Deploying Password Sync
advertisement
Office 365 Directory Synchronization Update: Deploying Password Sync Directory Sync Update: Deploying Password Sync Understanding DirSync Office 365 Identity Overview of Microsoft Office 365 Identity Management Office 365 Directory and Access Management with Windows Azure AD Prepare for DirSync Enable password sync Activate DirSync Setup DirSync Initial password sync Sync Directories Activate Users Password handling during activation Manage DirSync Force a full sync Monitor events Prepare for DirSync Activate DirSync Setup DirSync Sync Directories Activate Users Manage DirSync Cloud Identity no integration to on-premises directories Directory & Password Synchronization Integration without federation Federated Identity Single federated identity and credentials Feature Password Sync SSO with AD FS Control password policy on-premises Support for two-factor authentication * Use same username + password No password re-entry if on-premises Client access filtering Authentication occurs on-premises (no credentials on cloud) Change password available from the web Support for multi-forest configurations (FIM) * Azure AD offers basic 2FA features with Azure Active Authentication AD FS can support a larger set of 2FA/Strong Authentication options http://technet.microsoft.com/en-us/library/jj151831.aspx http://onramp.office365.com onrampfeedback@microsoft.com http://www.microsoft.com/en-us/download/details.aspx?id=36832 idfixsupport@microsoft.com Prepare for DirSync Activate DirSync Setup DirSync Sync Directories Activate Users Manage DirSync Prepare for DirSync Activate DirSync Setup DirSync Sync Directories Activate Users Manage DirSync here here Prepare for DirSync Activate DirSync Setup DirSync Sync Directories Activate Users Manage DirSync Prepare for DirSync Activate DirSync Setup DirSync Sync Directories Activate Users Manage DirSync Prepare for DirSync Activate DirSync Setup DirSync Sync Directories Activate Users Manage DirSync http://support.microsoft.com/kb/2855271 here Application Log, Event Source = Directory Synchronization Event ID 651 Event ID 650 Password synchronization starts retrieving updated passwords from the on-premises AD DS success Finished retrieving updated passwords from on-premises AD DS Event ID 652 error Failed to retrieve updated passwords from on-premises AD DS Application Log, Event Source = Directory Synchronization Event ID 654 Event ID 653 Password synchronization starts informing Windows Azure AD that there are no passwords to be synced ** This occurs every 30 minutes if no passwords have been updated on-premises success Finishes informing Windows Azure AD that there are no passwords to be synced Event ID 655 error Failed to inform Windows Azure AD that there are no passwords to be synced Application Log, Event Source = Directory Synchronization Event ID 657 Event ID 656 Password synchronization detects password changes and tries to sync it to Windows Azure AD ** Lists at least 1 user, at most 50 users success error User(s) whose password was successfully synced Result : Success User(s) whose password was not synced Result : Failed http://social.technet.microsoft.com/wiki/contents/articles/17857.ho w-to-switch-from-single-sign-on-to-password-sync.aspx Implement Password Synchronization Password synchronization troubleshooting guide for Office 365 DirSync Content Map DirSync Version History Best Practices for Deploying and Managing DirSync DirSync FAQ
