Resources For IT Professionals
Post an article
Wikis - Page Details
  • First published by (eMicrosof)
  • When: 13 Aug 2013 11:30 AM
  • Last revision by (eMicrosoft Partne)
  • When: 14 Aug 2013 11:28 AM
  • Revisions: 11
  • Comments: 3
Options
RSSSubscribe to Article (RSS)
Can You Improve This Article?
Positively! Click Sign In to add the tip, solution, correction or comment that will help other users.

Report inappropriate content using these instructions.
Wiki  >  TechNet Articles  >  HowTo: Install the Windows Azure Active Directory Sync tool (now with pictures!)

HowTo: Install the Windows Azure Active Directory Sync tool (now with pictures!)

HowTo: Install the Windows Azure Active Directory Sync tool (now with pictures!)

At Azure Active Directory, we often get asked questions like "how do I install DirSync?" and "is it hard to do?".  The answer we usually give is "well…  no.  It's just 11 clicks!".  In this wiki, we'll walk you through how.

Table of Contents

Preparation Work

Download DirSync

First you'll want to get DirSync.  You can download DirSync from your respective Admin Portal.

If you are an Office 365 customer:

  • Log into the Office 365 Admin Portal
  • Navigate to Users & Groups > Active Directory synchronization Set Up 
  • Click the download button in step 4

If you are an Azure customer:

  • Log into the Azure portal
  • Navigate to Active Directory > Directory Integration 
  • Click download in step 3

 ↑ Back to top

Activate Directory Synchronization

You need to activate Directory Synchronization for your tenant in order to run DirSync.  To do this,

 If you are an Office 365 customer:

  • Log into the Office 365 Admin Portal
  • Navigate to Users & Groups > Active Directory synchronization Set Up 
  • Click the "Activate" button in step 3

If you are an Azure customer:

  • Log into the Azure portal
  • Navigate to Active Directory > Directory Integration 
  • Click "Activate" in step 2

↑ Back to top

Get your hardware ready

You'll want to make sure you have a machine that is ready for installing DirSync.  The answers to the most common questions we get are:

  • It must be installed on a 64-bit Windows Server OS (Windows 2008 and higher)
  • It must be joined to Active Directory
  • It cannot be a domain controller
  • It can be a virtual machine

The full list of requirements/details can be found in this article: http://technet.microsoft.com/en-us/library/jj151831.aspx.

↑ Back to top

Before you begin

Make sure you have the following information handy:

  1. A Windows Azure Active Directory/Office 365 user account that is a member of the Company Administrator group
  2. An Active Directory user account that is a member of the Enterprise Administrators group in all domains in your on-premises Active Directory Forest

↑ Back to top

Setting up DirSync

Now comes the fun part.  The following section provides a step-by-step on how to set up DirSync.

Step 1 - extract the installation binaries
You'll need to unpack the DirSync installation binaries in order to proceed. This happens automatically when you run DirSync.exe.

  
Step 2 - read the welcome text
Have a read through the DirSync welcome text.  Click Next to move on.


 
Step 3 - Accept the EULA
Make sure you read through the End-User License Agreement.  It contains the terms of your use of DirSync.  Click Next to move on.


 
Step 4 - specify the install path
If you want to install DirSync at an alternate location, specify it now.  Otherwise click Next to move on.


 
Step 5 - install the components
We'll install SQL Server 2012 Express SP1, the FIM Sync Engine, and our binaries.  The time it takes to install DirSync components varies based on your machine's hardware specs.  The progress bar will change to full green when this is complete.


 
Step 6 - move on!
We're done installing the components and ready to move onto configuring DirSync.  Click Next to proceed.  When the configuration wizard starts, click Next on that too.




 
Step 7 - provide Windows Azure Active Directory credentials
We need Windows Azure Active Directory credentials to configure DirSync.  This is the account that we will use to interface with Azure AD.  We store these credentials securely.


 
Step 8 - provide on-premises Active Directory credentials
We need on-premises Enterprise Administrator credentials to create our service account in your local AD.  The service account has a name like "AAD_xxxxxxxxxxxx" where the x's are 12 random alphanumeric characters.  We do not persist the Enterprise Admin credentials you provide.  They are only used to create and configure the DirSync service account.

Step 9 - Hybrid Deployment enablement
There are various features throughout Office 365 and Azure AD that depend on Hybrid Deployment being enabled.  You need to decide if you want those features.  You can learn more about these features at: http://technet.microsoft.com/en-us/library/hh967642.aspx.


 
Step 10 - Password Sync enablement
You can choose to enable Password Sync for your tenant.  This lets your users sign into Azure Active Directory (and associated services like Office 365, CRM Online and InTune) with the same password as they use on-premises.  If you want to enable this, select the "Enable Password Sync" checkbox.  Learn more about Password Sync at: http://technet.microsoft.com/en-us/library/dn246918.aspx.


 
Step 11 - configure DirSync
We'll apply the configuration options you'd selected in the past few steps.


 
Step 12 - start synchronizing!
You're done!  DirSync is set up.  If you want to start sync'ing now, select the "Synchronize your directories now" checkbox and click "Finish". 



And that's it!  DirSync is set up and will start synchronizing.  Happy sync'ing

↑ Back to top

See Also

Read all of our deployment documentation for Directory Sync tool here:

http://technet.microsoft.com/en-us/library/hh967629.aspx.
Learn about the attributes that we synchronize here: http://support.microsoft.com/kb/2256198/en-us.

, , , , , , [Edit tags]
Leave a Comment
  • Please add 5 and 7 and type the answer here:
  • Post
Wiki - Revision Comment List(Revision Comment)
Sort by: Published Date | Most Recent | Most Useful
Comments
  • 14 Aug 2013 11:21 AM

    Jono Luk (MSFT) edited Revision 7. Comment: added "see also" section

  • 13 Aug 2013 1:13 PM

    Jono Luk (MSFT) edited Revision 4. Comment: added images

  • 13 Aug 2013 11:38 AM

    Jono Luk (MSFT) edited Revision 1. Comment: added TOC

Page 1 of 1 (3 items)
Wikis - Comment List
Sort by: Published Date | Most Recent | Most Useful
Posting comments is temporarily disabled until 10:00am PST on Saturday, December 14th. Thank you for your patience.
Comments
  • Posted by
    on 13 Aug 2013 11:38 AM

    Jono Luk (MSFT) edited Revision 1. Comment: added TOC

  • Posted by
    on 13 Aug 2013 1:13 PM

    Jono Luk (MSFT) edited Revision 4. Comment: added images

  • Posted by
    on 14 Aug 2013 11:21 AM

    Jono Luk (MSFT) edited Revision 7. Comment: added "see also" section

Page 1 of 1 (3 items)