Directory Sync Server setup

Hi,

We have 2 DC's ,2 CAS server ( in Windows NLB) ,2 mailbox servers in DAG environment. as Directory Synchronization server  is a mandatory equirement for hybrid deployment ... can we install it on one of the DC's or CAS server.

What are the steps to follow for this installation ?

As the directory sync server will sync all the users in onprem to O365 and viceversa ... will Microsoft charge for user sync in O365 ?

Thanks

February 17th, 2014 8:56pm

It is not supported to install it on a DC according to this:

http://community.office365.com/en-us/wikis/sso/565.aspx

I wouldn't install it on an Exchange server because it runs Forefront Identity Manager and SQL Server Lite under the covers, so I'd be afraid that there might be incompatibilities, but you're welcome to try it.

You are welcome to search for the setup instructions. 

It will sync all recipients unless you specify exclusions.  Office 365 only charges for licensed users, and DirSync doesn't license any

Free Windows Admin Tool Kit Click here and download it now
February 17th, 2014 9:04pm

in the below link from the Microsoft TechNet it says :

Directory Sync tool can now be installed on a Domain Controller

" We've heard your requests and are excited to announce that the Active
Directory Sync tool (version 6553.0002 and newer) can be installed on
an Active Directory Domain Controller!

Customers that want to deploy the Directory Sync tool on a Domain
Controller can now do so instead of deploying on a separate machine. " 

http://social.technet.microsoft.com/wiki/contents/articles/17370.best-practices-for-deploying-and-managing-the-windows-azure-active-directory-sync-tool.aspx#A11 .

One more link too :

http://blogs.technet.com/b/uspartner_ts2team/archive/2013/11/07/the-directory-sync-tool-can-now-be-installed-on-a-domain-controller.aspx 

It would be great, if someone can suggest me on this.

Thanks

February 17th, 2014 10:39pm

So you have your answer.  I thought I might have heard that, but I couldn't find it so I couldn't tell you that it was supported.  Still, I am always reluctant to add applications to domain controllers.
Free Windows Admin Tool Kit Click here and download it now
February 17th, 2014 11:14pm

Ok .. Thanks Ed.

Actually as said before ,we are planning hybrid deployment of exchange but it's the other way round. We have O365 already established and we are building the onpremises exchange for hybrid setup.

we will be using the O365 for Routing all inbound Internet mail for both organizations through Exchange Online Protection.

Questions  :

1)we need to activate Directory Synchronization on O365 in order to run DirSync  in the onprem .. right ?

2) Can we install with the administrators account ,or do we need to create a account with all the premissions and run the setup  ?

in the exchange 2013 hybrid deployment assistant, for antivirus and antispam services it says :

"Mailboxes moved to the Exchange Online organization are automatically provided with antivirus and anti-spam protection by Microsoft Exchange Online Protection (EOP). You may need to purchase additional EOP licenses for your on-premises users if you chose to route all incoming Internet mail through the EOP service. We recommend that you carefully evaluate whether the EOP protection in your Exchange Online organization is also appropriate to meet the antivirus and anti-spam needs of your on-premises organization."

what type of license we need to buy .. is it on per user basis .. what would be the approx. charges for the EOP ?

Thanks



  • Edited by Suren424 Tuesday, February 18, 2014 3:56 PM
February 18th, 2014 6:55pm

1) Correct.

2) You can install with minimum rights to complete the installation.  When you configure it, you need an account that has Enterprise Admin rights in the domain and another account that has Global Admin rights in Office 365.  This is explained very clearly in the documentation.

Nobody in this forum is authorized to quote licensing terms on behalf of Microsoft.  Please consult with Office 365 Support for licensing questions.

Free Windows Admin Tool Kit Click here and download it now
February 18th, 2014 7:09pm

Thank you.

We are configuring hybrid deployment, but we will not be moving mailboxes to and forth ,both will have different users accounts,but we will just route the emails via O365 as our domain MX records are pointing there.

We can configure it right ?

February 18th, 2014 8:36pm

Seriously, that makes no sense.  If they have different user accounts, there is no need for a hybrid configuration.  But you could still have DirSync without a hybrid configuration.
Free Windows Admin Tool Kit Click here and download it now
February 18th, 2014 8:39pm

Hi,

Did you try the suggestion above?

And how about the result?

If any update, please post it.

Thanks.

February 21st, 2014 4:41am

This topic is archived. No further replies will be accepted.

Other recent topics Other recent topics