Thank you for reaching out. It's a great question. Unfortunately, Azure AD Connect is for synchronizing users and groups from on-premises to Azure Active Directory. For files, applications and other data, there are different methods. One of the ways is to mount the Azure file storage as a local drive on your on-premises machine and copy the files to the drive. I already created a sample video for this. Refer the below link. ua-cam.com/video/7jrrdmb0LbU/v-deo.html The other workaround is to setup migration to migrate on-premises workloads to Azure. There can be other option to have utilize Windows PowerShell to connect to Azure and then upload the file to Azure storage. Hope this helps.
Good question! There is a possibility to connect different on-premises domain names with Azure AD using Azure AD connect. Below is the link to help you understand. docs.microsoft.com/en-us/azure/architecture/reference-architectures/identity/azure-ad Hope this helps.
I'm trying to set up ad connect right now and after I create a user in my windows server ad, once it's synced with azure ad I try to log into the azure portal with the windows server ad user but cannot log in. do you know how to set that up?
Hi Sam, sorry for the delayed response. Can you please let me know if the issue has been resolved already or you are still facing issues. Also, please check if the user appears inside Azure AD. If the user appears, there should not be any issue for the user to log in. Please also let me know the error you are getting.
@@AzureTrainingSeries np, I actually just figured it out yesterday. the user was appearing in Azure AD but I still wasn't able to log in. I found out the password hash synchronization wasn't working, so I had to add some code to the miiserver.exe.config file and then it started working, thanks for getting back to me though!
Great video!, a question, while installing the AzureADConnect, does this needs to be installed within same network? Can this be installed in same Active Directory server, or can it be installed in a seperate server which resides within same network, please advice, thank you
First, accept my apologies as I could not respond to your question earlier as I was travelling. Please refer to the below documentation for Azure AD Connect. docs.microsoft.com/en-us/azure/active-directory/hybrid/how-to-connect-install-prerequisites Hope this helps
this will work due to being Azure AD connect and AD DS on the same computer but I have installed Azure AD connect on other domain joined computer and try to establish connection to AD DS within Azure AD connect then I get this error "The Provided credentials are valid, however, we were unable to establish a connection to the current local computer's forest. Please make sure UDP and TCP ports 389 are open in the Domain Controller associated with the current local computer's forest. The user has to perform this manual check on the Windows Firewall with Advanced Security administrative window on every Domain Controller. There must not be any firewall rules blocking these ports" Any help appreicate
Hi Anil, First, please accept my apologies as I am responding too late. I was extremely busy with a P1 incident. I did not face such issue to be true, but did you get a chance to look into this article - dirteam.com/sander/2019/10/18/from-the-field-the-case-of-the-unreachable-forest-on-a-domain-joined-azure-ad-connect-installation/ Please let me know in case this resolves your issue and in case not, I will try to reproduce the same at my end.
Yes, you are correct. Currently Azure AD Connect must be installed on a domain-joined Windows Server 2016 or later and there is no problem using the Global Admin account as far as security is concerned.
It will sync all the objects. The devices are not synced directly. You can migrate your workloads though using Azure Migrate, and it will suggest the proper workloads.
Hi, There could be multiple different reasons for this issue, but as a starting point, can you please check the firewall rules in case they are blocking the connection for the ports.
Thank you for reaching out. By only this error statement, it would be difficult to analyze. Can you please tell me on which step you are getting the error on and what is the exact verbiage of the error?
Hello, last few days my onpermise with office 365 was crashed, we are retsore deferent methed but it is repairble now try some scenarios with new active directory,dns, with same users can we sync up with office users with no data lose like outlook,onedrive, SharePoint,ms team. Please help us regarding this issue Thanks
We have there domain in office 365 1. A 2.B 3.C A is our main domain right now we do touch them we testing C domain have only two user If create new C domain controller and users how to setup azure ad sync other domains not reflect no data lose
Do you have a backup strategy in place for all these three? There are different ways you can do it. You can use third party tools as well. For restoring onedrive, see the link below. support.microsoft.com/en-us/office/restore-your-onedrive-fa231298-759d-41cf-bcd0-25ac53eb8a15 For SharePoint, you can use tools like Sharegate or Metalogix to backup and restore. I would suggest you google as per your scenario or consult a person who can see your environment as it is difficult to understand as such.
