August 2019
Intermediate to advanced
786 pages
20h 22m
English
Content preview from Mastering Active Directory - Second Edition
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
Start your free trial
Syncing NTLM and Kerberos credential hashes to Azure AD
Azure AD Connect does not synchronize NTLM and Kerberos credential hashes to Azure AD by default. To use AD domain services, we need to configure Azure AD Connect so that it synchronizes the credential hashes that are required for NTLM and Kerberos authentication. To do that, we need to run the following PowerShell script:
$adConnector = "<CASE SENSITIVE AD CONNECTOR NAME>"$azureadConnector = "<CASE SENSITIVE AZURE AD CONNECTOR NAME>"Import-Module adsync$c = Get-ADSyncConnector -Name $adConnector$p = New-Object Microsoft.IdentityManagement.PowerShell.ObjectModel.ConfigurationParamter "Microsoft.Synchronize.ForceFullPasswordSync", String, ConnectorGlobal, $null, $null, $null$p.Value = ...