We have enabled password sync with directory sync for some client, it was setup correctly but only was syncing password for users who reset their password and not for all the users.
We found following solution to force a full password sync
You must have Directory Sync tool version 6438.0003 or greater installed in order to perform the process below.
On your DirSync machine, run the following .psc1: C:\Program Files\Windows Azure Active Directory Sync\DirSyncConfigShell.psc1
In the Powershell console that loads, run the Set-FullPasswordSync cmdlet
Restart the Forefront Identity Manager Synchronization Service Service.
Once this is complete, you should see a series of EventId=656 (Password Sync Requests) and EventId=657 (Password Sync Results) indicating that your full password sync has kicked off.
Update: During a recent 365 migration we used the latest version of Dirsync tool 220.127.116.11 . We have discovered that the file DirSyncConfigShell.psc1 is no more present and as it looks it did sync up all the passwords automatically during the first sync, so we actually didn’t even need this script.
Latest posts by Shishir Chandrawat (see all)
- Exchange 2010 Std: Mailbox server has reached the maximum database limit of 5 Error RcrExceedDbLimitException - December 12, 2016
- Exchange 2010: Unable to add Mailbox Database copies on DAG member servers, Error: An error occurred while processing a request on server - December 12, 2016
- Unable to Mount Microsoft Exchange DAG Database, Error: Failed to determine the mount status of the active database copy - December 12, 2016