All Services

From back-end infrastructure to personal productivity, Ergo has the knowledge and experience to match technology to all our client requirements. Our strength is understanding your business. The end goal is always the same, to make businesses more agile and competitive.

More About Our Services
Managed Services

Focus on your core business and leave ICT operations and management to the experts. From 24/7 service desk support to managing hybrid clouds, Ergo have the depth and experience to meet the most demanding service level requirements and ensure continuous improvement. 

More About Managed Services

Highlighted Services

Managed People

Competition for talented technology professionals is huge, which is why we make hiring more personal, taking time to match the right people to the right roles. Our technical experience and recruiting know-how help find the perfect fit for both parties.  

More About Managed People

Highlighted Services

Consultancy Services

Speed of change demands a new generation of digital investments that will drive business enablement and profitability. We support IT leaders, wherever they are on their digital transformation journeys, with our digital assessment methodology. 

More About Consultancy Services

Highlighted Services

Print and Document Solutions

Our goal is to deliver the best possible print and document service for you, leveraging the latest technologies and innovation to ensure the performance of your print environment is optimised to maximise employee productivity.  We take out costs, add efficiencies, wrap it in end-to-end security and make print integral to digital transformation. 

More About Print and Document Solutions

Highlighted Services

Cloud

Agility is key to business success and the cloud is where to get it. We offer a wide range of cloud services – public, private, hybrid – and provide the best of both worlds by integrating or migrating legacy systems to streamline the way your IT is consumed. 

More About Cloud

Highlighted Services

Digital Enablement

Ergo provides a clear roadmap for digital transformation with practical steps to make businesses more agile and customer-centric

More About Digital Enablement

Highlighted Services

Mobility and Collaboration

Ergo has provided many of Ireland’s largest organisations with an ecosystem of mobile applications and collaboration services that drive productivity without compromising on security

More About Mobility and Collaboration

Highlighted Services

Software Licensing

Businesses struggle to manage software assets and don’t always get the best value. We can help streamline your software purchasing, simplify deployments and maximise your investments. 

More About Software Licensing

Highlighted Services

Security, Risk and Compliance

Risks around cyber security and data protection are an ever-increasing challenge for businesses. We provide security lifecycle management, from perimeter testing and threat analysis to mitigating the impact of a breach. 

More About Security, Risk and Compliance

Highlighted Services

Microsoft Technology Specialisations

With the largest team of Microsoft IT professionals in Ireland – including two Most Valuable Professionals our expertise spans a comprehensive portfolio of products/services

More About Microsoft Technology Specialisations

Type your query and press the "Search now" button

How to Federate Existing Office365 Users

How to Federate Existing Office365 Users

Read The Article
How to Federate Existing Office365 Users
Return to Blog

How to Federate Existing Office365 Users

The most common scenario for federating users that are already using Office365 is when users have transitioned from BPOS to Office 365. The customer/company was waiting to use this excellent feature of Office365 and wanted to implement it once they had transitioned from BPOS to Office365.

So in this scenario I will describe how it could be done for 200 users but the same steps apply for any amount of users.

So the first thing to do is to add in a new UPN for users. If the customer had an internal domain of contoso.local we will need to add in a new UPN of contoso.com.

To add the new UPN in, you browse to Active Directory Domains and Trusts and right click on the Active Directory Domains and Trusts icon and select properties and add the new UPN as per the image below:

How to Federate Existing Office365 Users


In this particular scenario, there was no on premise exchange, so no email address fields were populated. So we need to modify all user's UPN and add in their email addresses before we implement Directory Sync because DirSync matches the on premise AD users with the existing Office365 users by their primary SMTP address. This is described in Microsoft KB 2641663

So we use ADModify from Codeplex. You can download it here. Download ADModify, Extract the package, Launch ADModify, Connect to AD and select a domain controller.

So firstly we will select all the users we need to modify. Then click add to list and select all and we can now easily modify all the users.

How to Federate Existing Office365 Users


So firstly we will modify all users UPN. All existing users in Office365 have an email address policy of firstname.lastname. So when selecting the UPN tab I enter this variable switch in LegacyAccount tab %'givenname'%.%'sn'% as per the image below:

How to Federate Existing Office365 Users


When we hit apply on the UPN Change, We will need to select all the users again and then go to the email tab we need to enter this string in the add smtp address as per the image below: %'givenname'%.%'sn'%@contoso.com

How to Federate Existing Office365 Users


So by adding in this address, ADModify has placed the primary email address on the general tab and updated the required Active Directory proxyAddresses attribute as per the Microsoft KB 2641663 mentioned earlier.

So now we are ready for Dirsync. So when Dirsync runs it will match the active directory user objects with the existing Office365 user accounts and both the Office365 and Active Directory users will have the same immutable ids. To verify the Office365 user's immutable ID you can run the powershell command in the Microsoft Online Services Powershell module and output the query to a text file.

Get-MsolUser -all where {$_.isLicensed -eq $true} select-object userprincipalname,immutableid out-file c:\users.txt

The next step then is to federate the contoso.com domain, this can be done using the Microsoft Online Services Powershell module on the primary adfs server

winrm quickconfig
Connect-MsolService –Credential $cred
Set-MsolAdfscontext -Computer adfsprimary.contoso.local
Convert-MsolDomainToFederated –DomainName contoso.com

So what affect does this have on users?

All user's domain logins remain the same as when we were modifying UPN's we didnt alter the (pre-Windows 2000) value.

How to Federate Existing Office365 Users


Outlook will prompt for a user name and password so the user will enter sean.ofarrell@contoso.com, their AD password and remember credentials.

Smartphone user names will be the user's primary email address followed by the users active directory password.

Within the domain via group policy the service name of the adfs farm will be published to each users internet explorer intranet zone which will allow single sign on to the Office 365 portal and SharePoint.

Lync will auto sign in provided the sign in assistant is installed.

One last thing, don’t forget to apply Rollup2 for ADFS 2.0.

And also the Exchange Remote Connectivity Analyzer can also troubleshoot Single Sign On as well as ActiveSync and Auto Discover.

How to Federate Existing Office365 Users

News and Blog Posts

Driving Office 365 User Adoption: 5 Steps to Building a Champions Program
Brian Moran
03 July 2018 • Posted By Brian Moran Training And Adoption Lead

Driving Office 365 User Adoption: 5 Steps to Building a Champions Program

In my last blog (8 Steps to Increase User Adoption of Office 365), I outlined the steps involved in succeeding in taking...

Read now
Turning Data into Insights: 3 Steps to Growing Your Digital Business
Jimmy Sheahan
28 June 2018 • Posted By Jimmy Sheahan Managed Services Managing Director

Turning Data into Insights: 3 Steps to Growing Your Digital Business

To run a business, one must make decisions. To run a good business, one must make good decisions. To run...

Read now
Ergo and BWG: A Winning Combination
News 15 June 2018

Ergo and BWG: A Winning Combination

Read Now
Managed Print Services: The Need For A True Partnership
News 05 June 2018

Managed Print Services: The Need For A True Partnership

Read Now
Managed Print and Document Services: Navigating a Sea of Data
News 10 May 2018

Managed Print and Document Services: Navigating a Sea of Data

Read Now

Subscribe to Our Blog

Scroll to Top