Azure domain controller ‎VM consuming high bandwidth

Sandeep Kumar 1

We have configured one domain controller with Azure ad connect but the bandwidth consumption (Upload/sent) is very high. Due to this, our cost is going high.
How to resolve this?

1 answer

Steven Hodson 31 Reputation points

2022-02-09T03:20:38.38+00:00

I'm assuming this is a DC running on a VM and you have other DC's in on-premises locations also. Need to know a little more about the setup here to confirm, such as what you are using for connectivity between Azure IaaS and your on-premises network, but my 'gut-feel' answer is that you need to take a look at AD Sites and Services and ensure that you have mapped all your subnets correctly to the physical and logical locations on your network. Could it be that the DC on the VM in Azure is authenticating users at a remote location?
Please sign in to rate this answer.
Sandeep Kumar 1 Reputation point

2022-02-09T10:52:57.79+00:00

Hi @Steven Hodson

Thanks for the quick support.

Actually, we have only configured server 2019 in Azure cloud and installed Azure ad sync and we don't have other DC and we are syncing only two testing users.

Currently, Azure DC is not authenticating any users.

After resolving this issue we will sync all the users later.

Steven Hodson 31 Reputation points

2022-02-09T21:32:34.087+00:00

OK in that case I would recommend using ProcMon (https://learn.microsoft.com/en-us/sysinternals/downloads/procmon) on the server to identify which processes are actually consuming the bandwidth as it is just showing as [System Process] in Task Manager.

It could be that the server is trying to connect with the outside world (Microsoft Update for example) and downloading updates.

Although I wouldn't recommend it for Microsoft Updates, you can set Network Security Groups to control what the server is allowed to communicate with.

Sandeep Kumar 1 Reputation point

2022-02-10T05:52:55.477+00:00

Downloading data is ok but my concern is why it is consuming bandwidth in uploading.

As you can see the above screenshot that was received (download) is low but the sent (upload) data is very high (The above screenshot is of 15 min)

Prrudram-MSFT 21,886 Reputation points

2022-02-13T16:32:37.88+00:00

Hi @Sandeep Kumar ,

As suggested by @Steven Hodson , did you try using the procmon tool to understand what processes are sending traffic out on this VM? That gives more insights to understanding if there are any software like network monitoring tools/backup agents etc., that are trying to upload the data external to the VM.

Sandeep Kumar 1 Reputation point

2022-02-14T13:53:48.97+00:00

Hi @Prrudram-MSFT ,

Yes, I checked by using procmon and were selected the action (Operation, TCP Sent, and include) and captured 10 mins logs from my AD server.

If you want 10 mins logs then I can send.

And, after fetching logs, how to stop bandwidth (Sent/Out) consumption?

Sandeep Kumar 1 Reputation point

2022-02-15T07:10:50.413+00:00

Are there any solutions? or I need to change the sync time of Azure AD Sync. Currently, it is set on default (every 30 mins)
Sign in to comment