Share via

Determining which Entra ID Connect or Azure AD Connect that is currently active and synching to Azure?

EnterpriseArchitect 6,041 Reputation points
2024-08-14T00:24:21.17+00:00

I have multiple Entra ID Connect or Azure AD Connect already deployed on each of my OnPremise Data Centers.

Since there are multiple servers in my AD Forest, how can I determine which Entra ID Connect or Azure AD Connect that is currently active and synching to Azure?

Microsoft Security | Microsoft Entra | Microsoft Entra ID
Windows for business | Windows Server | Devices and deployment | Configure application groups
Microsoft Security | Microsoft Graph
Microsoft Security | Microsoft Entra | Other
0 comments
Accepted answer
  1. Marcin Policht 50,570 Reputation points MVP Volunteer Moderator
    2024-08-14T00:50:37.7833333+00:00
    1. Sign in to the Azure Portal.
    2. Navigate to Microsoft Entra ID > Microsoft Entra Connect.
    3. In the Health and Analytics section, select Microsoft Entra Connect Health and check the sync status. This should include the name of the server which is actively syncing and its last sync time.
    4. If you are using Passthrough Authentication, its page should also include the name of the server in the Authentication Agent column.

    If the above response helps answer your question, remember to "Accept Answer" so that others in the community facing similar issues can easily find the solution. Your contribution is highly appreciated.

    hth

    Marcin

    1 person found this answer helpful.

3 additional answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Givary-MSFT 35,626 Reputation points Microsoft Employee Moderator
    2024-08-14T08:00:23.1966667+00:00

    @EnterpriseArchitect Researched on above requirement, its not possible to retrieve Entra id connect configuration for the tenant via PowerShell, currently only available via GUI.

    You can share the feedback here - https://feedback.azure.com/d365community/search/?q=entra+connect+health+powershell which is closely monitored by our team.

    1 person found this answer helpful.
  2. Marcin Policht 50,570 Reputation points MVP Volunteer Moderator
    2024-08-14T09:12:06.79+00:00

    If you have a list of servers which have the Entra Connect installed, you can run a PowerShell script across all of them to query their individual status (e.g. via Get-ADSyncConnectorRunStatus) - but that's not fully equivalent to the solution that involves the use of the Azure portal (which doesn't require knowing the list of all Entra Connect servers)

    If the above response helps answer your question, remember to "Accept Answer" so that others in the community facing similar issues can easily find the solution. Your contribution is highly appreciated.

    hth

    Marcin

  3. Abiola Akinbade 29,490 Reputation points Volunteer Moderator
    2024-08-14T22:32:57.3433333+00:00

    Hello EnterpriseArchitect,

    Thanks for your question.

    Check Azure Portal:

    • Log in to the Azure Portal
    • Go to Entra ID and navigate to "Entra Connect"
    • Look for the "Last sync" timestamp and the server name

    You can use any of the below commands on the servers 

    Get-MsolCompanyInformation | Select-Object LastDirSyncTime, LastPasswordSyncTime

    or

    Get-ADSyncScheduler // U cab use this to get the next sync time.

    Only one Entra ID Connect instance should be actively syncing at a time, If multiple servers are syncing, it could lead to conflicts and should be addressed immediately

    You can mark it 'Accept Answer' and 'Upvote' if this helped you

    Regards,

    Abiola

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.