Microsoft Azure Active Directory and Office 365 Readiness Wizard integration with your on-premises AD #Office365

In this blog post I connect my Office 365 with my on premise Active Directory Based on the Azure AD Connect

Before you start installing Azure AD Connect, make sure to download Azure AD Connect and complete the pre-requisite steps in Azure AD Connect: Hardware and prerequisites.

Azure AD Connect allows you to quickly onboard to Azure AD and Office 365

Integrating your on-premises directories with Azure AD makes your users more productive by providing a common identity for accessing both cloud and on-premises resources. With this integration users and organizations can take advantage of the following:

  • Organizations can provide users with a common hybrid identity across on-premises or cloud-based services leveraging Windows Server Active Directory and then connecting to Azure Active Directory.
  • Administrators can provide conditional access based on application resource, device and user identity, network location and multifactor authentication.
  • Users can leverage their common identity through accounts in Azure AD to Office 365, Intune, SaaS apps and third-party applications.
  • Developers can build applications that leverage the common identity model, integrating applications into Active Directory on-premises or Azure for cloud-based applications

Azure AD Connect makes this integration easy and simplifies the management of your on-premises and cloud identity infrastructure.

 

image image

As using the Office 365 domain the .Local are useless you can’t resolve them over the internet.

 

Installing Microsoft Azure Active Directory Connect

When Installing Microsoft Azure Active Directory Connect you will need the pre-requisite steps in Azure AD Connect: Hardware and prerequisites.

image image

In the next steps you can customize the installation

image

I change the Default install Location

I use a dedicated SQL server that holds my Sync DB and this can be a my sql express DB.

I pre Created a Service Account that has the right amount of rights else you will see an account like MSOL_46396c1d8b6e.

 

imageimage

I used my 356 account and the password and I use Password sync.

 

imageimage

Connect my local Active Directory with my own local Account. Filling in the blanks and use Add Directory

imageimage

In the next steps you can customize the sync properties and the OU that you want to sync. If you pick the whole AD then all objects are synced and Deletion in the Web is not real funny.

imageimage

After I picked the OU for filtering we are ready for the first sync.

image image

as you can choose sync right now or later

imageimage

as you can see there is a new sync user created in Office 365

image

and on the server where you installed Microsoft Azure Active Directory Connect there is a troubleshooting tool

it can be found : C:\Program Files\Microsoft Azure AD Sync\UIShell\miisclient.exe

 

image

 

This is the installation on premise but you can also use the Office 365 Wizard to sync your AD.

Logon as an Office 365 Global Administrator and in the Admin Center Settings there is an Azure AD option

But Remember : When you are using a Free or trail subscription the usage of the Azure AD Free Version will not work you will need to use the Azure AD instead.

image

imageimage

Connecting to the Dirsync wizard and starting the Readiness Wizard will guide you to 3 steps

image

Step 1 a new popup will do the checks

image

A little download will popup

image

The Tools are installed and will run. If not make sure you have admin rights on the machine that is running this assistant

imageimage

Now that the scan is ready and completed we can see some details about the scan

image

my demo Ad is not that big

image

it also scans my Domains  / UPC records and shows me what is suitable and what not

image

my domains in the O365 suite

image

image

After correcting the domain setup I can use the domains for O365.

 

image

A little clean up is needed in my AD

image

The next step is installing Azure AD Connect I already did this above and I’m running this on the same machine so no problem to go further.

 

image

the last step and the AD sync is working.

imageimage

So this is all a lot of steps but basically it is al very simple when you have the right info and the domains setup up then you are good to go.

And remember don’t sync the entire AD just as test.

Follow Me on Twitter @ClusterMVP

Follow My blog https://robertsmit.wordpress.com

Linkedin Profile Http://nl.linkedin.com/in/robertsmit

Google Me : https://www.google.nl

Bing Me : http://tinyurl.com/j6ny39w

LMGTFY : http://lmgtfy.com/?q=robert+smit+mvp+blog

Author: Robert Smit [MVP]

Robert Smit is Senior Technical Evangelist and is a current Microsoft MVP in Clustering as of 2009. Robert has over 20 years experience in IT with experience in the educational, health-care and finance industries. Robert’s past IT experience in the trenches of IT gives him the knowledge and insight that allows him to communicate effectively with IT professionals who are trying to address real concerns around business continuity, disaster recovery and regulatory compliance issues. Robert holds the following certifications: MCT - Microsoft Certified Trainer, MCTS - Windows Server Virtualization, MCSE, MCSA and MCPS. He is an active participant in the Microsoft newsgroup community and is currently focused on Hyper-V, Failover Clustering, SQL Server, Azure and all things related to Cloud Computing and Infrastructure Optimalization. Follow Robert on Twitter @ClusterMVP Or follow his blog https://robertsmit.wordpress.com Linkedin Profile Http://nl.linkedin.com/in/robertsmit Robert is also capable of transferring his knowledge to others which is a rare feature in the field of IT. He makes a point of not only solving issues but also of giving on the job training of his colleagues. A customer says " Robert has been a big influence on our technical staff and I have to come to know him as a brilliant specialist concerning Microsoft Products. He was Capable with his in-depth knowledge of Microsoft products to troubleshoot problems and develop our infrastructure to a higher level. I would certainly hire him again in the future. " Details of the Recommendation: "I have been coordinating with Robert implementing a very complex system. Although he was primarily a Microsoft infrastructure specialist; he was able to understand and debug .Net based complext Windows applications and websites. His input to improve performance of applications proved very helpful for the success of our project

Leave a Reply

Please log in using one of these methods to post your comment:

Gravatar
WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Cancel

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.

%d bloggers like this: