MSDN Documentation

Home > Documentation > Articles > Azure AD Connect Prerequisites

Azure AD Connect Prerequisites

This article outlines the necessary prerequisites and system requirements for installing and configuring Azure AD Connect. Ensuring these requirements are met is crucial for a successful deployment and smooth operation of your identity synchronization.

Server Requirements

  • Operating System: Supported Windows Server versions (e.g., Windows Server 2016, 2019, 2022). Refer to the official Microsoft documentation for the most up-to-date list.
  • Hardware: Minimum CPU, RAM, and disk space requirements vary based on the size of your Active Directory environment. Ensure sufficient resources for the synchronization service.
  • .NET Framework: A specific version of .NET Framework is required. The installer will typically prompt you to install or upgrade if necessary.
  • PowerShell: PowerShell version 5.1 or later is recommended.

Active Directory Requirements

  • Forest Functional Level: The Active Directory forest functional level must meet the minimum requirements specified by Microsoft.
  • Schema Version: Ensure your AD schema is compatible.
  • Domain Controller Availability: Accessible and responsive domain controllers are essential.
  • Service Account: An Active Directory service account with appropriate permissions is needed for synchronization. The Azure AD Connect installer can create this for you or you can provide an existing one.

Azure AD Requirements

  • Azure AD Tenant: You must have an Azure AD tenant.
  • Global Administrator Account: An Azure AD global administrator account is required during the installation process for initial configuration and verification.
  • Verified Domains: All custom domains that you plan to synchronize to Azure AD must be verified in your Azure AD tenant.

Network Requirements

  • Connectivity: The server running Azure AD Connect must have network connectivity to your on-premises Active Directory domain controllers and to Azure AD endpoints.
  • Firewall Rules: Ensure necessary firewall ports are open for communication. Specific ports for AD, SQL Server (if used), and Azure AD are required.
  • Proxy Server: If you use a proxy server, ensure it is configured correctly to allow communication for Azure AD Connect.

Database Requirements

  • SQL Server: Azure AD Connect can use a local instance of SQL Server Express (included with the installation) or an existing full SQL Server instance (Standard or Enterprise editions).
  • SQL Server Permissions: The service account used by Azure AD Connect needs appropriate permissions on the SQL Server instance.
Important Note: Always refer to the official Microsoft Azure AD Connect documentation for the most current and detailed prerequisites. Requirements can change with new releases and updates.
Pro Tip: It is recommended to install Azure AD Connect on a dedicated server that is not a domain controller to ensure optimal performance and security.

Summary Checklist

  1. Verify Server Operating System and Hardware.
  2. Ensure required .NET Framework and PowerShell versions are installed.
  3. Confirm Active Directory Forest/Schema compatibility.
  4. Have an Azure AD tenant and Global Administrator credentials ready.
  5. Ensure network connectivity to DCs and Azure AD.
  6. Determine SQL Server requirements (Express or full instance).

By carefully reviewing and meeting these prerequisites, you can significantly streamline the Azure AD Connect setup process.