Resolve Missing Sync Jobs in Azure AD Connect
Question
You have an Active Directory forest named contoso.com.
You install and configure Azure AD Connect to use password hash synchronization as the single sign-on (SSO) method. Staging mode is enabled.
You review the synchronization results and discover that the Synchronization Service Manager does not display any sync jobs.
You need to ensure that the synchronization completes successfully.
What should you do?
Answers
Explanations
Click on the arrows to vote for the correct answer
A. B. C. D.D
Staging mode must be disabled. If the Azure AD Connect server is in staging mode, password hash synchronization is temporarily disabled.
https://docs.microsoft.com/en-us/azure/active-directory/connect/active-directory-aadconnectsync-troubleshoot-password-hash-synchronization#no-The given scenario involves an Active Directory (AD) forest named contoso.com, and Azure AD Connect is configured to use password hash synchronization as the single sign-on (SSO) method. In addition, the staging mode is enabled, but the Synchronization Service Manager does not display any sync jobs, which means the synchronization is not completing successfully.
To resolve the issue and ensure that the synchronization completes successfully, the following options are available:
Option A: From Synchronization Service Manager, run a full import. This option involves running a full import from the Synchronization Service Manager to import all objects from the on-premises AD to Azure AD. However, a full import only imports new objects and does not update existing objects. Therefore, this option may not resolve the issue.
Option B: Run Azure AD Connect and set the SSO method to Pass-through Authentication. This option involves changing the SSO method to Pass-through Authentication from password hash synchronization. However, this option is not recommended because it requires additional infrastructure and network requirements, such as domain controllers and firewall rules, and may not resolve the issue.
Option C: From Azure PowerShell, run Start-AdSyncSyncCycle -PolicyType Initial. This option involves running the Start-AdSyncSyncCycle cmdlet in Azure PowerShell with the -PolicyType Initial parameter to start an initial synchronization cycle. This option is the correct choice because it triggers a synchronization cycle, which includes a full import, delta import, and delta synchronization, and is likely to resolve the issue.
Option D: Run Azure AD Connect and disable staging mode. This option involves disabling staging mode, which allows changes to be made in Azure AD Connect without affecting the actual synchronization. However, disabling staging mode may not resolve the issue and may cause unintended changes to be made in the Azure AD environment.
Therefore, the correct option is C: From Azure PowerShell, run Start-AdSyncSyncCycle -PolicyType Initial, to initiate an initial synchronization cycle and resolve the issue.
