Sync Microsoft 365 Azure Active Directory to Active Directory

Share on linkedin
LinkedIn
Share on twitter
Twitter
Share on facebook
Facebook
IT Networks How-To Logo

Azure Active Directory

Syncing Active Directory to Microsoft 365 Azure Active Directory is easy.   Simply run the AD Connect on your Domain Controller and all will sync as expected.  What happens if you have a situation where you’re deploying a new server and have a empty Active Directory, or when Microsoft 365’s Azure Active Directory has all the users but your local Active Directory is different (completely different).  We’ll show you how you can use Azure AD Connect in ‘reverse’ situation.

  1. Log into the Microsoft 365 Admin Center https://login.microsoftonline.com
  2. Go to Settings > Domains
    Make a note of all the domains that are NOT present on your local Domain Controller
    Office365 settings domain
  3. Open Active Directory Domain and Trusts
  4. Right-click the top of the tree and go into properties
  5. Enter in all the domains that are present in Azure Active Directory that you noted in step 2. but not present locallyadd additional domains
  6. Start creating the users in Active Directory.  Ensure that the Primary email address in Azure Active Directory is also the chosen @domain when creating the account.add local accounts 2
  7. Edit the account after it is created, in the E-mail field enter the users Primary email address as it appears in Azure Active Directory.add the email address
  8. Click on the Attribute Editor tab, then find Proxy AddressesAD proxy addresses
  9. Add all email addresses that the user has. Case Sensitive!
    SMTP:  This designates the primary email address
    smtp:    This designates an alias email addressemail proxy addresses
  10. Download & Run Azure AD Connect
    https://www.microsoft.com/en-us/download/details.aspx?id=47594
  11. Use Express settings.
  12. Enter in your Tennant Account details when prompted.
  13. Enter in your local Administrator account when prompted.
  14. Hit Install, and your job is done!Azure Active Directory

As always if you need assistance with this, please feel free to reach out.