Geek-E Posted June 23, 2015 Report post Posted June 23, 2015 Hey all, Recently I've started playing with Microsoft Intune in my lab. I'm trying to utilize the new Azure AD Connect with password hash sync to provide both AD sync and Single sign on. I signed up for the intune trial, bought my public domain name and verified it with a TXT record on intune, downloaded Azure AD connect and did a custom install where I specified that AD passwords should be synchronized and single sign on enabled. My users sync just fine and I can see them in the intune management, but when I go to activate a user, I get the email for a temporary password thus indicating SSO isn't working. Any ideas where I might have gone wrong? Quote Share this post Link to post Share on other sites More sharing options...
anyweb Posted June 23, 2015 Report post Posted June 23, 2015 intune standalone or hybrid ? Quote Share this post Link to post Share on other sites More sharing options...
Geek-E Posted June 24, 2015 Report post Posted June 24, 2015 Testing Standalone first. I finally figured out what I missed. For those interested, there are permissions that need to be configured on the domain for the Azure AD connector account. The required permissions are; - Replicating Directory Changes - Replicating Directory Changes All 1 Quote Share this post Link to post Share on other sites More sharing options...
