I’m the IT-guy at a school. Our students and teachers use a variety of platforms, programs and apps. Most of our users create a profile for each app, with a username and password. Luckilly, most of those apps allow them to log in with their G-Suite (Google Apps).
I make sure every user has an account on our Active Directory, so they can log into the computers, have the right permissions, see the right printers/shares etc. We have a network policy server, which also works as a radius server, allowing users to log into the wifi with their active directory credentials using WPA2-Enterprise. To make this happen we have two domain controllers, one is a server 2008, the other is a server 2008R2. The network policy server/radius is also a server 2008R2.
On top of that, we have G-Suite for Education for every teacher and student. In order to limit the amount of credentials users need to remember, it would be superb if they could use their G-suite e-mail and password to log into active directory (on a Windows 7 Pro client, maybe even their mobile devices with WPA2-Enterprise). Is this even remotely possible, or are these the fevered dreams of a mad man?