You can read more about the differences between Azure AD Connect and Azure AD Connect Cloud Provisioning here<\/a><\/span><\/p>\n So, Pure Awesomeness, what is this new sync technology you keep talking about but haven\u2019t mentioned what it\u2019s called yet\u2026?<\/p>\n Buckle up my apprentice. Here we go!<\/p>\n So, what is it and how is it different to the other three sync technologies we\u2019ve been configuring over the years?<\/p>\n With the huge adoption rate of Microsoft cloud services across the globe, it\u2019s only logical (admit it, you just read this out in Spock\u2019s voice) Microsoft will modernise the way identities are synchronised to the cloud. How do they envision this to be done? By removing the need for any heavy lifting from on-premises infrastructure to the cloud and replacing it with light weight agents. These agents communicate with Azure AD using the Azure AD Application Proxy to trigger the required sync jobs. Currently, this job relies solely on a single Azure AD Connect server installed in your on-premises network.<\/p>\n What happens if this server were to go offline? If you had deployed another Azure AD Connect server in staging mode, excellent. You could leverage this bad boy to keep your identities in sync. If you had no staging server, uh oh (and yes, you just said this in the voice of the ICQ notification from way back in the day \u2013 shows my age!), you would have to implement a new Azure AD Connect server! And who has time for that???<\/p>\n What does Azure AD Connect Cloud Provisioning bring to your organisation I hear you ask? At a first glance, High Availability (HA)! Installing multiple agents across your infrastructure will give your organisation the HA it needs to keep identity synchronisation ticking along in the event of an agent outage.<\/p>\n Now, you purely awesome mad man, how do you go about deploying Azure AD Connect Cloud Provisioning? I thought you\u2019d never ask.<\/p>\n The main thing to note is my lab contains a brand-new Active Directory forest and a brand-new Office 365 tenant. There are currently no identities being synchronised in any way, shape or form to the tenant.<\/p>\n First thing\u2019s first; log into your Azure AD Admin Centre (aad.portal.azure.com) with your Global Administrator credentials and click on the Azure Active Directory blade from the list on the left-hand side and then navigate to the Azure AD Connect blade.<\/p>\n Next, click on Manage Provisioning (Preview)<\/p>\n Click on Download agent<\/p>\n Before you proceed with the installation of the agent(s), ensure the following pre-requisites are met within your lab environment:<\/p>\n Now the fun part \u2013 installing and configuring the agent.<\/p>\n When the agent has been installed, you\u2019ll be presented with the configuration wizard, which has less options than the Azure AD Connect wizard. The reason for this is the bulk of the configuration is completed within Azure AD. #winning<\/p>\n To begin the wizard, enter in your Azure AD Global Admin credentials<\/p>\n Then, connect to your on-premises Active Directory environment<\/p>\n Confirm the details and sit back and wait for the installation to complete<\/p>\n Next on the list of tasks, review and make sure the agent has installed correctly and is reporting back with an active status. You can do this through the Review all agents tab.<\/p>\n Next, click on the New configuration tab to configure the newly installed agent<\/p>\n Configure the options provided<\/p>\n The scope can be changed to one of the following:<\/p>\n When the configuration has been saved, you can then review the synchronisation logs to ensure successful jobs have occurred. You can also confirm by navigating to the Users blade in Azure AD. There, you will see your set of users \u00a0whic have successfully synced across based on the scope you selected in the configuration options above.<\/p>\n But what about the HA functionality of the agents? Well, it\u2019s pretty straight forward. Given you\u2019ve already gone through and configured the sync settings for the first agent, all you need to do is download the agent on other servers within the domain and install it following the steps in this blog. Once the additional agents are installed successfully, they\u2019ll report back to Azure AD. The beauty of the additional agents is they deploy in an active\/active configuration. If one agent fails, the other takes over with the sync cycle!