Forum Discussion
Implementing Azure ADConnect in a live environment
I have been tasked with implementing Azure ADConnect for my company. We currently have 2 locally virtualized domain controllers and are already utilizing Office365 for mail. What would be the easiest way to implement ADConnect while having the least amount of downtime/user interruptions.
4 Replies
To implement Azure ADConnect, Please try the below steps.
Prepare Environment:
1. Ensure your AD is healthy.
Match Office 365 UPNs/emails with AD users.2. Choose Sync Type
Use Password Hash Sync (simplest) or Pass-through Authentication.
Enable Seamless SSO for better user experience.3. Install Azure ADConnect
Install on a member server or domain controller.
Use Staging Mode to test syncing without affecting users.4. Test and Validate
Sync a subset of users first.
Check account matching and synchronization results.5. Go Live
Disable Staging Mode.6. Run a full sync with
Start-ADSyncSyncCycle -PolicyType InitialSyncing an empty OU won't affect existing Office 365 accounts. However, when you add users to the OU later, ensure their UPNs or email addresses in AD match the Office 365 accounts to avoid duplicates. Test with one user first, run a delta sync, and confirm the match works as expected. Gradually add more users once verified.
I am basically at step 5 right now. I have created a separate OU for users that will be ADSynced so that i can sync a few users at a time. My only concern is with the accounts that already exist in Office 365. If I enable syncing on this empty OU, will it have an effect on any of these accounts?
