Forum Discussion

vand3rlinden's avatar
vand3rlinden
Brass Contributor
Nov 27, 2020

Azure AD Connector account as Directory Synchronization Account

Hi guys,

 

I installed AD Connect in my demo environment and everything is working great, but my Azure AD Connector account is a Global Admin in my tenant, like a normal admin. I saw in the documentation that with the install of AD connect a Directory Synchronization Account is created like: 

 

https://docs.microsoft.com/en-us/azure/active-directory/hybrid/reference-connect-accounts-permissions#azure-ad-connector-account

 

But I do not have it after the installation and nothing will show up if I run:

 

Get-AzureADDirectoryRole | where {$_.DisplayName -eq "Directory Synchronization Accounts"} | Get-AzureADDirectoryRoleMember


Have I done something wrong and how can I obtain it after the installation?

 

Regards,

 

Ricardo

 

 

  • vand3rlinden's avatar
    vand3rlinden
    Brass Contributor

    Found it, I don't know why this account is not created at the installation, but when I command "Add-ADSyncAADServiceAccount" from the AD connect server the account was created.

Resources