azure ad connect 2.0

Randy Boehler 20 Reputation points
2023-02-07T14:40:06.37+00:00

Does Azure AD Free work with the latest Asuze AD connect 2.0 ? getting errors with installing the new version.

Configuring

An error occurred while creating the connector for the company.com directory. The error was: Failed to retrieve schema.<error><errorxincident> <connection-result>failed-authentication</connection- result> <date>2023-02-02 15:13:08.658 </date> <server>company.com:389</server> <cd- error> < error-code >0x31 </error-code>

<error-literal> Invalid Credentials</error-literal>

</cd-error> </incident> </error> </error>

 Failed to retrieve schema.<errorxerrorxincidentxconnection-result>failed-

authentication</connection-resultxdate>2023-02-02 15:13:08.658</datexserver> company.com:389</serverxcd-error> <error-code>0x31 </error-code>

<error-literal>Invalid Credentials</error-literal>

</cd-error> </incident> </error> </error>

What to do next:

No specific information for this failure is available. Examine the log for additional details.

Otherwise, check the log for more detailed information: C:\ProgramData\AADConnect\trace-20230202-094917.log

Click retry or re-run this wizard to try the integration again.

 

 

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,378 questions
0 comments

2 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. David Broggy 5,681 Reputation points MVP
    2023-02-07T14:49:12.3066667+00:00

    Hi Randy,

    Yes AD connect works with any variation of Azure licensing.

    Be sure you're using an Azure Global Admin account when authenticating during the setup steps.

    "In addition to these three accounts used to run Azure AD Connect, you will also need the following additional accounts to install Azure AD Connect. These are:

    • Local Administrator account: The administrator who is installing Azure AD Connect and who has local Administrator permissions on the machine.
    • AD DS Enterprise Administrator account: Optionally used to create the “AD DS Connector account” above.
    • Azure AD Global Administrator account: used to create the Azure AD Connector account and configure Azure AD. You can view Hybrid Identity Administrator accounts in the Azure portal. See List Azure AD role assignments."

    Reference:

    https://learn.microsoft.com/en-us/azure/active-directory/hybrid/reference-connect-accounts-permissions

    0 comments
  2. JimmySalian-2011 41,916 Reputation points
    2023-02-07T15:06:04.19+00:00

    Hi,

    Seems like the account you are using having some issues with permissions,

    • You must have an Azure AD Global Administrator account or Hybrid Identity Administrator account for the Azure AD tenant you want to integrate with. This account must be a school or organization account and can't be a Microsoft account.
    • If you use express settings or upgrade from DirSync, you must have an Enterprise Administrator account for your on-premises Active Directory.

    Check the custom install settings - https://learn.microsoft.com/en-us/azure/active-directory/hybrid/reference-connect-accounts-permissions#custom-installation-settings

    Hope this helps.

    JS

    ==

    Please Accept the answer if the information helped you. This will help us and others in the community as well.

    0 comments