question

SteffenHorlbeck-9705 avatar image
0 Votes"
SteffenHorlbeck-9705 asked DanJenkin-3655 answered

Azure AD Connect Configuration Error

At the end of the initial configuration wizard, the AAD Connect try to create a aad-sync account (Sync_AZURE-C_....).
After 5 Minutes it terminates with an unspecified error.
The Trace-File says that creation ist successful but 15 seconds later the authorization ist failed.
[11:26:05.687] [ 20] [INFO ] GetServiceAccount: successfully created a service account (Sync_AZURE-C_xxx@xxxx.onmicrosoft.com). Sleeping an initial backoff time to facilitate account propagation.

The wizard try this for 5 minutes every 15s and end in the tracefile with
"[11:31:09.349] [ 20] [WARN ] [ERROR] GetServiceAccount: the retry time limit for service account authorization has been exceeded."
In the Azure-Portal, we can see that the account ist successfully created and some password change events were generated.
We also try to delete the generated sync account an try the whole procedure again- same result.
What should we do?
Cheers,
Steffen

azure-ad-connect
· 2
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Can you share us the whole AAD connect logs file here? I'm reaching within the product team about this and will respond here once i have any information from the logs that you provide.

0 Votes 0 ·

I am experiencing the issue, any suggestions?

0 Votes 0 ·

1 Answer

DanJenkin-3655 avatar image
0 Votes"
DanJenkin-3655 answered

I had this issue and fixed it by turning MFA off for the sync account.

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.