect.
  • Select Join this device to Azure Active Directory.
  • Enter the user’s Azure AD email address and password.

PowerShell Method (Optional for Advanced Users):

powershellCopyEditdsregcmd /join

(Additional setup like authentication context may apply.)

Restart the device after joining.

4. Confirm Azure AD Join Success

Open PowerShell and run:

powershellCopyEditdsregcmd /status

✅ Look for:

  • AzureAdJoined : YES
  • DomainJoined : NO (expected after leaving on-premises domain)

5. Restore User Data

  • Copy back Documents, Desktop, Downloads, and Pictures.
  • Restore browser favorites and re-import saved passwords.
  • Reconnect mapped drives, printers, or any network-based resources.

6. User Login

The user can now log in using their Azure AD email address and password.

✅ If Multi-Factor Authentication (MFA) is enabled, users should complete MFA registration during first login.

7. Final Configuration

  • Verify mapped network drives.
  • Ensure printer connections are restored.
  • Test access to any business-critical applications.
  • Confirm OneDrive sync settings if applicable.

🧠 Important Tips:

  • Double-check BitLocker status. If BitLocker is enabled, back up recovery keys before starting.
  • Some applications (like SolidWorks or AutoCAD) may require license reactivation post-migration.
  • Communicate expected login changes to users ahead of time to minimize confusion.

🌟 Conclusion:

Migrating from on-premises Active Directory to Azure AD doesn’t have to be stressful.
With careful preparation — backing up data, ensuring admin access, and confirming every step — you can move endpoints securely and efficiently into the modern cloud ecosystem.

Taking the time to handle each stage methodically ensures a smooth experience for both the IT team and end users alike.

Stay ready. Stay secure. 🛡️

© 2012–2025 Jet Mariano. All rights reserved.
For usage terms, please see the Legal Disclaimer.

More posts

error: Content is protected !!