[tluyben2]

I thought it would be 100%; everyone switched to AD after Novell. What are the 16.6% using is the interesting part?

[jeffmcjunkin]

Nearly 100% have on-prem AD (full name: "Active Directory: Domain Services"). Azure AD is a separate identity provider -- to a first approximation it's HTTPS and cookies, not Kerberos, LDAP, and Ticket-Granting Tickets that we see on-prem.

[trevorishere]

> not Kerberos

Well... https://techcommunity.microsoft.com/t5/azure-storage-blog/pu... :-)

[flatiron]

Good question. I’ve worked at apple and google and both like to cook their own implementation. It was AD there.

[connordoner]

Where?

[flatiron]

I guess everywhere. I’ve worked at a ton of “big” companies. All AD. Even the company’s that bake everything themselves. (I’m looking at you apple)

[gw99]

NetIQ eDirectory tends to be the other big one. Although I am seeing a rise in companies not having an SSO solution recently at all. In fact some of the SMEs I've seen recently are running most of their stuff entirely via basic Microsoft O365 accounts or iCloud.

[mooreds]

A lot of startups or smaller companies I've worked with are entirely on the Google stack (gmail, google drive). I imagine there's a scale when that option breaks, but I think it'd be fine until 50-100 employees.

[gw99]

I've seen it working for schools with 5000+ account so it'll go well past 100 users. Not sure I'd want to depend on Google though.

[mooreds]

That's great. I thought I heard of colleges where the entire campus was on the Google stack.

Looks like University of Arizona uses it: https://it.arizona.edu/google-storage which has 50k students: https://en.wikipedia.org/wiki/University_of_Arizona

No personal familiarity with it at that scale, though.

[roflyear]

I wouldn't think SSO is the primary use for AD. Definitely one big use, though!

[connordoner]

What do you think the primary use is?

[roflyear]

User and resource management, I'd say.

[detaro]

Azure Active Directory. On-prem isn't counted. (Also assumptions about the domain used, which might not hold for all)

[Spooky23]

Everyone with O365 has Azure AD. But a smaller number has Azure AD Premium.

That’s growing as salespeople get canned if they don’t sell it.

[roflyear]

MS is so bad with this stuff. It's difficult to determine what value you get from premium. If I knew maybe I'd buy it!

[pid-1]

You get Intune (which is called Microsoft Endpoint Manager now) and AAD P1 for all users.

The base use cases are "I want my users to be able to login in MS 365 from company managed devices". and "I want to manage my company's devices".

[Spooky23]

The service is good, but really expensive and the sales tactics are sleazy. They want you paying $40/mo/head.

[m348e912]

Azure AD Premium is $480/year per user???? What in the world do you get for that price point?

[realityking]

It’s not. Azure Ad P1 is $6/user/month, P2 is $9/user/month. Cheaper than Okta.

OP was probably thinking of Microsoft 365 E3 which does cost $36/user/month. That however includes a bunch of other stuff besides Azure AD P1.

[Spooky23]

I’m talking total subscription relationship.

It’s hard to buy Azure AD alone, they push the EMS suite and O365 E5 to solve the security issues in O365 E3.

[roflyear]

What security issues in E3?