Forum Discussion

PVIAnthony's avatar
PVIAnthony
Copper Contributor
Dec 18, 2024

Implementing Azure ADConnect in a live environment

I have been tasked with implementing Azure ADConnect for my company. We currently have 2 locally virtualized domain controllers and are already utilizing Office365 for mail. What would be the easiest...
azure
Azure AD Connect
entra id
balasubramanim's avatar
balasubramanim
Iron Contributor
Dec 19, 2024

PVIAnthony 

To implement Azure ADConnect, Please try the below steps.

Prepare Environment:

1. Ensure your AD is healthy.
Match Office 365 UPNs/emails with AD users.

2. Choose Sync Type
Use Password Hash Sync (simplest) or Pass-through Authentication.
Enable Seamless SSO for better user experience.

3. Install Azure ADConnect
Install on a member server or domain controller.
Use Staging Mode to test syncing without affecting users.

4. Test and Validate
Sync a subset of users first.
Check account matching and synchronization results.

5. Go Live
Disable Staging Mode.

6. Run a full sync with
Start-ADSyncSyncCycle -PolicyType Initial

 

balasubramanim's avatar
balasubramanim
Iron Contributor
Dec 19, 2024

PVIAnthony 

Syncing an empty OU won't affect existing Office 365 accounts. However, when you add users to the OU later, ensure their UPNs or email addresses in AD match the Office 365 accounts to avoid duplicates. Test with one user first, run a delta sync, and confirm the match works as expected. Gradually add more users once verified.

Resources