Hi, I am an Office 365 tenant configured with Azure AD Connect AD synchronization back to my on-premise AD controller. All is working well with what I have configured today.
In order to reduce overall operating expense and complexity, I'd like to fully migrate my AD infrastructure into Azure. I know I can set up a Windows 2012 VM and migrate my on-premise AD controller via VPN, but what I would prefer to do is utilize Azure Active Directory Services as my sole domain controller. I realize there is some reduced functionality but all of that is acceptable to us if it yields the benefits we are expecting it to in terms of reduced complexity.
Are there best practices for migrating from my on-premise setup to cloud-only Azure ADDS? Is it as simple as stopping the directory synchronization between the two and creating a VPN connection into Azure to enable my client workstations authenticate to the Azure ADDS controller? Will the domain function without the current on-premise DC functioning?
Thanks in advance for any advice or tips as I work through this.