My organization is migrating to Microsoft 365. We have decided that Full Hybrid (classic) offers us the highest level of flexibility and the smoothest end user transition. While running through he Hybrid Configuration Wizard I have encountered the following topics that have given me pause to reconsider our approach.
Environmental Info:
- Exchange 2013 CU 23
- 2 server DAG
- IB proxy via Proofpoint
Questions
- Local Admin account for HCW: Roughly 50% through the HCW, the wizard asks for a local admin account that will manage the on-prem resources. I have not been able to locate ANY documentation explaining what specific permissions are required for this account. I'd prefer not to grant any more permissions than required.
- Moving off on-prem exchange eventually: Our desired end-state is to have an on-prem AD environment, with AADconnect syncing on-prem user accounts to MS365 and Exchange Online being the sole repository for email. I have seen a lot of mixed information about being able move away from the Hybrid configuration. There is MS documentation that states you "cannot manage mailboxes in this scenario" which is so generic of a statement, I have to imagine there is more nuance here. I have a hard time believing that with the ferocity that MS pushes Hybrid as the gateway to Exchange Online, that there is no way to leave legacy Exchange behind. Has anyone moved into the desired end-state that I describe above