Hi, I am not sure whether the buttons are disabled, or you are unable to see the buttons at all, or some kind of other error. Can you please elaborate more. For me, the next button was not visible on one of the machines, so I had to change the screen resolution.
Hi, First please accept my apologies for responding late as I was extremely busy with a P1. The sole purpose of Azure AD Connect is to map the users, groups, and other identities from on-premises to the cloud and to define how the authentication for those identities would happen. For that you need to use the same domain as your on-premises domain name so that the users use their on-premises credentials to log into the cloud systems. To have the same domain, you need to create and configure the custom domain in Azure. Hope this helps. Hope this helps.
Very informative, precise and accurate info
very well explained. Thank you for the great work and easy explanation. Love it !!
You are welcome! Glad you liked it!
what happens if you cannot download and install Azure AD on your device?
how else can you set it up?
I hope you are asking about Azure AD Connect. Without Azure AD Connect you will not be able to sync Azure AD with your on-premises AD.
Great video. Easy to understand and helpful! Thanks for your time
Glad you enjoyed it!
You explain things very well. Thanks for the helpful info!
Glad it was helpful!
Hi, We're really new to this and wondering if Azure AD Connect can solve sync for User Photo in Application such as Excel/Word Desktop ?
Thank you for reaching out. It's a great question. Unfortunately, Azure AD Connect is for synchronizing users and groups from on-premises to Azure Active Directory. For files, applications and other data, there are different methods. One of the ways is to mount the Azure file storage as a local drive on your on-premises machine and copy the files to the drive. I already created a sample video for this. Refer the below link.
ua-cam.com/video/7jrrdmb0LbU/v-deo.html
The other workaround is to setup migration to migrate on-premises workloads to Azure. There can be other option to have utilize Windows PowerShell to connect to Azure and then upload the file to Azure storage.
Hope this helps.
So this is what we need to do in relation to ad connect as far azure ad is concerned
Nicely explained 👌👌👌👌
Hi I have a question I have 1 AAD named AD1 and 1 On premises AD named AD2 will I able to connect them because they are having different domain name
Good question! There is a possibility to connect different on-premises domain names with Azure AD using Azure AD connect. Below is the link to help you understand.
docs.microsoft.com/en-us/azure/architecture/reference-architectures/identity/azure-ad
Hope this helps.
I'm trying to set up ad connect right now and after I create a user in my windows server ad, once it's synced with azure ad I try to log into the azure portal with the windows server ad user but cannot log in. do you know how to set that up?
Hi Sam, sorry for the delayed response. Can you please let me know if the issue has been resolved already or you are still facing issues. Also, please check if the user appears inside Azure AD. If the user appears, there should not be any issue for the user to log in. Please also let me know the error you are getting.
@@AzureTrainingSeries np, I actually just figured it out yesterday. the user was appearing in Azure AD but I still wasn't able to log in. I found out the password hash synchronization wasn't working, so I had to add some code to the miiserver.exe.config file and then it started working, thanks for getting back to me though!
WOW! Glad to hear that you could figure out and make everything work now.
Great video!, a question, while installing the AzureADConnect, does this needs to be installed within same network? Can this be installed in same Active Directory server, or can it be installed in a seperate server which resides within same network, please advice, thank you
First, accept my apologies as I could not respond to your question earlier as I was travelling. Please refer to the below documentation for Azure AD Connect.
docs.microsoft.com/en-us/azure/active-directory/hybrid/how-to-connect-install-prerequisites
Hope this helps
KURARI\administrator which account is it. I can't log in?
Apologies for the delayed response. This ID is the demo ID on my environment. For you, it would be different based on your domain settings.
this will work due to being Azure AD connect and AD DS on the same computer but I have installed Azure AD connect on other domain joined computer and try to establish connection to AD DS within Azure AD connect then I get this error "The Provided credentials are valid, however, we were unable to establish a connection to the current local computer's forest. Please make sure UDP and TCP ports 389 are open in the Domain Controller associated with the current local computer's forest. The user has to perform this manual check on the Windows Firewall with Advanced Security administrative window on every Domain Controller. There must not be any firewall rules blocking these ports" Any help appreicate
Hi Anil,
First, please accept my apologies as I am responding too late. I was extremely busy with a P1 incident.
