en
Support
SerNet has successfully implemented a hybrid identity scenario for Qudora Technologies GmbH: A local Samba Active Directory domain remains the primary directory, while Microsoft Entra ID is integrated via Entra Connect. This allows Microsoft 365 services such as Exchange Online, Teams, and SharePoint to be used with identities from Samba AD.
What sounds straightforward in terms of architecture was technically challenging. To establish the connection, Exchange-related attributes had to be accurately mapped to Samba AD. This required work on the LDAP schema, protocol analyses, debug logs, and targeted adjustments to the Samba code.
The project’s success demonstrates SerNet’s particular strength: the interplay of multiple areas of expertise. Samba AD integration, upstream Samba engineering, and Microsoft 365 and Exchange Online experience from the Secure Infrastructures division all came together here. It was precisely this synergy that made it possible to implement the scenario in a robust and production-ready manner.
The necessary changes have since been incorporated into Samba upstream. This means the technical foundation is now available beyond the scope of this specific customer project.
The result is a production-ready setup in which Samba AD continues to serve as the primary identity management system on-premises, while Entra Connect synchronizes identities unidirectionally to Entra ID.
The detailed technical report has been published on samba.plus. To the article: Bridging On-Prem and Cloud: Samba AD to Entra ID Success Story
