Get Ready for LDAPS Channel Binding
Jan28

Get Ready for LDAPS Channel Binding

KB ID 0001645 Problem I have written about Enabling LDAPS a long time ago, but it’s a subject that’s about to become important again, so I’ll revisit the subject. Microsoft are about to ‘enforce’ LDAPS authentication against their domain controllers, in the March 2020 round of updates. Now delayed until second half of 2020. What does that mean? Well lookups against LDAP will now need to be secure, (i.e....

Read More
Azure AD Connector: Disable ADFS Authentication
Jan24

Azure AD Connector: Disable ADFS Authentication

KB ID 0001643 Problem Why would you want to disable ADFS authentication? Well what if ADFS is down, or you want to revert to some other authentication method? I was in a position a few weeks ago where I needed to disable ADFS on a clients Azure AD Sync. At that time the Microsoft Tech on the phone steered us towards doing what I can only describe as a ‘forced de-federation’. This involved using Powershell and it resets the...

Read More
Azure Pass-through Authentication
Jan23

Azure Pass-through Authentication

KB ID 0001642 Problem I’ve never really taken the time to look at pass-through authentication, I set up Azure AAD sync, then I either use ADFS or I don’t. It was only when looking at removing ADFS, that I even looked at it as an option.  How does Pass-through Authentication Work? Remote client attempts to authenticate to Office 365 (Azure Active Directory). Azure queues the request and sends it to an Azure Authentication...

Read More
Password Sync: No Recent Syncronization
Jan22

Password Sync: No Recent Syncronization

KB ID 0001640 Problem I recently migrated the server that was running my Azure AD Connector. It was showing no errors post migration so I thought no more about it. A few days later I logged in to Office 365 and saw this; AAD Connect Status Azure AD Connect Password sync: no recent synchronization Solution Apparently this can suddenly happen if you are running an old version of AAD Connect. But I checked and mine was brand new,...

Read More
AAD Contains Another Object With The Same DN
Jan18

AAD Contains Another Object With The Same DN

KB ID 0001638 Problem I’ve seen this a few times now, I’ve had users that will not sync from Active Directory to Azure Active Directory (Office 365). When you look to see why, you will see something like; The Connector {Your-Domain}.onmicrosoft.com – AAD contains another object with the same DN which is already connected to the MV. Note: For the uninitiated, DN is Distinguished Name, and MV is MetaVerse. If you...

Read More
Azure AD Sync: ‘Insufficient access rights to perform this operation’
Jan11

Azure AD Sync: ‘Insufficient access rights to perform this operation’

KB ID 0001636 Problem With Azure AD Replication, you may notice that you have the following error when you take a look at your connector status; Error: permission-issue Connected data source error code: 8344 Connected data  source error: Insufficient access rights to perform this operation. Solution Firstly ensure that the user you are running AAD sync under, has the following permissions on the ‘root’ of your local AD...

Read More