Question: What is required to be installed on On-Premises Active Directory for syncing passwords to AWS Managed Microsoft AD?
Answer: In order to sync passwords from Local On-Premises Active Directory to Cloud Active Directory (AWS Managed Microsoft AD), ADSync Secondary setup must be installed on the Local On-Premises Active Directory.
How ADSync Secondary Setup is installed on the Local On-Premises Active Directory?
There is no separate installer for the Secondary Setup of the ADSync tool. Download the HC AD Connect Sync tool from the following link :
As you run this installer on Local On-Premises AD, you will be provided with 2 options:
- Primary Domain Controller
- Additional Domain Controller
Select the option Secondary Domain Controller as shown in the below screenshot.
How AD Connect Sync Secondary Setup is configured?
HCDirSync Secondary Tool ( AD Connect Sync ) can be configured on Local On-Premises DC by following the steps given below :
- Run HCDirSync tool by selecting option Run as administrator
- Provide Local AD credentials
- Click on the Save Settings button. ( See below screenshot for clarity)
Upon successful configuration, reboot the Local On-Premises Active Directory. After performing these steps, "password change" event which is triggered from the Source Active Directory will start to sync to the Cloud DC in AWS Managed Microsoft AD.