You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/active-directory/manage-apps/migrate-okta-sync-provisioning.md
+14-14Lines changed: 14 additions & 14 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -35,8 +35,10 @@ When you synchronize users, use an Azure AD Connect server if your organization
35
35
- Support for more than 150,000 objects
36
36
- Support for writeback
37
37
38
-
>[!NOTE]
39
-
>Take all prerequisites into consideration when you install Azure AD Connect or Azure AD cloud provisioning. Before you continue with installation, see [Prerequisites for Azure AD Connect](../hybrid/connect/how-to-connect-install-prerequisites.md).
38
+
To use Azure AD connect, you need to sign in with one of the following roles: Global Administrator, or Hybrid Identity Administrator.
39
+
40
+
>[!NOTE]
41
+
>Take all prerequisites into consideration when you install Azure AD Connect or Azure AD cloud provisioning. Before you continue with installation, see [Prerequisites for Azure AD Connect](../hybrid/connect/how-to-connect-install-prerequisites.md).
40
42
41
43
## Confirm ImmutableID attribute synchronized by Okta
42
44
@@ -53,7 +55,7 @@ Connect-MgGraph
53
55
If you have the module, a warning might appear to update to the latest version.
54
56
55
57
1. Import the module after it's installed.
56
-
2. In the authentication window, enter Global Administrator credentials.
58
+
2. In the authentication window, sign in as at least a [Hybrid Identity Administrator](../roles/permissions-reference.md#hybrid-identity-administrator).
57
59
58
60

59
61
@@ -225,7 +227,7 @@ After you disable Okta provisioning, the Azure AD Connect server can synchronize
225
227
226
228
3. Select **Configure staging mode**
227
229
4. Select **Next**.
228
-
5. Enter Global Administrator credentials.
230
+
5. Enter the credentials of the Global administrator account for your environment.
229
231
230
232

231
233
@@ -252,16 +254,14 @@ After you disable Okta provisioning, the Azure AD Connect server can synchronize
252
254
253
255
After you disable Okta provisioning, the Azure AD cloud sync agent can synchronize objects.
254
256
255
-
1. Sign in to the [Azure portal](https://portal.azure.com).
256
-
2. Browse to **Azure Active Directory**.
257
-
3. Select **Azure AD Connect**.
258
-
4. Select **Cloud Sync**.
259
-
5. Select **Configuration** profile
260
-
6. Select **Enable**.
261
-
7. Return to the provisioning menu and select **Logs**.
262
-
8. Confirm the provisioning connector updated in-place objects. The cloud sync agents are nondestructive. Updates fail if a match isn't found.
263
-
9. If a user is mismatched, make updates to bind the ImmutableID values.
264
-
10. Restart the cloud provisioning sync.
257
+
1. Sign in to the [Microsoft Entra admin center](https://entra.microsoft.com) as at least a [Hybrid Identity Administrator](../roles/permissions-reference.md#hybrid-identity-administrator).
258
+
2. Browse to **Identity** > **Hybrid management** > **Azure AD Connect** > **Connect Sync**.
259
+
3. Select **Configuration** profile.
260
+
4. Select **Enable**.
261
+
5. Return to the provisioning menu and select **Logs**.
262
+
6. Confirm the provisioning connector updated in-place objects. The cloud sync agents are nondestructive. Updates fail if a match isn't found.
263
+
7. If a user is mismatched, make updates to bind the ImmutableID values.
0 commit comments