This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(147.20000000000002, 52%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMJ%3C/text%3E%3C/svg%3E)
Hello Team,
I am currently in the process of migrating Azure AD Connect from one server (Windows Server 2012 R2) to another server (Windows Server 2022).
This is my first time performing this migration, so I have sought assistance from various technical forums. After researching, I have identified two standard migration steps (described below) from a trusted source. I kindly request you to review these steps and advise me on the option that involves less risk and ensures a smooth migration. If you believe any modifications are necessary, please let me know, and I will be happy to incorporate them before proceeding further.
Please note:
The difference between Migration Step 1 and Migration Step 2 is that Migration Step 1 only exports only one JSON file for Azure AD Connect,
while Migration Step 2 exports sub directories as well,
I do not want to miss any configurations from the existing server, so kindly let me know which approach I need to follow.
__Migration step: 1__
Here are the detailed steps for each of these tasks:
Exporting the Azure AD Connect configuration.
Installing Azure AD Connect on the new server
Importing the Azure AD Connect configuration
Configuring the new server to use the same Azure AD tenant and directory synchronization settings as the old server
__Migration step: 2__
1. Run the following script to export the configuration,
C:\Program Files\Microsoft Azure Active Directory Connect\Tools\MigrateSettings.ps1 -ServerConfiguration "c:\AdConnect"
2. Copy the entire directory to the new staging server or just save it for backup on another server.
3. Install Azure AD connect on a new server.
4. Import the JSON file using “Import Synchronization settings”
Put the old server in staging mode, then disable staging mode on the new server and monitor
If everything is working as expected, then you can uninstall the old server and delete the Health Agent for it in Azure
I have imported the JSON file on the new server and completed the configuration.
Note: Before configuring Azure AD Connect on the new server, I enabled staging mode.
I have also noticed that both services (Azure AD Connect Health Sync & Microsoft Azure AD Sync) are now running on the new server.
Could you please assist me with what my next recommended steps are?
I checked the synchronization status and it shows that the full synchronization was successful.
Ah, I apologize for the confusion. Yes, as mentioned in your previous post, the next recommended step would be to put the old server in staging mode, disable staging mode on the new server, and monitor the synchronization process. am i correct?
Correct, but before you do, verify the config and the expected export on the new server
I followed your instructions and executed the provided command lines. However, when I opened the CSV file, I noticed that it did not contain any data.
Csexport "Name of the connector" C:\temp\export.xml /f:x
CSExportAnalyzer C:\temp\export.xml > c:\temp\export.csv
Assuming you are checking the correct connector name, That tells me you dont have anything to export or no changes have been made. How many objects are you syncing. Based on the screen shots above, your syncs are very quick.
I have taken the connector name from this location,
It appears that the synchronization is occurring every few minutes. This is the current update from the synchronization service manager,
Am i missed anything here??
Is anything being exported to Azure? Only changes will be, thats what that that verify check is looking for. IF you were to put both servers in Staging Mode, then make a change to a synced object on-prem, that should get picked up by the new server and show up in:
Csexport "Name of the connector" C:\temp\export.xml /f:x
CSExportAnalyzer C:\temp\export.xml > c:\temp\export.csv
Apologies for asking multiple questions. As we are nearing the completion of the migration, I would like to seek your assistance in navigating each step smoothly and without encountering any issues.
For testing purposes, I added a new AD account in our on-premise environment and performed a delta sync on the new server. Within a few seconds, a new account appeared in the O365 admin portal. Subsequently, I deleted the account from AD and performed another delta sync, and the account was successfully removed from the O365 admin portal.
Does it mean everything looks good, or how should I verify if Azure AD Connect is functioning correctly on the new server?
Screenshot taken from Admin portal:
For your previous question: - I have enabled staging mode on the existing server and unchecked staging mode on the new server.
"Is anything being exported to Azure?" -
I exported the JSON file from the existing server and imported it into the new server. Other than that, I didn't make any other changes.
Can I uninstall Azure AD Connect from our existing server.?
Ok, if the export was successful using the new server and its no longer in staging mode and things look good, you can uninstall aadconnect from the old server
Thank you very much for your assistance, Andy David - MVP. You saved my day
I have enabled staging mode on the old server and unchecked the staging option on the new server. When I add a new user in the on-premise AD, I see the change history in both the old and new server's synchronization service manager. Is this expected? or Did I miss anything here?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(38.4, 59%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ES%3C/text%3E%3C/svg%3E)
Everything is explained in the below article:
Use the wizard in AADConnect - option 1
You would only use option 2 if:
If an existing server doesn't support settings management, you can either choose to upgrade the server in-place or migrate the settings for use on a new staging server
Thank you very much for your response. @Andy David - MVP
I just downloaded the JSON file from the existing server and copied it to a new server. After importing the JSON file to the new server, do I need to shut down the Azure AD Connect on the existing server? Is uninstalling the software enough?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(249.60000000000002, 0%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESN%3C/text%3E%3C/svg%3E)
Hello,
On the new server where I want to install Azure AD Connect, I unfortunately don't have the import option.
How can I get it?
It's a Windows server 2012 r2 datacenter server
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(313.6, 77%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESC%3C/text%3E%3C/svg%3E)
Hi,
I'm guessing you're running Microsoft Entra Connect Sync V1, as Microsoft stopped supporting V1 installations on Windows Server 2012 Editions from 1st October 2023 so your server may stop syncing identities from on-premises Active Directory to Microsoft Entra ID.
The Sync service will need to be moved to another server running 2016 or newer to install V2, (or upgrade that server).
The image is what a customer of ours received in September 2023 - hope this helps.