Forum Discussion
- LainRobertsonSilver Contributor
Hi, Steffen.
I'm afraid I only speak English, so I had to rely on a translator to process the screenshot you included.
Assuming I typed the text from the screenshot correctly, the translator produced (from the top and bottom of the screenshot, respectively):
Enter a domain administrator account to configure your local forest to use single sign-on.
The status for single sign-on cannot be retrieved.
Based on that translation, it's not an issue with the new organisational unit you're selecting.
The things that come to mind are:
- Ensure you are running the AAD Connect configuration wizard as a domain administrator of the local Active Directory forest you are synchronising;
- Ensure the Azure credential you've provided is a member of at least one of the following built-in Azure roles:
- Hybrid Identity Administrator;
- Global Administrator;
- You're running a very old version of AAD Connect and potentially have a firewall issue as noted here:
- The Azure "security defaults" policies, conditional access policies or MFA settings on your Azure administration account could be getting in the way:
- Mentioned in the above article, as well as this next one:
- Unable to set SSO in Azure AD Connect - Microsoft Community Hub
- Check that your environment still meets the prerequisites for SSO:
Cheers,
Lain