I Need To Make A Change With My IT Support! Call (225) 706-8414

Configure AD DirSync for an Existing Office 365 Implementation

You are attempting to run Directory Sync after previously setting up Office 365 and creating cloud based accounts. None of the accounts created in the O365 admin portal are syncing with your Active Directory accounts.


If you have not already done so, setup Directory Sync:

The procedures in this article require these two items to be installed:

Now, to get the errors cleared up:

  1. After running the initial Directory Sync, log into your O365 Admin Portal and navigate to Users/Active Users
  2. Look for Users that are still listed as ‘In Cloud’
  3. These are the user accounts that have not successfully been tied to an on-premises AD account. We will need to tie the Users’ O365 ImmutableID to the on-premises AD GUID
  4. Use Powershell to enter the following commands. The commands below use the 2012 Active Directory Shell, if you use Quest Tools, replace get-ADuser with get-QADuser
    1. Connect-MSOLService – Enter your Office 365 Admin credentials
    2. $guid = (get-Aduser <username>).ObjectGuid
    3. $immutableID = [System.Convert]::ToBase64String($guid.tobytearray())
    4. Set-MSOLuser -UserPrincipalName <clouduserUPN> -ImmutableID $immutableID
  5. Use Powershell to iniate a Directory Sync job
    1. Import-module “c:Program FilesWindows Azure Active Directory SyncDirSyncImportModules.ps1
    2. Start-OnlineCoexistenceSync

Once the Directory Sync successfully connects the O365 account to the on-premises AD Account, the end users’ Password will now be synced to what their local AD password is.

Concerned About Cyber Attacks?


Want to Migrate to the Cloud?

Office 365

Ready to Experience Microsoft Office 365?

Want the latest IT news directly in your inbox? Subscribe now!