acatic
(Inegolluyum)
1
Anyone implemented the recent Azure AD dirsync release?
Any issues encountered?
2 Spice ups
acatic
(Inegolluyum)
2
We already have dirsync, but some users are not perfectly synced. I’m wondering if the sync will push their current on-prem password to the cloud and overwrite their existing cloud password. Would any admin action be necessary?
dehcbad25
(dehcbad25)
3
From what I read, the on premises should overwrite the cloud (Azure)
1 Spice up
I just attempted this yesterday. We already have SQL server 2005 running on the server I attempted on. SQLExpress 2012 is installed along with the dirsync utility. They didn’t like to play well. Could not get it to install completely.
acatic
(Inegolluyum)
6
Interesting. I’d think of installing it on the domain controller.
We already installed Azure AD sync actually, we just didn’t turn on the sync yet.
dehcbad25
(dehcbad25)
7
Akhmed knows. He has seen it all thru his glass eyes.
BTW, I read the review of Azure IaSS about a month ago, that is where I got the info. It just stuck to me because we will need to do something similar for our 365 deployment, and I have been thinking on having an AD server in the cloud for disaster recovery
I could be wrong here, but I don’t believe that you can install it on a domain controller. I’d have to look at the requirements again though.
1 Spice up
bizdps
(BizDPS)
9
This is welcome news for SMBs! Warning businesses to not use ADFS was getting old quickly.
Following up what Kylan said, I don’t feel it’s wise to install SQL Server on a DC anyway.
Please post your outcome - I’m using an alternative product at the moment but it’s quite hit and miss, so the official product should do the job?!
acatic
(Inegolluyum)
11
Awesome news indeed. We’re planning it for Wednesday.
As for SQL on DC - I thought the same too. Likely you’re right. Mine isn’t actually installed on a DC, sorry. BUT, I did see it done in a professional tutorial (@xenapptraining.com), where the trainer installed the SQL farm on his DC. I always wanted to ask him why he did that without any comment.
Yes, we do this. Huw and Wife of SAM are on the team that handles that.
1 Spice up
drwhy
(Dr.Why)
14
I’d love to see how this compares to MessageOps Password Sync tool. What tool are you using?
acatic
(Inegolluyum)
15
Applied it two midnights ago. So far, so good! Syncs within a couple minutes. No issues reported.
acatic
(Inegolluyum)
16
We have about 400 users at a few dozen locations.
drwhy
(Dr.Why)
17
1 Spice up
roelstra
(Roelstra)
18
I was looking at implementing the Message Ops Password Sync but I’d much rather use this. Is it possible to do the upgrade but not have the passwords sync at first?
drwhy
(Dr.Why)
19
You can install Dirsync without password sync enabled. When your ready to sync passwords, you can run the Dirsync configuration and enable password sync.
Additionally, DirSync does not sync password like the Message Ops Password Sync tool. Because DirSync doesn’t have to intercept the password change before syncing it, it actually syncs the users current password upon it’s first sync which means your users don’t have to change their passwords upon the first sync.
Hope this helps.
roelstra
(Roelstra)
20
That does indeed help! Thanks a ton!
What kind of upgrade is this? Is it “in place” where we can install it directly on top of the current DirSync install or will we need to remove the current utility and then install this?
Also, we’re running SQL Server Express 2k8r2 on the server handling the DirSync utility. Has anyone running that version of SQL experienced any issues with the install?
