Single Sign On Office 365 Client 1 Clients Domain Controller Synchronize User / Password (one way) AADConnect Azure AD Authenticate User Client 1 VM Client 1 Client2 AADConnect Office 365 VM Client 2 RDP Client 2 Router Synchronize User / Password (one way) Authenticate Outlook Azure AD Authenticate User VM Client 3

Password Writeback User enrolls in Self Service Office 365 Client 1 Clients Domain Controller Establish Writeback AADConnect User Resets Password Azure AD Client 1 New Password Synced to AD Client2 AADConnect Office 365 Client 2 Establish Writeback Azure AD

Azure Multi-Factor Auth Azure MFA Azure Multi-Factor Auth Office 365 Client 1 Clients Domain Controller AADConnect Azure AD Client 1 Azure MFA VM Client 1 Client2 AADConnect NPS Extension for Azure MFA AD and RADIUS Auth RDP Access Office 365 VM Client 2 Remote Desktop Gateway Connect through RDG Client 2 Router Azure AD VM Client 3