The video of my presentation at the 2020 Hybrid Identity Protection Conference is now available

The Hybrid Identity Protection Conference is Semperis Inc.’s event in the spirit of The Expert Conference (TEC) to bring together the leading experts in the field of Identity and Access Management. The event offers a unique opportunity to spend time with peers, whose day-to-day job is to architect, manage, and protect identity management in the … Continue reading "The video of my presentation at the 2020 Hybrid Identity Protection Conference is now available"

Azure AD Connect Provisioning Agent v1.1.281.0 now supports gMSA, PHS Filtering and many other improvements

Earlier this week, Microsoft released version 1.1.281.0 of the Azure AD Connect Provisioning Agent. Azure AD Connect provides provisioning from Active Directory to Azure AD. The Azure AD Connect Provisioning agent can be used alongside Azure AD Connect to: Synchronize disconnected Active Directory forests in a multi-forest environment Simplify the deployment with light-weight provisioning agents, … Continue reading "Azure AD Connect Provisioning Agent v1.1.281.0 now supports gMSA, PHS Filtering and many other improvements"

Command-line switches for Azure AD Connect

After you install Azure AD Connect, but before you configure the product through the Microsoft Azure Active Directory Connect wizard, you can fiddle with the Azure AD Connect installer. Below is a list of command-line switches that you can use: Note: The below list is based on Azure AD Connect version 1.5.45.0.   AzureADConnect.exe /UseExistingDatabase … Continue reading "Command-line switches for Azure AD Connect"

HOWTO: Attach a previously sync’ed Azure AD Tenant to a new AD Forest

This week, I was contacted by an organization who were in the process of starting anew with Active Directory Domain Services (AD DS). The old Active Directory forest was too … old, basically. It showed signs of problems around attribute integrity, schema extension bloat and delegation defaults from the 00’s. The challenge I assisted with, … Continue reading "HOWTO: Attach a previously sync’ed Azure AD Tenant to a new AD Forest"

KnowledgeBase: You receive “the mS-DS-ConsistencyGuid attribute is already in use” when you change the source anchor on a Staging Mode Azure AD Connect installation

In environments with multiple Azure AD Connect installations, sometimes, you experience unexpected behavior. For instance, when you want to change the source anchor from objectGUID to mS-DS-ConsistencyGuid for your Hybrid Identity implementation. The situation An organization leverages multiple Azure AD Connect installations. One installation is the actively synchronizing Azure AD Connect installation, the other installations … Continue reading "KnowledgeBase: You receive “the mS-DS-ConsistencyGuid attribute is already in use” when you change the source anchor on a Staging Mode Azure AD Connect installation"

Field Notes: Meeting the requirements for Interoperability between Microsoft Teams and Microsoft Exchange Server

In this blog post, I want to walk you through my experiences with setting up and enable the interoperability between Microsoft Teams and on-premises Microsoft Exchange Server environments. Since the beginning of this year, Microsoft Teams adoption has seen a tremendous uptick in usage. Organizations needed to adopt Microsoft Teams as their Unified Communications (UC) … Continue reading "Field Notes: Meeting the requirements for Interoperability between Microsoft Teams and Microsoft Exchange Server"

HOWTO: Tell if Azure AD Connect is using the v2 Endpoint

Azure AD Connect is Microsoft’s free tool to synchronize objects and their attributes from Active Directory Domain Services (AD DS) implementations to Azure Active Directory tenants. Many millions of organizations depend on Azure Active Directory and the APIs that the tool connects to. Now, there is a new endpoint Public Preview. I’ve shown you how … Continue reading "HOWTO: Tell if Azure AD Connect is using the v2 Endpoint"

Azure AD Connect version 1.5.45.0 is a bug fix release

Last week, a new version of Azure AD Connect was released: version 1.5.45.0. This version is a bug fix release. After every fresh major release of Azure AD Connect by Microsoft, several smaller hotfix releases update the functionality to prevent issues where administrators are not able to perform certain configurations or gain access to functionality. … Continue reading "Azure AD Connect version 1.5.45.0 is a bug fix release"

What’s New in Identity from Microsoft Inspire 2020

Microsoft Inspire is Microsoft’s annual event where it kicks off its fiscal year with its partner community. Inspire is Microsoft’s way to explain what’s coming in the year ahead and work together to find shared solutions for customers. This year’s Inspire event brought us the following Identity-related news:   New Surface Hub OS featuring Azure … Continue reading "What’s New in Identity from Microsoft Inspire 2020"

HOWTO: Perform an Azure AD Connect Swing Migration

Azure AD Connect is a crucial component in today’s Hybrid Identity strategies. This tool takes care of the synchronization of objects and their attributes from an on-premises Active Directory environment to Azure AD. In some scenarios, it also takes care of authentication when accessing Azure AD-integrated applications. As with any system in a networking infrastructure, … Continue reading "HOWTO: Perform an Azure AD Connect Swing Migration"