Azure AD Connect cloud provisioning new agent configuration

After you've installed the agent, you need to sign in to the Azure portal and configure Azure Active Directory (Azure AD) Connect cloud provisioning. Follow these steps to enable the agent.

Configure provisioning

To configure provisioning, follow these steps.

  1. In the Azure portal, select Azure Active Directory.

  2. Select Azure AD Connect.

  3. Select Manage provisioning (Preview).

    Manage provisioning (Preview)

  4. Select New configuration.

  5. On the configuration screen, the on-premises domain is prepopulated.

  6. Enter a Notification email. This email will be notified when provisioning isn't healthy.

  7. Move the selector to Enable, and select Save.

    Azure AD provisioning (Preview)

Scope provisioning to specific users and groups

You can scope the agent to synchronize specific users and groups by using on-premises Active Directory groups or organizational units. You can't configure groups and organizational units within a configuration.

  1. In the Azure portal, select Azure Active Directory.

  2. Select Azure AD Connect.

  3. Select Manage provisioning (Preview).

  4. Under Configuration, select your configuration.

    Configuration section

  5. Under Configure, select All users to change the scope of the configuration rule.

    All users option

  6. On the right, you can change the scope to include only security groups. Enter the distinguished name of the group, and select Add.

    Selected security groups option

  7. Or you can change the scope to include only specific organizational units. Select Done and Save.

    Selected organizational units option

Restart provisioning

If you don't want to wait for the next scheduled run, trigger the provisioning run by using the Restart provisioning button.

  1. In the Azure portal, select Azure Active Directory.

  2. Select Azure AD Connect.

  3. Select Manage provisioning (Preview).

  4. Under Configuration, select your configuration.

    Configuration selection to restart provisioning

  5. At the top, select Restart provisioning.

Remove a configuration

To delete a configuration, follow these steps.

  1. In the Azure portal, select Azure Active Directory.

  2. Select Azure AD Connect.

  3. Select Manage provisioning (Preview).

  4. Under Configuration, select your configuration.

    Configuration selection to remove configuration

  5. At the top of the configuration screen, select Delete.

    Delete button

Important

There's no confirmation prior to deleting a configuration. Make sure this is the action you want to take before you select Delete.

Next steps