Setting Up An EMS Lab in ARM (Azure Resource Manager) Step-By-Step – Part 6
Quick links to the other parts of the post:-
Now that we’ve come this far, it is time to setup synchronization with the on-premises Active Directory. Before that, back to the classic portal. We need to first turn on directory sync on the newly created directory.
Go to the directory and click on the Directory Synchronization tab. Then on the Directory Sync, click on ACTIVATED. Click Save.
At the prompt, click Yes.
Directory Sync is not activated. Now we can begin installing the AD Connect tool. The easiest way to get the latest version of the Azure AD Connect tool is from the classic portal. Alternatively, you can go here to download it. For more details about all the other previous versions of the tool, go here.
Once downloaded, double-click on the installer to begin installation. At the Welcome page, select I agree to the license terms and privacy notice. Then click Continue.
At the Express Settings page, click Customize.
These settings are really up to you. I have specified a custom installation location and an existing service account. Then click Install.
In this post I am not going to cover setting up single sign-on with ADFS thus we will just install a single AD Connect server. At the User Sign-In page, select Password Synchronization then click Next.
Enter an Azure AD Global Admin account user name and password then click Next.
At the Connect Directories page, enter a user account to connect to your on-premises Active Directory, then click Add Directory.
The directory is added, click Next.
At the Azure AD sign-in page, click Next.
At the Domain/OU Filtering page, keep the defaults if you want to sync all objects in your on-premises AD, then click Next.
At the Identifying users page, keep the defaults and then click Next.
At the Filtering page, keep the defaults and then click Next.
At the Optional Features page, select Password synchronization and Password writeback and then click Next.
The default is to start the synchronization right after the install is complete. There is a second option to enable staging mode. This is a scenario where you can have a second AD Connect server to be kept in case of disaster which can be used to quickly get another AD Connect server up and running. Click Next.
Once the configuration is complete, you can click Exit.