Location via proxy:   [ UP ]  
[Report a bug]   [Manage cookies]                
Permalink
main
Switch branches/tags

Name already in use

A tag already exists with the provided branch name. Many Git commands accept both tag and branch names, so creating this branch may cause unexpected behavior. Are you sure you want to create this branch?
Go to file
 
 
Cannot retrieve contributors at this time
title description services keywords documentationcenter author manager editor ms.assetid ms.service ms.workload ms.tgt_pltfrm ms.topic ms.date ms.subservice ms.author ms.collection
Azure AD Connect sync: Changing the AD DS account password | Microsoft Docs
This topic document describes how to update Azure AD Connect after the password of the AD DS account is changed.
active-directory
AD DS account, Active Directory account, password
billmath
amycolannino
76b19162-8b16-4960-9e22-bd64e6675ecc
active-directory
identity
na
how-to
01/26/2023
hybrid
billmath
M365-identity-device-management

Changing the AD DS connector account password

The AD DS connector account refers to the user account used by Azure AD Connect to communicate with on-premises Active Directory. If you change the password of the AD DS connector account in AD, you must update Azure AD Connect Synchronization Service with the new password. Otherwise, the Synchronization can no longer synchronize correctly with the on-premises Active Directory and you will encounter the following errors:

  • In the Synchronization Service Manager, any import or export operation with on-premises AD fails with no-start-credentials error.

  • Under Windows Event Viewer, the application event log contains an error with Event ID 6000 and message 'The management agent "contoso.com" failed to run because the credentials were invalid'.

How to update the Synchronization Service with new password for AD DS connector account

To update the Synchronization Service with the new password:

  1. Start the Synchronization Service Manager (START → Synchronization Service).
    Sync Service Manager

  2. Go to the Connectors tab.

  3. Select the AD Connector that corresponds to the AD DS connector account for which its password was changed.

  4. Under Actions, select Properties.

  5. In the pop-up dialog, select Connect to Active Directory Forest:

  6. Enter the new password of the AD DS connector account in the Password textbox.

  7. Click OK to save the new password and close the pop-up dialog.

  8. Restart the Microsoft Azure AD Sync service under Windows Service Control Manager. This is to ensure that any reference to the old password is removed from the memory cache.

Next steps

Overview topics