The Password Synchronizer feature of ADSelfService Plus allows you to automatically synchronize password resets and changes in Active Directory across a range of on-premises and SaaS applications in real-time. This feature helps a great deal in reducing password-related help desk calls, as users will have to maintain just a single password across multiple platforms.
This week let me walk you through the tips and tweaks to configure Office 365 / Azure with ADSelfService Plus for Password Synchronization
Password synchronization with Office 365 / Azure AD
The appropriate version of the Windows Azure AD module for Windows PowerShell has to be downloaded and installed before you start configuring password synchronization with Office 365 / Azure.
For 32-bit systems:
Download and install the Microsoft Online Services Sign-In Assistant from
here.
Download and install the Windows Azure AD Module for Windows PowerShell from
here.
For 64-bit systems:
Download and install the Microsoft Online Services Sign-In Assistant from
here.
Download and install the Windows Azure AD Module for Windows PowerShell from
here.
Steps to configure password sync with Office 365 / Azure:
- Login to ADSelfService Plus with administrator credentials.
- Navigate to Configuration -> Self-Service -> Password Synchronizer.
- Click on Office 365/Azure link.
- In the Office 365 / Azure Configuration page that opens up, select the module as Password Synchronizer. (Refer Image)
- Enter the domain name of Office 365 / Azure account.
- Input the user name and password of Office 365 / Azure account.
- Enter a brief description of the configuration.
- Select the Self-Service Policies from the drop-down list.
- Click Save.
To check if the password synchronization configuration is done correctly, follow the given steps.
Steps to test the configuration:
- Login to ADSelfService Plus with a domain user credential.
- Navigate to the Change Password tab.
- In the Change Password page that opens up, choose your Office 365 / Azure account, from the select account drop-down list.
- Enter the old password.
- Provide a new password and confirm it.
- Click Change Password.
Once all the aforementioned steps to change your password are completed, you should be able to log into your AD domain and Office 365/ Azure with the same new password.
Note:
By default, the AD account will be automatically linked to the Office 365 account based on the sAMAccountName attribute (User's sAMAccountName in AD will be mapped to his username in Office 365). ADSelfService Plus also gives you provision to link the accounts manually based on an attribute of your choice.