[cifs-protocol] Implement password hash synchronization with Azure AD Connect sync [119110624002737]

Obaid Farooqi obaidf at microsoft.com
Wed Nov 6 16:09:22 UTC 2019

Hi Metze:
Thanks for contacting Microsoft. I have created a case to track this issue. A member of the open specifications teams will be in touch soon.

Obaid Farooqi
Escalation Engineer | Microsoft 

-----Original Message-----
From: Stefan Metzmacher <metze at samba.org> 
Sent: Wednesday, November 6, 2019 7:01 AM
To: Interoperability Documentation Help <dochelp at microsoft.com>; cifs-protocol at lists.samba.org
Subject: Implement password hash synchronization with Azure AD Connect sync

Hi DocHelp,

we have customers trying to use Azure AD connect to sync their Samba DC with Azure.

It works in general, but they report that changed passwords in Samba are not replicated (at least not in a timely manner). Doing a manual replication works.

The following page talks about
"password hash synchronization heartbeat events":

What protocol is used for this heartbeat feature?
So far I only saw (I guess unrelated) LDAP traffic as well as the MS-DRSR replication with DRSGetNCChanges() from the Azure AD connect host to the Samba AD DC.

It would be good to know which protocols are required for the AD DC to implement for this to work.


More information about the cifs-protocol mailing list