Six Horror Stories of Hybrid Identity Mismanagement

The Microsoft documentation provides clear-cut decisive guidance for integrating Active Directory with Azure AD. This way, Hybrid Identity should emerge. Alas, at some organizations it didn't. Join this session to gain insights into the critical success factors that drive Hybrid Identity and the things that often get overlooked. Sander Berkouwer shares his views on these situations. Of course, this session covers how to avoid these situations yourself, so we all benefit. A true storyteller’s session on real-world events from a speaker with a twisted sense of humor. Be sure to check in! The Hybrid Identity implementations that Sander and his team have deployed for multiple organizations, including government ones, provide him with horror stories that are becoming ready to share, now that the hurting has stopped. How we found out that one of the Web Application Proxies was no longer active and why it never got patched after implementation. How we underestimated the impact of GDPR. How we ran 300% over budget for our project because we didn’t account for the Domain Controller upgrades and UPN Suffix renames at a customer. How we found out that ‘All Users’ in Azure AD also includes guest users. How we got a $4000/day bill, when an engineer accidentally enabled all user accounts in MFA Server, triggering an Azure MFA license for everyone in the organization. How our customer treated our Hybrid Identity implementation after we were asked to decommission the environment when the customer went bankrupt. Sander Berkouwer calls himself an Active Directory aficionado and has seen thousands of Active Directory and Azure Active Directory implementations in his career. Sander is a Dutch MCSE, MCITP, and MCT and has been a Microsoft Most Valuable Professional (MVP) on Directory Services and Enterprise Mobility for the last eleven years. He is also a Veeam Vanguard and VMware vExpert and writes a blogs on DirTeam.com and ServerCore.net. Eligible for CPE Credits.