Cloud identity is one of the core features and benefits of using the Azure platform. Fortunately, Microsoft Intune uses the same back end to store your users cloud identities.
This guide is for admins who have setup and configured DirSync for Intune, and want to retroactively add that synchronized domain to their organizations Azure tenant.
First, browse to http://manage.microsoftazure.com and login using your organizations Service Administrator account.
Note: for these steps to work, you may need to be using an MSA account (hotmail.com, outlook.com, etc). If you don’t receive the “use existing domain” option when creating your Azure AD domain, create a co-administrator with an MSA account. Login using this account and the option should appear.
Go to the Active Directory tab. You’ll see just the default Microsoft directory is present.
Select the + New button in the bottom left hand corner
You’ll receive the New blades fly-in. Select App Services > Active Directory > Directory
The blade will expand. Select Custom Create
This will produce a pop-up to Add directory
Select Use existing directory, and check the box for I am ready to be signed out now. When ready, click the tick in the bottom right. You’ll then be signed out and prompted for your Intune Tenant credentials.
Enter your Intune credentials
You’ll automatically be asked if you want to associate the Intune directory with your Azure AD tenant. Select Continue
Success! You can now sign out and back to your main Azure tenant
You can now see that the Mattslabs domain has been added into my Active Directory section in my main Azure tenant
Just to be sure it’s all working nicely, click on the new domain to view the users
You can see my users with mattslabs.com UPN is now in my Azure console.
You’re now good to go. In this guide we’ve successfully associated our previously synced Microsoft Intune directory into our organizations Azure Active Directory.