Azure Migrate and Azure AD Connect Services

microchipmatt 6 Reputation points
2021-04-22T22:21:21.52+00:00

Hello all, I am migrating a Physical Azure AD Connect server from On-Perm, to Azure using the Azure Migration Tool (Which is a part of Azure Site Recovery). As a part of this KB:

https://learn.microsoft.com/en-us/azure/migrate/tutorial-migrate-physical-virtual-machines

Under the heading Migrate VM's: Is states it is best to shut down the application that the server is running, so no connection are made to it. What is the proper way to TEMPORARILY stop Azure AD Connect Syncing, while the replication/Migration is happening? Is it as easy as going to (On the sync Machine): Azure Ad Connect-->Synchronization Service Manager-->Actions-->Stop?

Will that stop syncing while the machine is being migrated? Thanks in Advance.

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,318 questions
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. SadiqhAhmed-MSFT 36,881 Reputation points Microsoft Employee
    2021-04-27T05:45:58.117+00:00

    @microchipmatt Thank you for your post and I apologize for the delayed response!

    As per my understanding, Azure Ad Connect-->Synchronization Service Manager-->Actions-->Stop is to stop its current sync cycle. The scheduler is still active and starts again on next opportunity

    The scheduler runs every 30 minutes by default. To make sure it is not starting while you are making changes and troubleshooting you can stop its current sync cycle using above steps.

    To disable the scheduler, run Set-ADSyncScheduler -SyncCycleEnabled $false. Also, You can disable the scheduled task as given Azure AD Connect sync: Configure filtering | Microsoft Learn

    Note:
    By default every 30 minutes a synchronization cycle is run. If you have modified the synchronization cycle you will need to make sure that a synchronization cycle is run at least once every 7 days.
    • A delta sync needs to happen within 7 days from the last delta sync.
    • A delta sync (following a full sync) needs to happen within 7 days from the time the last full sync completed.
    Failure to do so may cause synchronization issues which will require you to run a full synchronization to resolve. This also applies to servers in Staging mode.

    If its going to take more than 7 days for you to keep the sync disabled, consider setting up staging server Azure AD Connect sync: Operational tasks and considerations | Microsoft Learn

    Hope this helps.

    ----------------------------------------------------------------------------------------------------------------------

    If the response helped, do "Accept Answer" and up-vote it