AADConnect 1.1 SyncScheduler Issue: DateTime Error and Scheduler not working

I recently installed Azure AD Connect 1.1 (Build 1.1.105.0) in my demolab.
I installed on a fresh Windows Server 2012 R2 with latest hotfixes and done the following:

  • Install AADC in Custom Setting Mode
  • Done all settings (which are not relevant to that issue)
  • Disabled direct start of Scheduler to modify sync rules
  • Re-Run AADC Wizard and activated the now internal Scheduler

But when checking SyncCycle within the Sync Service Manager I cloud not see any syncs.

Read more of this post

New Release: Azure AD Connect 1.1 is GA

A new release of Azure AD Connect is now GA, its version number is 1.1 or build 1.1.105.0.

Check the download page here and also the release version history here.
There is also a post on Alex Directoy Blog with some more details on the new features.

This are the new features and fixed issues in that release, as you can see it brings some new main features:

Read more of this post

Assign Azure/O365 licenses based on AD group membership

Hello,

just a short post today.

I thgought it might be a good idea to share more scripts in future, so here is the first one to assign Azure/O365 licenses based on AD group membership.
EMS/AADP and RMS licenses can also be assigned directly in Azure using group memberships but you still have to handle O365 licenses by your own with scripts.

So at some customers I have the reqirement to also manage O365 licenses after synchronizing objects with AADConnect, so I decided to manage all licenses with script.

This script still need some improvement in security (PW stored in file) but you can modify that like you want.
Also I do not cover License Option of O365 Licenses, instead the complete O365 features will be assigned.

Read more of this post

AADConnect: Updated build (1.0.8667) available

If you look at the current download page of Azure AD Connect (AADC) you will see there is a new build (Version 1.0.8667) available since 8/20/2015.

Azure AD Connect Download Page

You can get a list of improvements and fixes here:

Azure AD Connect: Version Release History

 

Using AADConnect to merge users originating in AzureAD

I shortly came into a situation with a customer who’s got to have OnPremise IT infrastructure for the first time. As a start-up they began with BYOD and some SaaS applications incl. a Hosted Exchange.

Since they are and will be heavily growing over the next few years they decided to plan and implement an IT infrastructure OnPremise with only a few components for security and client deployment including an Active Directory and combine that with Office365 and AzureAD for Mail and SaaS Application Management.

The migration from Hosted Exchange to O365 is already done, which leads into user account in Azure AD for all 250 users. I’ve implemented the Active Directory for them and now want to synchronize OnPrem AD Users with AzureAD.

But since all account are in Azure AD, I have to do an initial import of those accounts from Azure AD to OnPrem. And that’s where the issues began.

Read more of this post

Azure AD Connect (AADConnect) now generally available (GA)

Today I saw the announcement of GA of AADConnect on the Microsoft Directory blog:

You can download the binaries from here.

AADConnect is a complete replacement and enhancement to DirSync and also AADSync.
With the release of this RTM both older tools should be in your mind as deprecated.

Here are some features provides by AADConnect:

  • Enable your users to perform self-service password reset in the cloud with write-back to on premises AD
  • Enable provisioning from the cloud with user write back to on premises AD
  • Enable write back of “Groups in Office 365” to on premises distribution groups in a forest with Exchange
  • Enable device write back so that your on-premises access control policies enforced by ADFS can recognize devices that registered with Azure AD. This includes the recently announced support for Azure AD Join in Windows 10.
  • Sync custom directory attributes to your Azure Active Directory tenant and consume it from your cloud applications
  • Multi Forest Support
  • Wizard for setting up ADFS and WAP Server directly from the main wizard via Remote PowerShell
  • Staging Mode for testing or other purposes

Keep in mind even this is a RTM you will eventually face some issues because some of the features like user writeback are still in preview in Azure AD.

In addition Azure AD Connect health has also reached GA.

 

Note2Self: Directory Integration Tools Overview

If you’re asking yourself the question which of the current directory tools to chose, here is some help:

I found this nice overview in the Azure MSDN library documentation:

https://msdn.microsoft.com/en-us/library/azure/dn757582.aspx

On that documentation still FIM 2010 R2 with WAAD Connector is listed as an option, but you should not use that for any new deployments anymore, beside you have very special requirements (like multitenant) and only using that scenario as in interim solution until AADConnect will support that in future.

 

%d bloggers like this: