Which two actions should you perform?

Your company plans to migrate from On-Premises Exchange to Exchange Online in Office
365.
You plan to integrate your existing Active Directory Domain Services (AD DS) infrastructure
with Azure AD.
You need to ensure that users can log in by using their existing AD DS accounts and
passwords. You need to achieve this goal by using minimal additional systems.
Which two actions should you perform? Each answer presents part of the solution.

A.
Configure Password Sync.

B.
Set up a DirSync Server.

C.
Set up an Active Directory Federation Services Server.

D.
Set up an Active Directory Federation Services Proxy Server.

Explanation:
Ref: http://technet.microsoft.com/en-us/library/dn441214.aspx

Show Hint

← Previous question

Next question →

Leave a Reply 11

Uper

For me either question is wrong or it is tricky…
“Log in by using they exisiting AD DS account”
So only way to achive using existing !ACCOUNT is to use ADFS. If there would be existing !CREDENTIALS then it would be DirSync + Password Sync

joni

is this correct?

gnome

this data is not verified, but I would answer A,B

rajen

It is a bit tricky question: A & B is correct solution.

http://msdn.microsoft.com/en-us/library/azure/dn441214.aspx

chander prakash

it is not tricky at all. it is very basic. answer is a and b.

josef

https://msdn.microsoft.com/en-us/library/azure/jj573653.aspx

“…DirSync with Password Sync – Used when you want to enable your users to sign in to Azure AD and other services using the same user name and password as they use to log onto your corporate network and resources. Password sync is a feature of the Directory Sync tool. …”

https://msdn.microsoft.com/en-us/library/azure/dn441214.aspx

challenge

A + B, no doubt

Prady

From Josef’s post, it is clear that “Password sync is a feature of the Directory Sync tool”. So Password Sync is already included (?)
From the same web page-
Multi-forest – DirSync with Single Sign-On – Used to provide users with the most seamless authentication experience as they access Microsoft cloud services while logged on to the corporate network. In order to set up single sign-on, organizations need to deploy “Active Directory Federation Services (AD FS)” as security token service on-premises. Once it has been set up, users can use their Active Directory corporate credentials (user name and password) to access the services in the cloud and their existing on-premises resources.
Note that it asks to deploy “AD FS”. Will it not need an AD FS Server (or proxy) to enable it?
But question also says to do it with minimal additional systems.
Trick Question… Grrrr!!!

Dennis

Directory Sync with Password Sync Scenario’ Applies To: Azure, Office 365, Windows Intune
Password sync is an extension to the Directory Sync Scenario. With directory sync, you can
manage the entire lifecycle of your cloud user and group accounts using your on- premise Active
Directory management tools.
When password sync is enabled on your directory sync computer, your users will be able to sign
into Microsoft cloud services, such as Office 365, Dynamics CRM, and Windows InTune, using
the same password as they use when logging into your on-premises network. When your users
change their passwords in your corporate network, those changes are synchronized to the cloud.
http://technet.microsoft.com/en-us/library/dn441214.aspx

So A+B

BigPolloGainz

Isnt dirsync depreciated