I did not face such issue to be true, but did you get a chance to look into this article - dirteam.com/sander/2019/10/18/from-the-field-the-case-of-the-unreachable-forest-on-a-domain-joined-azure-ad-connect-installation/
Please let me know in case this resolves your issue and in case not, I will try to reproduce the same at my end.
very great explanation
Glad you liked it
As minimum now it is 2016
Just a question, is it safe to use the global admin account for sync?
Yes, you are correct. Currently Azure AD Connect must be installed on a domain-joined Windows Server 2016 or later and there is no problem using the Global Admin account as far as security is concerned.
Hi sir,
Will it sync users only? Will it sync devices from AD?
It will sync all the objects. The devices are not synced directly. You can migrate your workloads though using Azure Migrate, and it will suggest the proper workloads.
When connecting to te AD DS I get the following error: unable to establish a connection to the current local computer's forest.. Please help
Hi, There could be multiple different reasons for this issue, but as a starting point, can you please check the firewall rules in case they are blocking the connection for the ports.
Hi , i am getting an error that says no directories are currently configured....
Thank you for reaching out. By only this error statement, it would be difficult to analyze. Can you please tell me on which step you are getting the error on and what is the exact verbiage of the error?
Thanks mate!
Glad it helped
Hello, last few days my onpermise with office 365 was crashed, we are retsore deferent methed but it is repairble now try some scenarios with new active directory,dns, with same users can we sync up with office users with no data lose like outlook,onedrive, SharePoint,ms team.
Please help us regarding this issue
Thanks
In case the AD Forest and domain are the same, it can be done. Also, it depends on the backup if it was taken to have a point in time restore.
How take of backup and restore for azure ad users mailbox, onedrive, SharePoint?
We have there domain in office 365
1. A 2.B 3.C
A is our main domain right now we do touch them we testing C domain have only two user
If create new C domain controller and users how to setup azure ad sync other domains not reflect no data lose
Do you have a backup strategy in place for all these three? There are different ways you can do it. You can use third party tools as well. For restoring onedrive, see the link below.
support.microsoft.com/en-us/office/restore-your-onedrive-fa231298-759d-41cf-bcd0-25ac53eb8a15
For SharePoint, you can use tools like Sharegate or Metalogix to backup and restore.
I would suggest you google as per your scenario or consult a person who can see your environment as it is difficult to understand as such.
@@AzureTrainingSeries
Thanks what mailbox backup
8:57 i cant click on next, my domain is verified on azure ad. why cant i go next?
Hi, I am not sure whether the buttons are disabled, or you are unable to see the buttons at all, or some kind of other error. Can you please elaborate more. For me, the next button was not visible on one of the machines, so I had to change the screen resolution.
thanks, good video
Glad you liked it!
Thank you so much!
Glad it helped!
very nice class
Many many thanks
Thanks bro !
Welcome 👍
Why u have made a custom domain why can't it be done on the azure other accnt
Hi, First please accept my apologies for responding late as I was extremely busy with a P1.
The sole purpose of Azure AD Connect is to map the users, groups, and other identities from on-premises to the cloud and to define how the authentication for those identities would happen. For that you need to use the same domain as your on-premises domain name so that the users use their on-premises credentials to log into the cloud systems. To have the same domain, you need to create and configure the custom domain in Azure. Hope this helps.
Hope this helps.
thank you so much....
You are most welcome
Thank you Bro, Nice video 👍👍
Welcome 👍
How to download azure ad connect
You can download it from this link - www.microsoft.com/en-us/download/details.aspx?id=47594
Please fix the resolution and repost. Thanks.
Hi, is there an issue you noticed in the video? Please advice.
great video.. apart from the pronunciation of the !premises!.. not "premyses" but its "premeeses"
Agree! :) Thanks for pointing out. I will definitely correct that going forward.
@@AzureTrainingSeries be proud of the accent :-) It means you know more than one language.
Thank you so much, Hamidi. It is always good to take advice. It helps you grow as a professional :)
@@kepbiz 100% Agree ! I have an accent too (France) and my big boss (Satya Nadella) has one too and it's always cute to listen to
Great video, very well explained by the way 👌👍
Lost audio by the end of video
Thank you so much for letting me know. I have corrected the issue now.
are you msft?
No, I do not work at Microsoft.
please slow down when you talk ! we also need to hear what you are saying!
Sure! Thanks for your feedback. I will mind that from next time.