PowerShell: Disable MFA For All O365 Users
KB ID 0001655 Problem If you have something boring/repetitive to do then Powershell is your friend! I needed to do this for a client that’s replacing their Office365/Azure AD MFA (Multi Factor Authentication) with Duo. Solution Connect to your Microsoft Services Online, i.e. Office365/Azure, using your administrative credentials with the following command; Connect-MsolService Then (Note: I’ve got more than 1000 users so I...
Unable to Connect to the Synchronisation Service
KB ID 0001649 Problem I’m doing some work for a client that has Azure AD Sync running, and we keep kicking each other off the server, so I thought I’d login with another account. However, when I tried to open the Synchronisation Service Manager; Unable to connect to the Synchronisation Service Some possible reasons are: 1) The service is not started. 2) Your account is not a member of the requires security group. See the...
Azure AD Connector: Disable ADFS Authentication
KB ID 0001643 Problem Why would you want to disable ADFS authentication? Well what if ADFS is down, or you want to revert to some other authentication method? I was in a position a few weeks ago where I needed to disable ADFS on a clients Azure AD Sync. At that time the Microsoft Tech on the phone steered us towards doing what I can only describe as a ‘forced de-federation’. This involved using Powershell and it resets the...
Azure Pass-through Authentication
KB ID 0001642 Problem I’ve never really taken the time to look at pass-through authentication, I set up Azure AAD sync, then I either use ADFS or I don’t. It was only when looking at removing ADFS, that I even looked at it as an option. How does Pass-through Authentication Work? Remote client attempts to authenticate to Office 365 (Azure Active Directory). Azure queues the request and sends it to an Azure Authentication...
Password Sync: No Recent Syncronization
KB ID 0001640 Problem I recently migrated the server that was running my Azure AD Connector. It was showing no errors post migration so I thought no more about it. A few days later I logged in to Office 365 and saw this; AAD Connect Status Azure AD Connect Password sync: no recent synchronization Solution Apparently this can suddenly happen if you are running an old version of AAD Connect. But I checked and mine was brand new,...
AAD Contains Another Object With The Same DN
KB ID 0001638 Problem I’ve seen this a few times now, I’ve had users that will not sync from Active Directory to Azure Active Directory (Office 365). When you look to see why, you will see something like; The Connector {Your-Domain}.onmicrosoft.com – AAD contains another object with the same DN which is already connected to the MV. Note: For the uninitiated, DN is Distinguished Name, and MV is MetaVerse. If you...