Sep 02 2019
- last edited on
Jan 14 2022
we have a problem installing azure ad connect on a windows server 2019. when installing the syncronization service an error occurs. this is a first time installation on a brand new server (only AD DS, DNS and DHCP has been installed).
In Azure AD Connect installation wizard, we use the express settings. AD DS Enterprise Admin credentials and Azure AD Global Admin credentials are correct. A service user account is successfully auto-generated during the installation.
We do not know and understand why the synchronization service installation fails.
Parts of the logs (in German) attached...
Sep 10 2019 02:45 PM
@mmw_it Sounds like your issue might be due to connectivity to a DC in your network.
System.DirectoryServices.AccountManagement.PrincipalServerDownException: The server was unable to connect. ---> System.DirectoryServices.Protocols.LdapException: The LDAP server is not available.
Is ADDS installed on this server?
Was the server promoted to a DC?
Installing Azure AD Connect on a Domain Controller is not recommended due to security practices and more restrictive settings that can prevent Azure AD Connect from installing correctly.
I suggest going through these prerequisites.
Sep 12 2019 12:18 AM
@rosaliodYes, ADDS is installed on this server and yes, the server was promoted to a DC. This may not be recommended, but it is the most standard case in small businesses (in our case 50 users)?! We have not found and heard anything that others have problems with. Quite the reverse!
The LDAP server is online (checked via telnet localhost / server ip 389 or 636). Naming context is like LDAP://COMPUTERNAME.ad.contoso.com/....