Forum Discussion
Azure AD Connect Admin Audit log
Hi, Does anyone know if there is an Admin audit log for AADConnect? i'm looking for something that logs when an admin has, for example, made a change to the sync, such as adding or removing an O...
having done some testing, and some further googling the view i have come to is:
- There are no separate AADConnect log files outside of event viewer
- AADConnect only logs the information/warning/error messages as stated here: https://support.microsoft.com/en-gb/help/2684395/how-to-troubleshoot-azure-active-directory-sync-tool-installation-and-configuration-wizard-errors
- AADConnect does not log ANY configuration changes, administrative actions, or other useful information beyond the sync issue type errors above
- AADConnect has no management/control/settings related to logging.
I'm really hoping i'm wrong about this!
in my lab, i performed a number of tasks:
- enabled the logs for AADConnect operational and debug
- edited connectors
- edited OU selection
- changed security credentials in use
All of these could result in sync failure, intentionally or accidentally, and nothing is logged anywhere. surely this is quite a big void in security, auditing, and oversight?
if anyone could chime in and point me towards conflicting information i would be very happy.
Thanks
https://feedback.azure.com/forums/169401-azure-active-directory/suggestions/37426342-admin-audit-function-for-azure-ad-connect-synchron
We too have issues and unable to resolve them. Logs would be useful.
