Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

Sync O365 and Active Directory Passwords

Posted on 2013-11-07
2
Medium Priority
?
662 Views
Last Modified: 2013-11-07
Hi Experts,

My company is considering migrating from our aging on-premise Exchange server to Exchange online via Microsoft's O365 offering. One of the issues that our consultant has described to us is that when we migrate there isn't a good way to sync passwords with our on-premise active directory server. Essentially, he said there is a way to sync the two, but if the internet connection or domain controller on premise go down, it will kill our email service (which removes one of the biggest benefits of moving to the cloud). Is this the case? Is there a way to sync passwords, without having email dependent completely on the on-premise setup?

I find it difficult to believe large companies would put up with this. I'm hoping my question makes sense and that there's a good way to do this! Thank you for your help!
0
Comment
Question by:ttotus
2 Comments
 
LVL 44

Accepted Solution

by:
Vasil Michev (MVP) earned 2000 total points
ID: 39631901
There are two methods:

1) configure AD FS, which will allow for Single Sign On and better user experience, but will be more dependent on the on-prem infrastructure

2) use only dirsync with password sync, which will allow the users to login with the same password they use on-prem. This scenario is know as Same sign on.

You can read about the differences here:

http://blogs.office.com/b/office365tech/archive/2013/07/26/password-hash-sync-simplifies-user-management-for-office-365.aspx

Both solutions rely on on-prem servers. If the dirsync server goes down, it will still allow you to access the services. If the AD FS server goes down however, you will not be able to login.

For small company, option 2 is probably best. Larger ones will most likely want to take advantage of the benefits SSO offers.

And just to make it clear, AD FS can be configured very easily for LB and HA, so even if a single server (or all servers in a particular site) goes down, the users will still be able to login.
0
 

Author Closing Comment

by:ttotus
ID: 39631984
I really appreciate the quick response. Great information -- Thanks again!
0

Featured Post

NEW Veeam Agent for Microsoft Windows

Backup and recover physical and cloud-based servers and workstations, as well as endpoint devices that belong to remote users. Avoid downtime and data loss quickly and easily for Windows-based physical or public cloud-based workloads!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A walk-through example of how to obtain and apply new DID phone numbers to your cloud PBX enabled users that are configured in Office 365. Whether you have 1, 10 or 100+ users in your tenant, it's quite easy to get them phone-enabled and making/rece…
If you have come across a situation where you need to find some EDB mailbox recovery techniques, then here you will find the same. In this article, we will take you through three techniques using which you will be able to perform EDB recovery. You …
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an anti-spam), the admin…
This lesson discusses how to use a Mainform + Subforms in Microsoft Access to find and enter data for payments on orders. The sample data comes from a custom shop that builds and sells movable storage structures that are delivered to your property. …
Suggested Courses

885 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question