Joseph Lee

A full-stack engineering mindset

less than 1 minute read

Summary

In the case of integration for global branches, preferred data location and usage location should be configured to optimise their services.

However, regarding the functional level of the DC, there is no value in the user properites. To go through this, we can use msCloudExtensionAttribue.

1. Ref

https://learn.microsoft.com/en-us/entra/identity/hybrid/connect/how-to-connect-sync-feature-preferreddatalocation

2. Preparation

  • Enroll DC to the AADC application and Add Directory extensions

3. Create Rule

You should stop the sync cyle before proceed the task below

Set-ADSyncScheduler -SyncCycleEnabled $false

Inbound

  1. Run Synchronisation Rules Editor
  2. Add New rule
  3. Set value

So you just do the same job on the usage location.

Outbound

[Note] You don’t need to create out bound rule for each Domain. But you have to create it as many as the attribues.

  1. Change direction to Outbound
  2. Set value as:

4. Sync Enabled

Set-ADSyncScheduler -SyncCycleEnabled $True
Start-ADSyncCyle -PolicyType Initial

Updated:

Leave a comment

You may also enjoy

Christmasstree

less than 1 minute read

Anyone who always built a christmass tree without realizing doing this in every christmass..?

Iis arr configuration with exsvr

2 minute read

Overview For the exchange server, almote every clients will need to seperate the network traffic with 443 and 25. In this case, they need reverse proxy. I wi...