I think this was easier with Dirsync, but that product is history.
Open Powershell as Administrator and modify this Powershell script:
$Local =
“Domain.local”
“Domain.local”
$Remote =
“tenant.onmicrosoft.com – AAD”
“tenant.onmicrosoft.com – AAD”
#Import Azure
Directory Sync Module to Powershell
Directory Sync Module to Powershell
Import-Module AdSync
$OnPremConnector =
Get-ADSyncConnector -Name
$Local
Get-ADSyncConnector -Name
$Local
Write-Output “On
Prem Connector information received”
Prem Connector information received”
$Object =
New-Object Microsoft.IdentityManagement.PowerShell.ObjectModel.ConfigurationParameter
“Microsoft.Synchronize.ForceFullPasswordSync”, String, ConnectorGlobal, $Null, $Null, $Null
New-Object Microsoft.IdentityManagement.PowerShell.ObjectModel.ConfigurationParameter
“Microsoft.Synchronize.ForceFullPasswordSync”, String, ConnectorGlobal, $Null, $Null, $Null
$Object.Value =
1
1
$OnPremConnector.GlobalParameters.Remove($Object.Name)
$OnPremConnector.GlobalParameters.Add($Object)
$OnPremConnector =
Add-ADSyncConnector -Connector
$OnPremConnector
Add-ADSyncConnector -Connector
$OnPremConnector
Set-ADSyncAADPasswordSyncConfiguration -SourceConnector
$Local -TargetConnector
$Remote -Enable
$False
$Local -TargetConnector
$Remote -Enable
$False
Set-ADSyncAADPasswordSyncConfiguration -SourceConnector
$Local -TargetConnector
$Remote -Enable
$True
$Local -TargetConnector
$Remote -Enable
$True
Replace $Local and $Remote with your own connector names. And be careful, they need to be CASE SENSITIVE.
Rock rock,