none
Upgrade from DirSync to Azure AD failed

    Question

  • pretty simple upgrade, or at least I though it was.    Log is below.  Not sure what is happenening here.  AzureAD comes up as another subscription instead of listed with my others.  Could this be issue?  Said something about needed permission to the onmicrosoft.com domain or something.   Need help, cant log into servers now with domain creds  End of log below

    [12:10:52.815] [ 13] [VERB ] Cleanup: Starting cleanup for task 'Configure AAD Sync'
    [12:10:52.815] [ 13] [VERB ] Task 'Configure AAD Sync': No cleanup defined
    [12:10:52.817] [ 13] [INFO ] Task 'Deploy AAD Sync' has finished execution
    [12:10:52.817] [ 15] [ERROR] Task failed without an exception
    [12:10:52.817] [ 15] [VERB ] Cleanup: Starting cleanup for task 'Deploy AAD Sync'
    [12:10:52.817] [ 15] [VERB ] Task 'Deploy AAD Sync': No cleanup defined
    [12:10:52.817] [ 15] [VERB ] Marking task 'Setting DesktopSso enablement' as Skipped
    [12:10:52.817] [ 15] [VERB ] Marking task 'Deploy AAD Health Agent' as Skipped
    [12:10:52.817] [ 15] [INFO ] Task 'Single Forest Dir Sync Pwd Sync Root Task' has finished execution
    [12:10:52.877] [ 17] [ERROR] AADSTS50034: To sign into this application the account must be added to the kiddieacademy.onmicrosoft.com directory.
    Trace ID: c8759674-2ee7-4e91-8d1c-8af986de1700
    Correlation ID: f670cf9b-439b-4b93-b478-5358a676153b
    Timestamp: 2017-03-28 16:10:52Z
    Exception Data (Raw): System.Management.Automation.CmdletInvocationException: AADSTS50034: To sign into this application the account must be added to the kiddieacademy.onmicrosoft.com directory.
    Trace ID: c8759674-2ee7-4e91-8d1c-8af986de1700
    Correlation ID: f670cf9b-439b-4b93-b478-5358a676153b
    Timestamp: 2017-03-28 16:10:52Z ---> Microsoft.IdentityManagement.PowerShell.ObjectModel.SynchronizationConfigurationValidationException: AADSTS50034: To sign into this application the account must be added to the kiddieacademy.onmicrosoft.com directory.
    Trace ID: c8759674-2ee7-4e91-8d1c-8af986de1700
    Correlation ID: f670cf9b-439b-4b93-b478-5358a676153b
    Timestamp: 2017-03-28 16:10:52Z
       at Microsoft.DirectoryServices.MetadirectoryServices.UI.WebServices.MMSWebService.ValidateConfigurationParameters(Connector connector)
       at Microsoft.DirectoryServices.MetadirectoryServices.UI.WebServices.MMSWebService.CreateConnector(Connector connector, Boolean validate)
       at Microsoft.IdentityManagement.PowerShell.Cmdlet.AddADSyncConnectorCmdlet.ProcessRecord()
       --- End of inner exception stack trace ---
       at System.Management.Automation.Runspaces.PipelineBase.Invoke(IEnumerable input)
       at System.Management.Automation.PowerShell.Worker.ConstructPipelineAndDoWork(Runspace rs, Boolean performSyncInvoke)
       at System.Management.Automation.PowerShell.Worker.CreateRunspaceIfNeededAndDoWork(Runspace rsToUse, Boolean isSync)
       at System.Management.Automation.PowerShell.CoreInvokeHelper[TInput,TOutput](PSDataCollection`1 input, PSDataCollection`1 output, PSInvocationSettings settings)
       at System.Management.Automation.PowerShell.CoreInvoke[TInput,TOutput](PSDataCollection`1 input, PSDataCollection`1 output, PSInvocationSettings settings)
       at System.Management.Automation.PowerShell.Invoke(IEnumerable input, PSInvocationSettings settings)
       at Microsoft.Online.Deployment.PowerShell.LocalPowerShell.Invoke()
       at Microsoft.Online.Deployment.PowerShell.PowerShellAdapter.TypeDependencies.InvokePowerShell(IPowerShell powerShell)
       at Microsoft.Online.Deployment.PowerShell.PowerShellAdapter.InvokePowerShellCommand(String commandName, InitialSessionState initialSessionState, IDictionary`2 commandParameters, Boolean isScript)
       at Microsoft.Azure.ActiveDirectory.Synchronization.PowerShellConfigAdapter.ConnectorConfigAdapter.AddConnector(Connector connector)
       at Microsoft.Online.Deployment.Types.Providers.SyncDataProvider.UpgradeConnectorSchemaAndExtensionVersion(IAadSyncContext aadSyncContext, String installationPath, Boolean skipSchemaUpgrade)
       at Microsoft.Online.Deployment.PSModule.Tasks.AADSync.ConfigureAADSyncTask`1.UpgradeSyncEngineDatabase()
       at Microsoft.Online.Deployment.PSModule.Tasks.AADSync.ConfigureAADSyncTask`1.Execute()
       at Microsoft.Online.Deployment.Framework.Workflow.WorkflowTask.ExecuteWrapper()
    [12:10:52.893] [ 17] [INFO ] ConfigureSyncEngineStage.StartADSyncConfiguration: AADConnectResult.Status=Failed
    [12:10:53.017] [ 19] [INFO ] Starting Telemetry Send
    [12:11:32.943] [  1] [INFO ] Opened log file at path C:\ProgramData\AADConnect\trace-20170328-115715.log
    [12:11:44.415] [  1] [INFO ] Opened log file at path C:\ProgramData\AADConnect\trace-20170328-115715.log


    Tuesday, March 28, 2017 4:36 PM

All replies

  • You could run through the following steps to effectively connect to the correct Azure AD tenant:

    1. Launch Microsoft Azure Active Directory Module for Windows PowerShell
    2. Type Connect-MsolService to connect to your AAD tenant <tenant name>.onmicrosoft.com
    3. Type Get-MsolCompanyInformation | fl *sync* , this time is recorded as LastDirSyncTime
    Wednesday, March 29, 2017 10:09 AM
    Moderator