Support-Info: (AADCONNECT): How to merge a group object with a contact object

FOCUSED PRODUCT Azure AD Connect (should be possible with all builds of AADConnect – if you run into an issue, comment or email me) PROBLEM SCENARIO DESCRIPTION The problem we are attempting to resolve here is how to take a Group Object from Forest A and merge it with a Contact Object from Forest B… Read more

Support-Info: (Sync): Run Profile Optimization

Products Involved Discussed Forefront Identity Manager Synchronization Service Microsoft Identity Manager Synchronization Service Purpose: The purpose of this document is to discuss from a high level how to optimally execute run profiles to effectively and efficiently reach the intended goal. Disclaimer This document will discuss the execution of run profiles simultaneously.  However, running more than… Read more

[INFO]: MIISACTIVATE – Logon failure: the user has not been granted the requested logon type at this computer

Problem Statement You attempt to run the MIISACTIVATE.EXE command-line to activate a new FIM Synchronization Service Server. In doing so, you receive the below error message. Error Message The operation encountered am error and cannot be completed…(read more)… Read more

ExternalAuthenticationHandler.Process() exception: System.Net.WebException: The request failed with HTTP status 405: Method Not Allowed

It’s turning into a month of school-boy/layer-8 issues.  Evidently I need to slow down!  Scenario You are integrating Windows Server 2012 R2 Active Directory Federation Services (AD FS), a.k.a. AD FS 3.0, with an on-premises Azure Multi-Factor Authentication (MFA) Server.  The Azure MFA Server is a separate server to AD FS and you have successfully… Read more

Workplace Join failed 0x10dd (a.k.a. how to properly change/set your #ADFS certificates)

This post is really a simple layer-8 issue, but I thought it justified a post as there’s a nuance or two that are worth discussing.  I’m in the process of designing yet another Active Directory Federation Services deployment although this one is more interesting than some of my previous projects as it involves a lot… Read more

[SUPPORT TROUBLESHOOTING] RPC Error 8453 Replication access was denied in Azure AD Sync Services #AADSync

Quick post to describe a common layer-8 issue. You’ve installed Azure AD Sync Services (AADSync) 1.0.0470.1023 (or later) and have setup password hash synchronisation, i.e. you are synchronising users and their passwords as opposed to creating federated users. Password synchronisation doesn’t appear to be working and you find the Event ID 611, source Directory Synchronization,… Read more

stopped-server: msidmCompositeType or Asynchronous Processing Scenario

Stopped-Server Checklist 0x80230405 ( The operation failed because the object cannot be found Overview The stopped-server status is a common status that is seen in the FIM Synchronization Service Engine when executing an import and…(read more)… Read more