<\/p>\n \u00a0Here\u2019s what you\u2019ll see when and if an agent goes offline:<\/span><\/p>\n So, there you have it folks. Azure AD Connect Cloud Provisioning at a very high level. As it\u2019s still in preview mode, you\u2019re limited with what you can do with it for the time being but watch this space, as it matures, there will come a point where it could very well replace Azure AD Connect as a whole.<\/p>\n Until next time, Pure Awesomeness signing off!<\/p>\n \u00a0\u201cIf you want to live a happy life, tie it to a goal, not to people or things.\u201d \u2013 Albert Einstein <\/em><\/p>\n \u00a0<\/p>\n","protected":false},"excerpt":{"rendered":" First came DirSync, then came AADSync and now it\u2019s and I\u2019m sure you\u2019ll agree with me that through each phase of Microsoft\u2019s identity synchronisation platform, we\u2019ve seen many changes for the greater good of mankind. Hey folks! Pure Awesomeness here and I\u2019m back again with a brand-new blog post about identity across the big wide… Continue reading AAD Connect and Beyond<\/span><\/a><\/p>\n","protected":false},"author":52,"featured_media":2022,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"content-type":"","footnotes":""},"categories":[23],"tags":[],"class_list":["post-2021","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-fasttrack","entry"],"_links":{"self":[{"href":"https:\/\/www.insentragroup.com\/us\/wp-json\/wp\/v2\/posts\/2021","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.insentragroup.com\/us\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.insentragroup.com\/us\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.insentragroup.com\/us\/wp-json\/wp\/v2\/users\/52"}],"replies":[{"embeddable":true,"href":"https:\/\/www.insentragroup.com\/us\/wp-json\/wp\/v2\/comments?post=2021"}],"version-history":[{"count":0,"href":"https:\/\/www.insentragroup.com\/us\/wp-json\/wp\/v2\/posts\/2021\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.insentragroup.com\/us\/wp-json\/wp\/v2\/media\/2022"}],"wp:attachment":[{"href":"https:\/\/www.insentragroup.com\/us\/wp-json\/wp\/v2\/media?parent=2021"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.insentragroup.com\/us\/wp-json\/wp\/v2\/categories?post=2021"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.insentragroup.com\/us\/wp-json\/wp\/v2\/tags?post=2021"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}Azure AD Connect Cloud Provisioning \u2013 easy to remember right?<\/h3>\n
![\"\"](\"https:\/\/www.insentragroup.com\/wp-content\/uploads\/sites\/21\/2021\/02\/insentra_hambik_m_blogpost_02032020_img_01.jpg\")
<\/p>\n![\"\"](\"https:\/\/www.insentragroup.com\/wp-content\/uploads\/sites\/21\/2021\/02\/insentra_hambik_m_blogpost_02032020_img_02.jpg\")
<\/p>\n![\"\"](\"https:\/\/www.insentragroup.com\/wp-content\/uploads\/sites\/21\/2021\/02\/insentra_hambik_m_blogpost_02032020_img_03.jpg\")
<\/p>\n\n
![\"\"](\"https:\/\/www.insentragroup.com\/wp-content\/uploads\/sites\/21\/2021\/02\/insentra_hambik_m_blogpost_02032020_img_04.jpg\")
<\/p>\n![\"\"](\"https:\/\/www.insentragroup.com\/wp-content\/uploads\/sites\/21\/2021\/02\/insentra_hambik_m_blogpost_02032020_img_05.jpg\")
<\/p>\n![\"\"](\"https:\/\/www.insentragroup.com\/wp-content\/uploads\/sites\/21\/2021\/02\/insentra_hambik_m_blogpost_02032020_img_06.jpg\")
<\/p>\n![\"\"](\"https:\/\/www.insentragroup.com\/wp-content\/uploads\/sites\/21\/2021\/02\/insentra_hambik_m_blogpost_02032020_img_07.jpg\")
<\/p>\n![\"\"](\"https:\/\/www.insentragroup.com\/wp-content\/uploads\/sites\/21\/2021\/02\/insentra_hambik_m_blogpost_02032020_img_08.jpg\")
<\/p>\n![\"\"](\"https:\/\/www.insentragroup.com\/wp-content\/uploads\/sites\/21\/2021\/02\/insentra_hambik_m_blogpost_02032020_img_09.jpg\")
<\/p>\n![\"\"](\"https:\/\/www.insentragroup.com\/wp-content\/uploads\/sites\/21\/2021\/02\/insentra_hambik_m_blogpost_02032020_img_10.jpg\")
<\/p>\n![\"\"](\"https:\/\/www.insentragroup.com\/wp-content\/uploads\/sites\/21\/2021\/02\/insentra_hambik_m_blogpost_02032020_img_11.jpg\")
<\/p>\n\n
![\"\"](\"https:\/\/www.insentragroup.com\/wp-content\/uploads\/sites\/21\/2021\/02\/insentra_hambik_m_blogpost_02032020_img_12.jpg\")
<\/p>\n![\"\"](\"https:\/\/www.insentragroup.com\/wp-content\/uploads\/sites\/21\/2021\/02\/insentra_hambik_m_blogpost_02032020_img_13.jpg\")
<\/span><\/p>\n