Home

AD Connect hangs synchronizing local AD to Azure AD

%3CLINGO-SUB%20id%3D%22lingo-sub-37179%22%20slang%3D%22en-US%22%3EAD%20Connect%20hangs%20synchronizing%20local%20AD%20to%20Azure%20AD%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-37179%22%20slang%3D%22en-US%22%3E%3CP%3EWe%20are%20using%20latest%20Azure%20AD%20Connect%20tool%20(1.1.371.0)%20on%20WS2012R2%20server%20(2CPU%2C%202GB%20RAM%2C%20Hyper-V%20virtual%20machine).%20In%20a%20few%20months%20synchronization%20has%20hanged%203-4%20times.%20I%20usually%20reboot%20whole%20server%20to%20fix%20this.%20Today%20i%20have%20found%20such%20error%20(at%20the%20same%20time%20AD%20Connect%20Sync%20Status%20tool%20was%20showing%20in-progress%20state)%3A%3CBR%20%2F%3E%3CBR%20%2F%3EThe%20management%20agent%20controller%20encountered%20an%20unexpected%20error.%20%22ERR_%3A%20MMS(2084)%3A%20..%5Cmemutils.cpp(7965)%3A%20Unusual%20error%20code%20reported%200x80004005%3CBR%20%2F%3EAzure%20AD%20Sync%201.1.371.0%22%20The%20management%20agent%20%22ourdomain.onmicrosoft.com%20-%20AAD%22%20failed%20on%20run%20profile%20%22Delta%20Synchronization%22%20because%20the%20server%20encountered%20errors.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-37179%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EIdentity%20and%20Access%20Management%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-41334%22%20slang%3D%22en-US%22%3ERe%3A%20AD%20Connect%20hangs%20synchronizing%20local%20AD%20to%20Azure%20AD%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-41334%22%20slang%3D%22en-US%22%3E%3CP%3EWe%20are%20only%20installing%20Security%20and%20Critical%20updates%20on%20the%20servers.%20In%20that%20regard%20all%20machines%20(HV%20host%2C%20VM%20with%20Ad%20Connect%20(separate%20VM%2C%20not%20on%20PDC)%2C%20VM%20with%20PDC%2C%20VM%20with%202%20DC)%20are%20up2date.%20There%20is%20no%20RODC.%3CBR%20%2F%3E%3CBR%20%2F%3E%22Still%20double%20check%20if%20replication%20of%20CN%2C%20DN%2C%20etc.%20is%20all%20replicated%20to%20other%20DC.%22%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-41034%22%20slang%3D%22en-US%22%3ERe%3A%20AD%20Connect%20hangs%20synchronizing%20local%20AD%20to%20Azure%20AD%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-41034%22%20slang%3D%22en-US%22%3E%3CP%3EWe%20are%20only%20installing%20Security%20and%20Critical%20updates%20on%20the%20servers.%20In%20that%20regard%20all%20machines%20(HV%20host%2C%20VM%20with%20Ad%20Connect%20(separate%20VM%2C%20not%20on%20PDC)%2C%20VM%20with%20PDC%2C%20VM%20with%202%20DC)%20are%20up2date.%20There%20is%20no%20RODC.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-41016%22%20slang%3D%22en-US%22%3ERe%3A%20AD%20Connect%20hangs%20synchronizing%20local%20AD%20to%20Azure%20AD%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-41016%22%20slang%3D%22en-US%22%3E%3CP%3EMake%20sure%20everything%20is%20up2date%2C%20both%20Local%20%26amp%3B%20HV-VM%2C%20also%20if%20this%20is%20the%20PDC%2C%20make%20sure%20you%20have%20backup%20and%20if%20the%20the%20HV-VM%20is%20RODC%20check%20for%20sync%20runtime%20progress%20via%20powershell.%3CBR%20%2F%3E%3CBR%20%2F%3E%3CA%20href%3D%22https%3A%2F%2Ftechnet.microsoft.com%2Fen-us%2Fwindows-server-docs%2Fidentity%2Fad-ds%2Fmanage%2Fpowershell%2Fintroduction-to-active-directory-replication-and-topology-management-using-windows-powershell--level-100-%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Ftechnet.microsoft.com%2Fen-us%2Fwindows-server-docs%2Fidentity%2Fad-ds%2Fmanage%2Fpowershell%2Fintroduction-to-active-directory-replication-and-topology-management-using-windows-powershell--level-100-%3C%2FA%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-40639%22%20slang%3D%22en-US%22%3ERe%3A%20AD%20Connect%20hangs%20synchronizing%20local%20AD%20to%20Azure%20AD%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-40639%22%20slang%3D%22en-US%22%3EYah%20-%20I%20would%20not%20make%20any%20changes%20to%20the%20Express%20DB.%3CBR%20%2F%3EHope%20the%20RAM%20is%20the%20solution.%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-40593%22%20slang%3D%22en-US%22%3ERe%3A%20AD%20Connect%20hangs%20synchronizing%20local%20AD%20to%20Azure%20AD%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-40593%22%20slang%3D%22en-US%22%3E%3CP%3EWe%20are%20using%20the%20built-in%20(Express%3F)%20database%20provided%20by%20AD%20Connect%20itself.%20We%20probably%20can't%20tune%20that%20(or%20shouldn't%20even).%20On%20another%20thread%20it%20was%20suggested%20to%20give%20it%20more%20RAM.%20It%20was%202%20GB%20originally.%20I%20have%20increased%20it%20to%204%20GB%20and%20it%20is%20running%20fine%20for%201-2%20weeks%20so%20far.%20But%20i'm%20still%20hesitant%20to%20call%20it%20'solved'.%20Need%20to%20monitor%20longer.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-40583%22%20slang%3D%22en-US%22%3ERe%3A%20AD%20Connect%20hangs%20synchronizing%20local%20AD%20to%20Azure%20AD%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-40583%22%20slang%3D%22en-US%22%3E%3CP%3EWe%20had%20some%20cases%20where%20our%20Sync%20process%20hung%20and%20a%20server%20reboot%20was%20required.%3C%2FP%3E%3CP%3EWe%20finally%20traced%20it%20back%20to%20a%20SQL%20maintenance%20job%20that%20we%20had%20running%20on%20the%20SQL%20database%20-%20you%20may%20want%20to%20check%20that%20if%20you%20are%20using%20a%20full%20SQL%20implementation.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-37235%22%20slang%3D%22en-US%22%3ERe%3A%20AD%20Connect%20hangs%20synchronizing%20local%20AD%20to%20Azure%20AD%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-37235%22%20slang%3D%22en-US%22%3E%3CP%3EI'd%20say%20reinstall%20or%20even%20do%20a%20clean%20install%20on%20another%20box.%20Checking%20the%20logs%20might%20give%20you%20more%20clue%2C%20but%20it's%20more%20trouble%20to%20investigate%20IMO...%3C%2FP%3E%3C%2FLINGO-BODY%3E
Oleg K
Super Contributor

