HowTo: Run a full directory synchronization with Office 365

The first synchronization with DirSync is a full synchronization. Then all others synchronizations are delta synchronizations and are scheduled every 3 hours. Open the Registry Editor and edit the following key: HKEY_LOCALMACHINE\Software\Microsoft\MSOLCoExistence Change FullSyncNeeded value to 1. Open powershell and run: Import-Module DirSync Start-OnlineCoexistenceSync

HowTo: Powershell – Enable Active Directory Inheritance on all objects

Import-Module ActiveDirectory $users = Get-ADUser -ldapfilter “(objectclass=user)” -searchbase “ou=Domain Users,dc=DOMAIN,dc=CORP” ForEach($user in $users) { # Binding the users to DS $ou = [ADSI](“LDAP://” + $user) $sec = $ou.psbase.objectSecurity if ($sec.get_AreAccessRulesProtected()) { $isProtected = $false ## allows inheritance $preserveInheritance = $true ## preserver inhreited rules $sec.SetAccessRuleProtection($isProtected, $preserveInheritance) $ou.psbase.commitchanges() Write-Host “$user is now inheriting permissions”; } else […]

