Skip Ribbon Commands
Skip to main content

Domain Import Issue with Office 365 for Education

"Could not verify this domain because it was previously configured for your tenant or for another tenant"

Andrew Walman

27/11/2015

​Recently we were helping an academic customer set up their Office 365 subscription for use by staff. The students had been using 365 for some time, and ADFS had been configured for the college's student domain, to enable single sign-on. With the latest version of Azure Active Directory Connect though, there's not much need for ADFS anymore, so we figured it would simply be a case of adding the college's domain name, verifying it, and syncing all the staff username - how wrong we were!

The first error we encountered when trying to import the domain was baffling "Could not verify this domain because it was previously configured for your tenant or for another tenant". Now, being as we were working with the only people who had access to both administrate the subscription and the DNS zone, we were certain it wasn't. Perhaps it was because we had already imported the subdomain and those verification records still existed? We removed them and the error persisted. Removing the subdomain wasn't an option, even temporarily, as it was in use by over 62,000 accounts - to remove an in-use domain requires the username and primary email address is changed first.

So we looked at how the domain could be in use, and there's only one way it can be without DNS verification - Microsoft's self-signup service offered to the academic sector. This allows both staff and students to sign up with a valid school/college/university email address (ending in ac.uk in the UK) and they then have access to Office 365 benefits. Unfortunately, this prevents IT from using that domain with an existing subscription - but there is a way around it that Microsoft have documented here -https://support.office.com/en-us/article/How-to-manage-a-domain-already-in-use-by-people-in-your-organization-who-signed-up-with-their-work-or-school-email-address-b9707ec8-2247-4e25-9bad-f11ddbc686e4?ui=en-US&rs=en-US&ad=US 

The issue here is that this can self service sign up can happen without IT knowing - in this case around seven teachers had signed up and had begun using the service. Thankfully there wasn't much data to migrate, but it could have a been a real pain to merge the two subscriptions. I can imagine many institutions transitioned their students away from live@edu into 365 using a student subdomain, and are now at least thinking about moving their staff too, so this could become a common issue.


 About us

Fuse Collaboration Services is a Cloud Solution Provider and Microsoft Gold Partner specialising in delivering SharePoint, Skype for Business, and Azure cloud-based solutions. Based in Northampton, UK.

Microsoft Gold Partner Logo showing 5 competencies

Read more

 Latest Tweets

 Latest Blog

 

 

Get single sign-on for all apps3995<p class="lead">​​​Are you looking for an identity-as-a-service (IDaaS) solution that solves your biggest IT challenges without compromising user experience?</p><p class="lead">With Azure Active Directory, the Microsoft IDaaS solution, you can streamline the employee experience with single sign-on capabilities and reduce the complexity of managing identity, security, and access to your company’s critical data. You get a proven solution that allows you to&#58;​</p><hr />​ <div class="lead"><div class="row"><div class="col-md-6">​ <div class="media"> <img class="img-responsive pull-left" src="/ourblog/Blog%20Site%20Images/image004.png" alt="" />​ ​ <div class="media-body">​​Quickly adopt cloud services​</div></div></div>​ <div class="col-md-6">​ <div class="media"> <img class="img-responsive pull-left" src="/ourblog/Blog%20Site%20Images/image006.png" alt="" /> <div class="media-body">Improve application security</div></div></div>​ ​</div>​ <div class="row"><div class="col-md-6">​ <div class="media"> <img class="img-responsive pull-left" src="/ourblog/Blog%20Site%20Images/image008.png" alt="" /> <div class="media-body">Empower employees with access to world-class cloud apps</div></div></div><div class="col-md-6">​ <div class="media"> <img class="img-responsive pull-left" src="/ourblog/Blog%20Site%20Images/image010.png" alt="" /> <div class="media-body">Monitor application usage and protect your business</div></div></div></div>​ <div class="row"><div class="col-md-6">​ <div class="media"> <img class="img-responsive pull-left" src="/ourblog/Blog%20Site%20Images/image012.png" alt="" /> <div class="media-body">Easily and securely manage employee and vendor access</div></div></div><div class="col-md-6">​ <div class="media"> <img class="img-responsive pull-left" src="/ourblog/Blog%20Site%20Images/image014.png" alt="" /> <div class="media-body">Secure remote, mobile access to on-premises apps</div></div></div>​ </div><div class="row"><div class="col-md-6">​ <div class="media"> <img class="img-responsive pull-left" src="/ourblog/Blog%20Site%20Images/image016.png" alt="" /> <div class="media-body">Implement consistent, self-service application access management</div></div></div>​​​ </div></div><hr /><p class="lead"><a href="/_layouts/15/FIXUPREDIRECT.ASPX?WebId=4fc45909-2b6d-48b9-bcf9-a446e9d472d6&amp;TermSetId=c98895cd-d37f-4406-9cff-5480b4f829b6&amp;TermId=218eb0be-10f6-490a-82a7-a7fd47c8de90">Contact Fuse</a> to discuss how we can help implement IDaaS within your organisation, using our expertise and experience to reduce risk and project length.​</p> <div class="well well-lg"><p class="lead">Are you curious about how Azure Active Directory can work for you? <a href="/_layouts/15/FIXUPREDIRECT.ASPX?WebId=4fc45909-2b6d-48b9-bcf9-a446e9d472d6&amp;TermSetId=c98895cd-d37f-4406-9cff-5480b4f829b6&amp;TermId=721159e3-34c0-40dc-8028-ae2e2f2e79e4">Let us show you how​</a>!​</p></div>​​a.walman@fusecollaboration.com | Andrew Walman | 693A30232E777C6675736563735C612E77616C6D616E i:0#.w|fusecs\a.walman17/01/2018 00:00:002018-01-17T00:00:00Zno matter where they liveAzure Active Directory, the Microsoft IDaaS solution24/02/2018 00:15:562757htmlFalseaspx

 Contact us

Our address
12 Brookfield, Duncan Close
Moulton Park, Northampton
NN3 6WL
P: +44(0)1604 797979
Contact Us