Skip to content

Commit 98f4cdc

Browse files
committed
[AzureADDS] Remove domainConfigurationType parameter
1 parent dcac672 commit 98f4cdc

File tree

1 file changed

+9
-12
lines changed

1 file changed

+9
-12
lines changed

articles/active-directory-domain-services/template-create-instance.md

Lines changed: 9 additions & 12 deletions
Original file line numberDiff line numberDiff line change
@@ -9,7 +9,7 @@ ms.service: active-directory
99
ms.subservice: domain-services
1010
ms.workload: identity
1111
ms.topic: conceptual
12-
ms.date: 12/02/2019
12+
ms.date: 01/14/2020
1313
ms.author: iainfou
1414

1515
---
@@ -115,23 +115,21 @@ There's nothing for you to configure for Azure AD DS to be distributed across zo
115115

116116
## Resource definition for Azure AD DS
117117

118+
## Resource definition for Azure AD DS
119+
118120
As part of the Resource Manager resource definition, the following configuration parameters are required:
119121

120-
* **domainName** - The DNS domain name for your managed domain, taking into consideration the previous points on naming prefixes and conflicts.
121-
* **filteredSync** - Azure AD DS lets you synchronize *all* users and groups available in Azure AD, or a *scoped* synchronization of only specific groups. If you choose to synchronize all users and groups, you can't later choose to only perform a scoped synchronization. For more information about scoped synchronization, see [Azure AD Domain Services scoped synchronization][scoped-sync].
122-
* When **filteredSync** is *Disabled*, all users are synchronized. When *Enabled*, only the specified groups are synchronized
123-
* **domainConfigurationType** - A *forest* is a logical construct used by Active Directory Domain Services to group one or more domains. By default, an Azure AD DS managed domain is created as a *User* forest. This type of forest synchronizes all objects from Azure AD, including any user accounts created in an on-premises AD DS environment. A *Resource* forest only synchronizes users and groups created directly in Azure AD. Resource forests are currently in preview. For more information on *Resource* forests, including why you may use one and how to create forest trusts with on-premises AD DS domains, see [Azure AD DS resource forests overview][resource-forests].
124-
* When **domainConfiguration** type is *FullySynced*, a user forest is created. When *ResourceTrusting*, a resource forest is created.
125-
* **notificationSettings** - If there are any alerts generated in the Azure AD DS managed domain, email notifications can be sent out. *Global administrators* of the Azure tenant and members of the *AAD DC Administrators* group can be *Enabled* for these notifications.
126-
* If desired, you can add additional recipients for notifications when there are alerts that require attention.
122+
| Parameter | Value |
123+
|-------------------------|---------|
124+
| domainName | The DNS domain name for your managed domain, taking into consideration the previous points on naming prefixes and conflicts. |
125+
| filteredSync | Azure AD DS lets you synchronize *all* users and groups available in Azure AD, or a *scoped* synchronization of only specific groups. If you choose to synchronize all users and groups, you can't later choose to only perform a scoped synchronization.<br /> For more information about scoped synchronization, see [Azure AD Domain Services scoped synchronization][scoped-sync].|
126+
| notificationSettings | If there are any alerts generated in the Azure AD DS managed domain, email notifications can be sent out. <br />*Global administrators* of the Azure tenant and members of the *AAD DC Administrators* group can be *Enabled* for these notifications.<br /> If desired, you can add additional recipients for notifications when there are alerts that require attention.|
127+
| domainConfigurationType | By default, an Azure AD DS managed domain is created as a *User* forest. This type of forest synchronizes all objects from Azure AD, including any user accounts created in an on-premises AD DS environment. You don't need to specify a *domainConfiguration* value to create a user forest.<br /> A *Resource* forest only synchronizes users and groups created directly in Azure AD. Resource forests are currently in preview. Set the value to *ResourceTrusting* to create a resource forest.<br />For more information on *Resource* forests, including why you may use one and how to create forest trusts with on-premises AD DS domains, see [Azure AD DS resource forests overview][resource-forests].|
127128

128129
The following condensed parameters definition shows how these values are declared. A user forest named *aadds.contoso.com* is created with all users from Azure AD synchronized to the Azure AD DS managed domain:
129130

130131
```json
131132
"parameters": {
132-
"domainConfigurationType": {
133-
"value": "FullySynced"
134-
},
135133
"domainName": {
136134
"value": "aadds.contoso.com"
137135
},
@@ -165,7 +163,6 @@ The following condensed Resource Manager template resource type is then used to
165163
"domainName": "[parameters('domainName')]",
166164
"subnetId": "[concat('/subscriptions/', subscription().subscriptionId, '/resourceGroups/', resourceGroup().name, '/providers/Microsoft.Network/virtualNetworks/', parameters('vnetName'), '/subnets/', parameters('subnetName'))]",
167165
"filteredSync": "[parameters('filteredSync')]",
168-
"domainConfigurationType": "[parameters('domainConfigurationType')]",
169166
"notificationSettings": "[parameters('notificationSettings')]"
170167
}
171168
},

0 commit comments

Comments
 (0)