Jorge's Quest For Knowledge!

All About Identity And Security On-Premises And In The Cloud – It's Just Like An Addiction, The More You Have, The More You Want To Have!

(2018-04-01) Azure AD Connect v1.1.749.0 Has Been Released

Posted by Jorge on 2018-04-01


Integrating your on-premises directories with Azure AD makes your users more productive by providing a common identity for accessing both cloud and on-premises resources. With this integration users and organizations can take advantage of the following:

  • Organizations can provide users with a common hybrid identity across on-premises or cloud-based services leveraging Windows Server Active Directory and then connecting to Azure Active Directory.
  • Administrators can provide conditional access based on application resource, device and user identity, network location and multifactor authentication.
  • Users can leverage their common identity through accounts in Azure AD to Office 365, Intune, SaaS apps and third-party applications.
  • Developers can build applications that leverage the common identity model, integrating applications into Active Directory on-premises or Azure for cloud-based applications

Azure AD Connect makes this integration easy and simplifies the management of your on-premises and cloud identity infrastructure.

Download "Microsoft Azure Active Directory Connect"

Azure AD Connect: Version Release History

1.1.749.0

Released to select customers

Prerequisites for Azure AD Connect

More information about Azure AD Connect

IMPORTANT: When the upgrade to this new version completes, it will automatically trigger a full sync and full import for the Azure AD connector and a full sync for the AD connector. Since this may take some time, depending on the size of your Azure AD Connect environment, please make sure that you have taken the necessary steps to support this or hold off on upgrading until you have found a convenient moment to do so.

Fixed issues:

Azure AD Connect

  • Fix timing window on background tasks for Partition Filtering page when switching to next page

  • Fixed a bug that caused Access violation during the ConfigDB custom action

  • Fixed a bug to recover from SQL connection timeout

  • Fixed a bug where certificates with SAN wildcards failed a prerequisite check

  • Fixed a bug which causes miiserver.exe to crash during an Azure AD connector export

  • Fixed a bug which bad password attempt logged on DC when running the Azure AD Connect wizard to change configuration

New features/Improvements:

Azure AD Connect

  • Adding Privacy Settings for the General Data Protection Regulation (GDPR). For GDPR we are required to indicate the kinds of customer data that are shared with Microsoft (telemetry, health, etc.), have links to detailed online documentation, and provide a way to our customers to change their preferences. This check-in adds the following:
    • Data sharing and privacy notification on the clean install EULA page.
    • Data sharing and privacy notification on the upgrade page.
    • A new additional task "Privacy Settings" where the user can change their preferences
  • Application telemetry – admin can switch this class of data on/off at will
  • Azure AD Health data – admin must visit the health portal to control their health settings. Once the service policy has been changed, the agents will read and enforce it.
  • Added device write-back configuration actions and a progress bar for page initialization
  • Improved General Diagnostics with HTML report and full data collection in a ZIP-Text / HTML Report
  • Improved the reliability of auto upgrade and added additional telemetry to ensure the health of the server can be determined
  • Restrict permissions available to privileged accounts on AD Connector account
    • For new installations, the wizard will restrict the permissions that privileged accounts have on the MSOL account after creating the MSOL account.
    • The changes will take care of following
      • Express Installations
      • Custom Installations with Auto-Create account
  • Changed the installer so it doesn’t require SA privilege on clean install of Azure AD Connect
  • Added a new utility to troubleshoot synchronization issues for a specific object. It is available under ‘Troubleshoot Object Synchronization’ option of Azure AD Connect Wizard Troubleshoot
    Additional Task. Currently, the utility checks for the following:
    • UserPrincipalName mismatch between synchronized user object and the user account in Azure AD Tenant
    • If the object is filtered from synchronization due to domain filtering
    • If the object is filtered from synchronization due to organizational unit (OU) filtering
  • Added a new utility to synchronize the current password hash stored in the on-premises Active Directory for a specific user account
  • The utility does not require a password change. It is available under ‘Troubleshoot Password Hash Synchronization’ option of Azure AD Connect Wizard Troubleshoot Additional Task.

Cheers,
Jorge

————————————————————————————————————————————————————-
This posting is provided "AS IS" with no warranties and confers no rights!
Always evaluate/test everything yourself first before using/implementing this in production!
This is today’s opinion/technology, it might be different tomorrow and will definitely be different in 10 years!
DISCLAIMER:
https://jorgequestforknowledge.wordpress.com/disclaimer/
————————————————————————————————————————————————————-
########################### Jorge’s Quest For Knowledge ##########################
####################
http://JorgeQuestForKnowledge.wordpress.com/ ###################
————————————————————————————————————————————————————-

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

w

Connecting to %s

 
%d bloggers like this: