Entra Connect Architecture: The 4 Components and 5-Step Sync Cycle
Before walking the actual Entra Connect installer in the next post, take a step back and understand what you’re installing. The Entra Connect “Sync Engine” is more than a single…
Tag: Microsoft Entra ID
Run IdFix to Clean Active Directory Before Entra Connect Sync
The TLS configuration from Part 3 got the server ready. The UPN suffix work in Part 4 got the user identities ready. There’s one more gate before the Entra Connect…
Prep a Non-Routable AD Domain for Entra Connect: UPN Suffix Bulk Update
Your internal AD domain is something like infotechninja.local or corp.internal. Microsoft can’t verify those domains in the cloud because they’re not real internet domains. If you sync as-is, every user…
Enable TLS 1.2 for the Entra Connect Server (Microsoft Learn Scripts)
Part 3 of the Entra Connect series. We’ve covered the prerequisites (Part 1) and staged the installer files (Part 2). Now we need a server to run Entra Connect on.…
Download Two Entra Connect Versions: Stage the Lab for an Upgrade Demo
Part 1 of this series covered the prerequisites for installing Microsoft Entra Connect. Now Part 2: stage the installer files. The catch — we want TWO versions, not one. The…
Microsoft Entra Connect Prerequisites: The Nine-Bucket Pre-Install Checklist
Microsoft Entra Connect is the bridge between your on-prem Active Directory and your Entra ID (formerly Azure AD) tenant. It runs on a Windows server in your environment and handles…
Microsoft Entra Password Protection for On-Prem AD: The Clean Teardown
The previous two posts in this series stood up Microsoft Entra Password Protection on an on-prem AD forest — Part 1 walked the architecture and prerequisites, Part 2 walked the…
Microsoft Entra Password Protection for On-Prem AD: The Deployment Walk
Part 1 of this series covered the architecture and prerequisites — the cloud-versus-on-prem split, the proxy-as-egress design, the network ports, the licensing matrix, the FRS-versus-DFSR Sysvol gotcha. With those out…
Microsoft Entra Password Protection for On-Prem AD: Architecture and Prerequisites
Standard Active Directory password policy enforces shape — minimum length, complexity, history, age. Shape doesn’t catch P@ssw.rd or Admin@123: both pass complexity; both are in every credential-stuffing wordlist on the…