Ok, got a bit of a complicated one here. I won't go into the detail of why we've ended up here but if there is any knowledge that could help me on the next step that would be useful.
We have a 2012R2 domain that is a single forest with a number of child domains. The plan is to lever on the Azure Active Directory for providing identity control for websites/apps/systems hosted on Azure. All pretty simple so far! The complication is that the child domains are separate entities and have separate Azure subscriptions.
Is it possible to sync only a child domain to AAD and not the entire forest? is it possible to have multiple AAD sync systems in the same forest?
Any help gratefully received.