To successfully synchronize your on-premise Active Directory with Windows Azure Active Directory you can use either DirSync or Azure AD Connect.

For reference you can read more here:
https://wwwazure.microsoft.com/en-us/documentation/articles/active-directory-aadconnect/

Step 1: Download Azure ADSync services. Here is the link:
https://www.microsoft.com/en-us/download/details.aspx?id=47594

Step 2: When you have completed the downloaded, right Click on the AzureADConnect.msi and select “run as administrator”.

Azure - install azure ad connect with sql express
Azure - Install Azure AD Connect with SQL Express 1

Once the file launches, to continue, agree to the license terms which will enable the button and then click the continue button.

Azure - install azure ad connect with sql express
Azure - Install Azure AD Connect with SQL Express 2

On the Express settings page, click the grey Customize button as we will be doing a custom installation and not the express one.

On the Install required components do not select any checkbox. Click Install.

On the User sign-in screen select Password Synchronization and click Next.

On the Connect to Azure AD screen, enter the username and password of an Azure global administrator for your Azure AD. Click Next.

Azure - install azure ad connect with sql express
Azure - Install Azure AD Connect with SQL Express 3

On the Connect to ADDS screen enter the username and password for the user that has an enterprise admin account and click Add Directory. Click Next.

Side Note: Enterprise Admins permissions are not required. Here are the minimum permissions required:

 
  • The minimum level of permissions required by the wizard is Domain user.
  • However, the specified account must have the permissions required for your intended scenario.
  • If you intend to configure password sync to Azure AD, ensure this account has the following permissions assigned:
    • Replicating Directory Changes
    • Replicating Directory Changes All

Azure - install azure ad connect with sql express
Azure - Install Azure AD Connect with SQL Express 4

If you intend to configure sync to ‘write back’ information from Azure Active Directory to your local Active Directory, ensure the account has write permissions to the directory objects and attributes you intend to be written back.

Azure - install azure ad connect with sql express
Azure - Install Azure AD Connect with SQL Express 5

On the Uniquely identifying your users screen leave default settings. (Note: changing source attribute for userPrincipalName is part of Alternate Login ID configuration). Click Next.

On the Filter users and devices (it is recommended implement filtering in here for Proof of Concept due to group membership limitation). Click Next.

On the Optional features select “Exchange hybrid deployment” and “Password hash synchronization”. Click Next.

Azure - install azure ad connect with sql express
Azure - Install Azure AD Connect with SQL Express 6

Ensure that the above option is selected and then click Install.

Once complete then click Exit.

Hope it helps.

    wpChatIcon

    Discover more from COLLABORATION PRO

    Subscribe now to keep reading and get access to the full archive.

    Continue reading