Problem

We have enabled password sync with directory sync for some client, it was setup correctly but only was syncing password for users who reset their password and not for all the users.

Solution

We found following solution to force a full password sync

Note:
You must have Directory Sync tool version 6438.0003 or greater installed in order to perform the process below.

 

On your DirSync machine, run the following .psc1: C:\Program Files\Windows Azure Active Directory Sync\DirSyncConfigShell.psc1
In the Powershell console that loads, run the Set-FullPasswordSync cmdlet
Load Services.msc
Restart the Forefront Identity Manager Synchronization Service Service.

Once this is complete, you should see a series of EventId=656 (Password Sync Requests) and EventId=657 (Password Sync Results) indicating that your full password sync has kicked off.

Update: During a recent 365 migration we used the latest version of Dirsync tool 6.8.6.2 . We have discovered that the file DirSyncConfigShell.psc1 is no more present and as it looks it did sync up all the passwords automatically during the first sync, so we actually didn’t even need this script.

 

 

The following two tabs change content below.
An automobile enthusiast at heart and computer geek by profession, started my Career with MS in 2005.Left Jobs and started Pledge Technologies (the parent company to Grishbi) back in 2009.We have been providing IT consulting to various Small and Medium businesses across US and UK since then.Our company specialises in Microsoft Server technologies like AD, Exchange, the rest and with numerous Office 365 migrations under our belt, we quite an expert with that too. Whatever we learn in our day to day life, we share it back on Grishbi as a Thank for all the love and support our customers have given us.
%d bloggers like this: