Menu

Tag: Directory Synchronization

Office 365 – User restore failed

Prelude For whatever reason your users may end up in the recycle bin. Normally you can restore them easily by just clicking on Restore user on the Office portal. But sometimes you may get something like this: User restore failed The user can’t be restored at this time. Correlation ID: … Or visually: I’ve gone […]

Azure AD Connect Best Practices

The disaster I had gave me some good pointers regarding how one should configure and use their Office 365 tenant and on-premises AD together. Here’s some suggestions: Always use a separate “in cloud” global admin account for directory synchronization. In case you lose your synced admin accounts, you’ll still have another admin that can recover […]

Azure AD Connect Disaster Recovery

Prelude Yeah, I know, the title’s already promising enough. And yeah, it did happen. At some point in my previous post I mentioned that after group filtering failed on me I reverted to OU filtering. So at the time I had 2 filters in place. This may or may not be the cause of what […]

Azure AD Connect Preview 2

Overview I’ve just covered my experience with Azure AD Connect Preview 1, but here’s the new preview already. Some highlights: In-place DirSync upgrade is supported. Group-based filtering, in addition to OU-based filtering I’ve demonstrated with Preview 1. Syncing of on-premises custom attributes by extending the Azure AD schema. A lot of writeback stuff like user, […]

Migrating from DirSync to Azure AD Connect

Preface So DirSync is a thing of the past now. It’s deprecated but it’s supposed to keep working. For us, it didn’t. Password sync just never occured, so when a new colleague arrived at our office needing a new account I was basically forced to upgrade to the newcomer dubbed Azure AD Connect, or Azure […]