linux

What is the best way to manage a heterogeneous infrastructure (Linux, Windows, etc)?

Need your advice and experience. I have been administering OS and networks for 5 years. Of course, this is mainly Windows Server (MS AD, Exchange, etc.). In addition, I have a Linux course certificate (took a couple of courses on Stepik), deployed several services in a non-combat environment (including LAMP, nginx, etc). That is, I have general, superficial knowledge about the system. The last job had a large infrastructure of 17 subdomains, ~500 workstations, ~100 servers. There was practically no Linux (only postfix and mysql\postgre). I see\understand\know the general logic of building an infrastructure based on Windows, how it happens. In a nutshell - we raise the domain and DC, configure network interfaces, install the necessary services (AD + DNS, DHCP, etc.), set up user accounts in AD, enter the working computers of employees into the domain, etc.
It so happened that in literally 2 weeks I will get a job at another workplace with a completely different, heterogeneous infrastructure - there is Linux (to a greater extent, with all sorts of DevOps tools like Docker, GitLab, etc.), and Windows (to a much lesser extent - 1-2 hosts) and MacOS (boss' laptop). The company is small, but promising (so far it has 20 people). The following questions are of concern:
1) Can you please tell me the general logic of building a network in Linux? Do I need to raise a domain, as in Windows, in order to create users later, etc.?
2) What is the best way to combine all this and on the basis of what, what management tools to use - MS AD\Samba\FreeIPA\OpenLDAP\Ansible\etc? Your experience.
3) And if you look at the prospect of further expansion - which way is better to choose? (To raise a domain based on MS AD and then somehow manage Linux hosts from it or be limited to some open-source unix tools)? What is the best way to do this (steps, tools, etc.)?
4) In your opinion, is it worth using clouds (AWS, Azure, Yandex, etc) in this chain? In what cases would it be optimal?
In general, all this is somehow chaotically spinning in my head, I don’t even know where to start. If it's not difficult - tell me what and how. If it’s difficult, then just poke “where” and “what” you can read.
Thanks in advance to everyone who pays attention.
UPD:After a long discussion with colleagues, I concluded for myself that the most suitable scalable solution would be to deploy an MS AD domain (there is already a server). And gradually drive the machines there according to different OUs (a separate OU for Linux and for windows). Enable authorization for Linux users through a bunch of SSSD + Samba4. Later later enable SSO. Move away from OpenLDAP gradually. Windows desktops can be configured via group policies, Linux via Ansible, . But this is in the plans, but how it will be in practice, time will tell! Thanks again to everyone who helped sort this out .