![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(137.6, 76%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EHR%3C/text%3E%3C/svg%3E)
Microsoft 365
Formerly Office 365, is a line of subscription services offered by Microsoft which adds to and includes the Microsoft Office product line.
4,217 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(300.8, 28.000000000000004%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECK%3C/text%3E%3C/svg%3E)
Hi @Hasan Reza The scenario that you've described can work, although it does bring up some complexities. For the initial setup with multiple forests (A and B), Azure AD Connect can sync multiple forests into a single Azure AD tenant. The key here is ensuring that the userPrincipalName (UPN) attribute is unique across all forests. You can check more on this in the documentation here. As for syncing passwords from both forests with a third-party tool, it could potentially work, but it's not a scenario that Microsoft can fully support. Azure AD Connect does support password hash synchronization, pass-through authentication, and federation. More on this can be found here. The rest of the services you've listed (MFA, Privileged Identity Management, Conditional Access, Intune, Defender for Cloud, Cloud App Security) can all work with this setup, as they operate at the Azure AD level, not at the on-premises AD level. The primary risk in this setup is the complexity it introduces, especially in terms of managing and troubleshooting. It would be recommended to simplify the setup where possible, for example, by consolidating the forests or by using Azure AD Connect for password synchronization. Keep in mind that Microsoft support may be limited due to the use of third-party solutions in your scenario.