Questions tagged [azureadconnect]
30 questions
3
votes
1 answer
Active Directory ADSync error with non-existent account
I have a weird ADSync error stating that my local active directory contains two objects with the same ProxyAddress property. One of accounts is username@domain.tld (which is correct) and the second is username@domain.onmicrosoft.com (which is…
Cyrill U
- 98
- 2
- 2
- 6
3
votes
2 answers
How to Confirm or Enable LDAP/SSL for Azure AD Connect?
Microsoft has an advisory that states they will be prepping LDAP/SSL (LDAPS). https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/ADV190023
While Microsoft doesnt specifically list instructions to setup LDAP/SSL for Azure AD Connect,…
confoundr
- 397
2
votes
1 answer
How to map Active Directory user to existing Azure AD Admins in Azure AD Connect?
I have had the following scenario working fine for years.
One simple local AD domain (local.whatever.com) with user LOCAL\john.doe (Domain Admin)
One isolated Office 365 tenant (whatever.com) with user john.doe@whatever.com (Office 365 Global…
dsuy
- 123
2
votes
1 answer
Using synced on-premises AD Users with External SMTP mail Addresses in Office 365
We are an academy with a an on-premises domain setup with an Office 365 tenant using Azure AD Connect, we have no Exchange servers. We have two categories of on-premises domain users, Staff and Students. Staff will be given Exchange Online mailboxes…
2
votes
1 answer
Why is VSS creating failed logon events (Event ID 4625) when Azure AD Connect is installed?
We have a customer with a Windows Server 2016 domain controller. It's a small business so their server infrastructure consists of a Hyper-V host and this DC. The DC hosts file shares and Azure AD Connect for syncing identity with Office 365.
We…
Thomas
- 900
1
vote
1 answer
Map Existing Office 365 user to new Azure AD user
We have our on-premises AD synced to Azure AD using ADConnect. We use Office 365 for Exchange/SharePoint/Skype/etc.
There was a user having some issues (not related to O365 or Azure AD) and the decision was made to create a new AD account for them…
Nicknow
- 111
- 3
1
vote
0 answers
Re-install Azure AD Connect fails
Previously installed AAD Connect and synced from local AD domain to Azure AD (Office 365). Had catastrophic on-premise failure and rebuilt domain from scratch. Now trying to re-install AAD Connect and establish sync from "new" domain to Office 365…
spacenomyous
- 1,339
- 8
- 16
1
vote
1 answer
Does Entra Kerberos (Azure AD Kerberos) support sign in to file shares without line of sight to on-premises domain controller?
I was naively thinking that Azure Kerberos (Entra Kerberos or Cloud Kerberos Trust) can help me in the following hypothetical situation, but it seems to me that it won't (at least in its current state):
I have a hybrid-joined Windows 11 laptop, I'm…
bahrep
- 706
1
vote
1 answer
Intune issues after UPN change for user
I have a bit of a weird situation, already contacted Microsoft support, but hoping sages here know something.
We are planning a change of UPN for our 700+ users. We are in the process of testing what consequences this will bring. ( I know, a lot! :)…
AnalyticaL
- 183
1
vote
1 answer
Is it possible to fully undelete an Azure AD hybrid user account? If so, how?
Whereas this article says a deleted AD user only needs to be restored from the recycle bin for its Azure AD object to aslo be restored. For us, when an AD user object is undeleted, Azure AD Connect thinks it must provision (create anew) an Azure AD…
Nathan Hartley
- 1,720
1
vote
1 answer
How can I change the destination of Azure AD group writeback after on-premise groups have been created?
I tried running this command to change the destination, but it didn't seem to work. I thought that it might move the existing groups to the new location after the next sync.
$a = Get-ADSyncGlobalSettings
($a.parameters | where {$_.Name -eq…
pat o.
- 2,009
1
vote
1 answer
AD Connect: No sync errors but Azure shows no sync
Problem
I am trying to use AD connect to sync a set of filtered users to Azure from an on-premise environment which has never been set up as a hybrid before.
AD connect is showing a successful sync in the AD sync service. In Azure, the sync status…
Rhys
- 27
1
vote
0 answers
Duplicate objects in AD and ADC (hybrid environment)
We are managing a migration to Office 365.
I have therefore configured a server with a DC role and one with the Azure AD Connect component.
Some users had already been enrolled in Azure AD to take advantage of Office 365 licenses, while the others I…
1
vote
1 answer
WHfB - Hybrid Certificate Trust - Failed provisioning
After setting up Windows Hello for Business, in a Hybrid Azure AD joined Certificate Trust Deployment scenario, i ended up with the following events in my test client machine after a failed provisioning.
I reviewed my setup, but i must be missing…
Ricardo Garrido
- 11
- 1
- 3
1
vote
1 answer
Trouble setting up ADConnect for on-prem domain with .local
On-prem AD: shortname.local, Windows 2012 & 2019 DC
On-prem Exchange: fullname.com
fullname.com is verified on Azure AD
Trying to install AzureADSync on Win2019 DC. Added fullname.com as UPN suffix in AD Domains and Trusts, and change UPN suffix…
Roget Luo
- 11