Today, Microsoft released a new version of Azure AD Connect and Azure AD Sync. This release brings new features to the table. I can only assume these features are welcome to many Azure AD Connect customers, since Azure AD Connect and Azure AD Sync pose some serious challenges for organizations using these solutions.
Known as the November 2015 update, this is a QFE release, a release based on Quick Fix Engineering, as opposed to the long term engineering goals set by the team.
- You can now reconfigure the AD FS to Azure Active Directory trust.
- You can now refresh the Active Directory schema and regenerate Sync Rules.
- You can now disable a sync rule.
- You can now define “AuthoritativeNull” as a new literal in a Sync Rule.
New preview features
- Azure AD Connect Health for sync is available as a built-in service, allowing you to monitor the health of the Azure AD Sync installation and gain operational insights on its performance.
- Support for Azure AD Domain Services password synchronization.
New supported scenarios
- Azure AD Connect now supports multiple on-premises Exchange organizations.
See Hybrid deployments with multiple Active Directory forests for more information.
- The following password synchronization issues were fixed:
- An object moved from out-of-scope to in-scope will not have its password synchronized. This incudes both OU and attribute filtering.
- Selecting a new OU to include in sync does not require a full password sync.
- When a disabled user is enabled the password does not sync.
- The password retry queue is infinite and the previous limit of 5,000 objects to be retired has been removed.
- Improved troubleshooting.
- You were unable to connect to Active Directory Domain Services with Windows Server 2016 forest-functional level.
- You were unable to change the group used for group filtering after initial install.
- Azure AD Connect will no longer create a new user profile on the Azure AD Connect server for every user doing a password change with password write-back enabled.
- You were unable to use Long Integer values in Sync Rules scopes.
- The checkbox “device writeback” remains disabled if there are unreachable Domain Controllers.
This is version 1.0.9125.0 of Azure AD Connect.
You can download Azure AD Connect here.
The download weighs 72,3 MB.
If you feel your organization experiences some of the challenges solved with this release, you can download and in-place upgrade your Azure AD Connect implementation. If you crave to monitor the Azure AD Sync installation, than this is the first version allowing you to do so.