Azure AD Sync: ‘Insufficient access rights to perform this operation’
KB ID 0001636 Problem With Azure AD Replication, you may notice that you have the following error when you take a look at your connector status; Error: permission-issue Connected data source error code: 8344 Connected data source error: Insufficient access rights to perform this operation. Solution Firstly ensure that the user you are running AAD sync under, has the following permissions on the ‘root’ of your local AD...
Find The Azure AD Join Type
KB ID 0001597 Problem I recently did a post about Joining Azure AD. while working on that I found out there were two different Azure AD ‘States’. Azure AD Joined: Aimed at Corporate owned machines joined to Azure AD, (or CYOD devices). Azure AD Registered (Was called Workplace Joined, and still is if you work in PowerShell). Aimed at BYOD devices. Of course your Windows clients can also still be Domain Joined, or Simply...
Windows: Joining Azure AD (AAD)
KB ID 0001596 Problem With more people looking at Microsoft 365 (as opposed to Office 365), then the amount of people who want to join their Windows machines to Azure Active Directory is only going to go up. This is how to join your Windows client devices to Azure Active Directory. Solution Microsoft have done a good job of hiding where you need to be, Start > Settings > Accounts.. Access Work or School > Connect. STOP! If...
Forcing Azure AD Connect Sync
KB ID 0001590 Problem If you are using Azure AD Connect, (AAD Connect) to sync your on-premise Active Directory with Azure AD (i.e. for Office 365), then there may be times when you need to manually ‘force a replication’ because by default it’s going to take 30 minutes between each normal ‘delta replication’ Solution If you are directly on the server that’s running Azure AD connect, then use the...
Azure AD Connect: Correct Or Remove Duplicate Values
KB ID 0001588 Problem I was doing some work for a School recently, their staff were already using Office 365 and their tenancy was all setup. Now they wanted to roll Office 365 out to the pupils, and sync to their on premises Active Directory. Now we could have simply excluded the staff from the Azure AD Connect Sync, but they want to manage their passwords etc. on-premises. Microsoft will tell you if you DON’T have an...
Office 365: Enable User Password Reset
KB ID 0001551 Problem If you want to give your Office 365 users the ability to change and recover their passwords this is the procedure. Solution Open the ‘Azure Active Directory’ admin console. If you didn’t already know, Azure is what’s underpinning your Office 365 subscription, Select ‘Azure Active Directory’ > Password reset. I’m enabling for everyone, you can choose...