Join AAD Connect server to new domain, without changing config

OJA 71 Reputation points
2020-03-23T14:14:23.023+00:00

Hi,

Last year we migrated to a new local AD domain, but our AAD Connect sync server is still member of the old domain.
It syncs users from the new domain to O365.

Is it safe to simply join it to the new domain? Or how should we approach it in order not to break the sync?

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
13,625 questions
Accepted answer
  1. AmanpreetSingh-MSFT 55,426 Reputation points
    2020-03-26T11:14:24.247+00:00

    @OJA If you are planning to decommission old domain and the service account is stored in old domain, you would need to change the service account. Refer to https://learn.microsoft.com/en-us/azure/active-directory/hybrid/how-to-connect-sync-change-serviceacct-pass for changing service account.

    However, I would suggest you to create a staging server in your new domain and follow the instructions mentioned here:https://learn.microsoft.com/en-us/azure/active-directory/hybrid/how-to-connect-sync-staging-server. That way you would have the original server in place if something goes wrong with the new server. If changing staging server to production doesn't cause any issues, you can move the old server to new domain or decommission it.

    -----------------------------------------------------------------------------------------------------------

    Please "Accept as answer" wherever the information provided helps you to help others in the community.

    1 person found this answer helpful.

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest