Practice Lab 2 - Implementing Identity Synchronization
Practice Lab 2 - Implementing Identity Synchronization
Lab Scenario
You are the security administrator for Adatum Corporation, and you have Microsoft 365 deployed in a
virtualized lab environment. In this lab, you will implement identity synchronization between your
Microsoft 365 tenant accounts and your local active directory accounts.
Important note: This lab must be performed after the earlier lab
Managing your Microsoft 365 Identity environment is completed.
The Microsoft Learning team will update this training course as soon as any such changes are brought to
our attention. However, given the dynamic nature of cloud updates, you may run into UI changes before
this training content is updated. If this occurs, you will have to adapt to the changes and work through
them in the labs as needed.
Page 1
Lab: Implementing Identity Synchronization
You are now ready to start the directory synchronization process. In this lab exercise you to first make
sure your local Active Directory is ready to start the directory synchronization process.
3. Next type the follow command (remember to change xxyyzza to your unique UPN name):
Get-ADUser –Filter * -Properties SamAccountName | ForEach-Object { Set-
ADUser $_ -UserPrincipalName ($_.SamAccountName + "@xxyyzza.onmicrosoft.com"
)}
4. At the Windows PowerShell prompt, type the following command, and then press Enter:
Set-ExecutionPolicy Unrestricted
Page 2
5. Browse to https://portal.office.com/.
6. Sign in as holly2@<your tenant here>.onmicrosoft.com with the password Pa55w.rd .
7. Click Admin.
8. If asked about update your admin contact information click on the Cancel button to skip this
request.
9. Navigate to the Active Users.
Note: If you see the Active Directory synchronization is being activated warning, you can ignore it
at this time, but you will not be able to run directory synchronization later in this exercise. You
must wait until directory synchronization is activated. However, you can complete the following
steps, even if you do see the warning message.
19. In the left-hand navigation, select the user’s icon ( ) and select Active users, click on More on
the top menu and choose Directory Synchronization.
20. Click on the Download Microsoft Azure Active Directory Connect tool. Run the download once
complete.
Page 3
6. On the Ready to configure screen click the check box for Start the synchronization process when
configuration completes and click on Install.
7. Wait for the installation to complete.
8. Click on Exit.
You have successfully synced local ADATUM users into Office 365, licensed the synced user Ada
Russell and joined her to the Accounts security group in Office 365.
End of lab
Page 4