Office 365 AAD Sync
We have migrated a SBS 2008 Exchange to Office 365 and have installed AAD Sync on a member server 2008 R2. The initial sync worked Ok but since then we have not been able to complete any change syncs. We found out there was an issue with the sync account passwords created by the install and reset one but the other (Sync_) account generated the following error when we try to change it...
"unexpected exception thrown.; Action:PingProvisioningSer
We have also been getting "stopped-extension-dll-exc
ProvisioningServiceAdapter
at System.Runtime.InteropServ
at System.Management.Manageme
at System.Management.Manageme
at System.Management.Manageme
at Microsoft.Online.DirSync.C
at Microsoft.Online.Coexisten
at Microsoft.Online.Coexisten
at Microsoft.Online.Coexisten
at Microsoft.Online.Coexisten
at Microsoft.Azure.ActiveDire
Any ideas, or can we try to remove and reinstall??
"unexpected exception thrown.; Action:PingProvisioningSer
We have also been getting "stopped-extension-dll-exc
ProvisioningServiceAdapter
at System.Runtime.InteropServ
at System.Management.Manageme
at System.Management.Manageme
at System.Management.Manageme
at Microsoft.Online.DirSync.C
at Microsoft.Online.Coexisten
at Microsoft.Online.Coexisten
at Microsoft.Online.Coexisten
at Microsoft.Online.Coexisten
at Microsoft.Azure.ActiveDire
Any ideas, or can we try to remove and reinstall??
Do more with
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
Totally Removed and reinstalled... I am getting a "stopped-server-down" error now... I have checked and double checked the settings. The initial sync works ok but subsequent syncs fail
Any ideas?
Any ideas?
yup.
I have seen that before, it is because the new configuration seems have deleted a large number of object.
better you check out before you do anything.
ONce you confirm, then
Disable the threshold via
Import-Module ADSync
# Disable ADSync export deletion threshold
Disable-ADSyncExportDeleti
then sync again.
http://blog.kloud.com.au/2015/08/05/azure-active-directory-connect-export-profile-error-stopped-server-down/
I have seen that before, it is because the new configuration seems have deleted a large number of object.
better you check out before you do anything.
ONce you confirm, then
Disable the threshold via
Import-Module ADSync
# Disable ADSync export deletion threshold
Disable-ADSyncExportDeleti
then sync again.
http://blog.kloud.com.au/2015/08/05/azure-active-directory-connect-export-profile-error-stopped-server-down/
I opened a case with MS and they looked and reported back the following
>>ran port query found 443 not listing on the sync tool server
>>ran netmon
>>but we were not able to trace anything related with inbound and outbound traffic for 443
>>we found that there was event id with error for DCOM permission:-
Event ID: 10016
>>Follow article:-
https://support.microsoft.com/en-us/kb/899965
>>ran full sync
>>now everything working fine
Cause: Dcom permission issue
Resolution:gave sufficent permison to AAD Account
Here is some more info I thought you might be interested
http://azure.microsoft.com/en-us/documentation/articles/active-directory-aadconnect-learn-more/
http://azure.microsoft.com/en-us/documentation/videos/edge-show115-azure-ad-connect-preview-configuring-hybrid-identity-with-azure-ad-/
http://azure.microsoft.com/en-us/documentation/videos/10/
Microsoft Azure Active Directory Connect
http://www.microsoft.com/en-us/download/details.aspx?id=47594
Azure AD Connect: Version Release History
https://azure.microsoft.com/en-in/documentation/articles/active-directory-aadconnect-version-history/
http://blogs.msdn.com/b/vilath/archive/2015/06/17/azure-ad-sync-unable-to-install-the-synchronization-service.aspx
Great help and very concise Not sure why these DCOM errors were there of the user permissions were not as they should be..
>>ran port query found 443 not listing on the sync tool server
>>ran netmon
>>but we were not able to trace anything related with inbound and outbound traffic for 443
>>we found that there was event id with error for DCOM permission:-
Event ID: 10016
>>Follow article:-
https://support.microsoft.com/en-us/kb/899965
>>ran full sync
>>now everything working fine
Cause: Dcom permission issue
Resolution:gave sufficent permison to AAD Account
Here is some more info I thought you might be interested
http://azure.microsoft.com/en-us/documentation/articles/active-directory-aadconnect-learn-more/
http://azure.microsoft.com/en-us/documentation/videos/edge-show115-azure-ad-connect-preview-configuring-hybrid-identity-with-azure-ad-/
http://azure.microsoft.com/en-us/documentation/videos/10/
Microsoft Azure Active Directory Connect
http://www.microsoft.com/en-us/download/details.aspx?id=47594
Azure AD Connect: Version Release History
https://azure.microsoft.com/en-in/documentation/articles/active-directory-aadconnect-version-history/
http://blogs.msdn.com/b/vilath/archive/2015/06/17/azure-ad-sync-unable-to-install-the-synchronization-service.aspx
Great help and very concise Not sure why these DCOM errors were there of the user permissions were not as they should be..
Premium Content
You need an Expert Office subscription to comment.Start Free Trial