Share via

About upgrading Azure AD Connect

酒井 友良 0 Reputation points
2025-03-31T09:46:34.1333333+00:00

You are aware that you need to upgrade Azure AD Connect from the following URL.

 https://learn.microsoft.com/ja-jp/entra/identity/hybrid/connect/harden-update-ad-fs-pingfederate

Is there a way to back up Microsoft Entra Admin Center information before upgrading?

Microsoft Entra External ID
Microsoft Entra External ID
A modern identity solution for securing access to customer, citizen and partner-facing apps and services. It is the converged platform of Azure AD External Identities B2B and B2C. Replaces Azure Active Directory External Identities.
3,148 questions

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Surya Prakash Kotte 655 Reputation points Microsoft External Staff
    2025-04-02T04:44:43.87+00:00

    Hello @酒井 友良,

    Based on your query, I understand you want to back up Microsoft Entra Admin Center information before upgrading.

    Here are the steps you need to follow:

    • Before upgrading, you can export the current Azure AD Connect configuration:
    1. Open Azure AD Connect on the server.
    2. Click “View Current Configuration” and take screenshots of all settings.
    3. Open PowerShell and run the following command to export settings: Start-ADSyncSyncCycle -PolicyType Initial
    4. Save the exported settings for reference.

    You also need to export the current Users, Groups, and Policies. Please follow the commands below to export them:

    Connect-MgGraph -Scopes "Directory.Read.All"

    Get-MgUser | Export-Csv -Path "C:\Backup\AzureAD_Users.csv" -NoTypeInformation

    Get-MgGroup | Export-Csv -Path "C:\Backup\AzureAD_Groups.csv" -NoTypeInformation

    Get-MgConditionalAccessPolicy | Export-Csv -Path "C:\Backup\AzureAD_CA_Policies.csv" -NoTypeInformation

    • Additionally, Azure AD Connect stores data in a local SQL Express database. You can back it up using SQL Server Management Studio or PowerShell. If you prefer PowerShell, use the following commands:

    sqllocaldb stop "ADSync"

    Copy-Item "C:\Program Files\Microsoft Azure AD Sync\Data\ADSync.mdf" "C:\Backup\ADSync.mdf"

    Copy-Item "C:\Program Files\Microsoft Azure AD Sync\Data\ADSync_log.ldf" "C:\Backup\ADSync_log.ldf"

    sqllocaldb start "ADSync"

    For security reference, please go to sign-in logs and audit logs and export them as CSV.

    If possible, take a full VM snapshot or system backup of the server hosting Azure AD Connect before upgrading.

    User's image

    User's image

    User's image I hope this information is helpful. Please feel free to reach out if you have any further questions.

    If the answer is helpful, please click "Accept Answer" and kindly "upvote it". If you have extra questions about this answer, please click "Comment"

    0 comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.