Solved

DirSync - Office365 filter

Posted on 2014-01-31
4
479 Views
Last Modified: 2014-02-09
I am using Office365 integrated with Microsoft DirSync (Directory Synchronization). I am using the password synchronization feature and it Works great

Now I want to bypass/filter password syncronization for few users in my network. This is because they are Office365 users only (They don't use Active Directory Accounts inside the network). So they need to change their passwords throw the Office365 Portal

How can I filter the password synchronization feature for these few users?
0
Comment
Question by:Schnell Solutions
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
4 Comments
 
LVL 41

Expert Comment

by:Vasil Michev (MVP)
ID: 39826406
Can you please double-check your post, it doesn't really make much sense. Why would you need to filter them if the don't have AD accounts? :)

Here are the instructions just in case:

http://technet.microsoft.com/en-us/library/jj710171.aspx

You can also use the WAAD PowerShell module to change the password of a synchronized user.
0
 
LVL 14

Author Comment

by:Schnell Solutions
ID: 39826585
Hello Vasilcho,

I want to centrally adminístrate all the users properties using Active Directory. I just want to avoid password synchronization for few of them. In this way, I will be able to créate and edit my users from the Internet network. For the case of these few users, as far as they don't use computers inside the domain, when they need to change their passwords they won't be able to make it. However, if the password attribute for them is not synchronizing, them they will be able to change it logging in throw Office365

Any one knows what I need to do in order to filter "just" password syncronization for few users?
0
 
LVL 41

Accepted Solution

by:
Vasil Michev (MVP) earned 500 total points
ID: 39826772
No, there isn't such option:

http://social.technet.microsoft.com/wiki/contents/articles/18096.dirsyncwindows-azure-ad-password-sync-frequently-asked-questions.aspx#Can_I_control_which_passwords_synchronize_to_the_cloud

The only exception to that is when you have federated users (AD FS), but in such scenario you again manage the passwords on-prem, so it is of no use to you.

You can always submit a feedback to request this as a feature in next versions of dirsync trough your Microsoft Partner or from here:

http://g.microsoftonline.com/0BX11EN/135
0
 
LVL 74

Expert Comment

by:Jeffrey Kane - TechSoEasy
ID: 39834743
Unfortunately, this is one of the drawbacks of DirSync -- users cannot change their password online.  Which means that Office365 ONLY users are unable to change their passwords.  This is because sync is ONE-WAY (on-prem ----> cloud) so any changes to their PW's in the cloud will be overwritten by the on-prem settings.

There are a couple of work-around tools to allow for online password changes:

ForeFront Identity Manager
SysOp Tools Password Reset Pro

The other option is to deploy a virtual Windows 7/8 machine that these users can access via RDP -- but that is a bit cumbersome when they just need to change an expiring password.

Jeff
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Auditing domain password hashes is a commonly overlooked but critical requirement to ensuring secure passwords practices are followed. Methods exist to extract hashes directly for a live domain however this article describes a process to extract u…
A hard and fast method for reducing Active Directory Administrators members.
In this video I am going to show you how to back up and restore Office 365 mailboxes using CodeTwo Backup for Office 365. Learn more about the tool used in this video here: http://www.codetwo.com/backup-for-office-365/ (http://www.codetwo.com/ba…
A company’s greatest vulnerability is their email. CEO fraud, ransomware and spear phishing attacks are the no1 threat to a company’s security. Cybercrime is responsible for the largest loss of money to companies today with losses projected to r…

729 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question