We are using latest Azure AD Connect tool (1.1.371.0) on WS2012R2 server (2CPU, 2GB RAM, Hyper-V virtual machine). In a few months synchronization has hanged 3-4 times. I usually reboot whole server to fix this. Today i have found such error (at the same time AD Connect Sync Status tool was showing in-progress state):

The management agent controller encountered an unexpected error. "ERR_: MMS(2084): ..\memutils.cpp(7965): Unusual error code reported 0x80004005
Azure AD Sync 1.1.371.0" The management agent "ourdomain.onmicrosoft.com - AAD" failed on run profile "Delta Synchronization" because the server encountered errors.

7 Replies

I'd say reinstall or even do a clean install on another box. Checking the logs might give you more clue, but it's more trouble to investigate IMO...

We had some cases where our Sync process hung and a server reboot was required.

We finally traced it back to a SQL maintenance job that we had running on the SQL database - you may want to check that if you are using a full SQL implementation.

We are using the built-in (Express?) database provided by AD Connect itself. We probably can't tune that (or shouldn't even). On another thread it was suggested to give it more RAM. It was 2 GB originally. I have increased it to 4 GB and it is running fine for 1-2 weeks so far. But i'm still hesitant to call it 'solved'. Need to monitor longer.

Yah - I would not make any changes to the Express DB.
Hope the RAM is the solution.

Make sure everything is up2date, both Local & HV-VM, also if this is the PDC, make sure you have backup and if the the HV-VM is RODC check for sync runtime progress via powershell.

https://technet.microsoft.com/en-us/windows-server-docs/identity/ad-ds/manage/powershell/introductio...

We are only installing Security and Critical updates on the servers. In that regard all machines (HV host, VM with Ad Connect (separate VM, not on PDC), VM with PDC, VM with 2 DC) are up2date. There is no RODC.

We are only installing Security and Critical updates on the servers. In that regard all machines (HV host, VM with Ad Connect (separate VM, not on PDC), VM with PDC, VM with 2 DC) are up2date. There is no RODC.

"Still double check if replication of CN, DN, etc. is all replicated to other DC."

Related Conversations
Tabs and Dark Mode
cjc2112 in Discussions on
38 Replies
Extentions Synchronization
Deleted in Discussions on
3 Replies
flashing a white screen while open new tab
Deleted in Discussions on
14 Replies
Stable version of Edge insider browser
HotCakeX in Discussions on
35 Replies
Security Community Webinars
Valon_Kolica in Security, Privacy & Compliance on
13 Replies