<!-- WP QUADS Content Ad Plugin v. 2.0.92 -->
<div class="quads-location quads-ad2522 " id="quads-ad2522" style="float:none;margin:0px 3px 3px 3px;padding:0px 0px 0px 0px;" data-lazydelay="0">

</div>

<p>Before Starting the process of implementing the integration, you must consider using some tools to see if your environment has no issues.</p>
<!-- WP QUADS Content Ad Plugin v. 2.0.92 -->
<div class="quads-location quads-ad2526 " id="quads-ad2526" style="float:none;margin:0px 3px 3px 3px;padding:0px 0px 0px 0px;" data-lazydelay="0">

</div>

<!-- WP QUADS Content Ad Plugin v. 2.0.92 -->
<div class="quads-location quads-ad2528 " id="quads-ad2528" style="float:none;margin:0px 3px 3px 3px;padding:0px 0px 0px 0px;" data-lazydelay="0">

</div>

<!-- WP QUADS Content Ad Plugin v. 2.0.92 -->
<div class="quads-location quads-ad2531 " id="quads-ad2531" style="float:none;margin:0px 3px 3px 3px;padding:0px 0px 0px 0px;" data-lazydelay="0">

</div>




<p>First you must use this tool <strong>IdFix</strong> check the active directory for any possible issues when installing Dirsync and synchronizing users and their objects to the cloud. </p>



<p>IdFix is used to perform discovery and remediation of identity objects and their attributes in an on-premises Active Directory environment in preparation for migration to Office 365. IdFix is intended for the Active Directory administrators responsible for DirSync with the Office 365 service.</p>



<p><a href="http://community.office365.com/en-us/w/diagnostic_tools/default.aspx?ss=465d14b0-c5fe-4bbf-84d2-c791113732e2#idfixdirsyncerrorremediationtool">http://community.office365.com/en-us/w/diagnostic_tools/default.aspx?ss=465d14b0-c5fe-4bbf-84d2-c791113732e2#idfixdirsyncerrorremediationtool</a></p>



<ol class="wp-block-list"><li><strong>To prepare Exchange for hybrid configuration with Exchange Online you need to prepare the following steps.</strong></li></ol>



<ul class="wp-block-list"><li>Add your Primary SMTP domain to Office 365 cloud and verify ownership of the domain.</li><li>Create your online users.</li><li>Install DirSync <a href="http://www.google.com/url?q=http%3A%2F%2Fgo.microsoft.com%2Ffwlink%2F%3FLinkID%3D278924&;sa=D&;sntz=1&;usg=AFQjCNFwa85zDzR8ASUa_dtsvDzTN8O2oQ" target="_blank" rel="noreferrer noopener">http://go.microsoft.com/fwlink/?LinkID=278924</a></li></ul>



<p><a href="http://technet.microsoft.com/en-us/library/jj151800.aspx#BKMK_InstallDirSyncTool">http://technet.microsoft.com/en-us/library/jj151800.aspx#BKMK_InstallDirSyncTool</a></p>



<ul class="wp-block-list"><li>Install ADFS (<strong>Optional</strong>) for SSO (To authenticate users from Local AD)</li></ul>



<p><strong>Note about ADFS:</strong></p>



<p>ADFS can be the reason of so much headache and it&#8217;s always better to avoid installing it, instead of using ADFS to use the same password for users on a large scale deployments, the Dirsync can Synchronize local Passwords to Azure AD and same password can be used for both users local and online.</p>



<ol class="wp-block-list"><li>Create an enterprise admin user account on the domain for DirSync service</li><li>Installation of Dirsync with Password synchronization: We prepare a separate server for the DirSync tool that is windows 2008 R2 SP1 or 2012 R2 installed and the server</li></ol>



<p>should be domain joined in order to reach Active Directory.</p>



<ol class="wp-block-list"><li>The account used with Dirsync should be member of the domain admin. Also you need to have the admin credentials for the tenant that you signed up to on O365.</li></ol>



<p><a href="http://technet.microsoft.com/en-us/library/jj151831.aspx">http://technet.microsoft.com/en-us/library/jj151831.aspx</a></p>



<figure class="wp-block-image"><img src="https://lh3.googleusercontent.com/NAB4WnQ-eAy2-vS-IxYNj90nteIHSRMTbKBUxXSLxDKtNaiUS0ORrsQT6Qt3d3P7_jqBpAIqTqSq9j55BlWdMNCCIlkhGmQkzZGG0nZhUdFKJadRQTEd=w673" alt=""/> 

<!-- WP QUADS Content Ad Plugin v. 2.0.92 -->
<div class="quads-location quads-ad2529 " id="quads-ad2529" style="float:none;margin:0px 3px 3px 3px;padding:0px 0px 0px 0px;" data-lazydelay="0">

</div>
 
</figure>



<p>Next again</p>



<figure class="wp-block-image"><img src="https://lh4.googleusercontent.com/AUX5gV1hBlGVS9VoKxuTieL1CKdLFblX0gahYjHpbPwmVG_uhTRofi7anKmEzW5N3oE3REu-ACAQ66e6X6SftzzHZxpV6AOFLuT-s6TAjObRbbrryKY=w673" alt=""/></figure>



<p>Click Next after selecting the proper location</p>



<figure class="wp-block-image"><img src="https://lh3.googleusercontent.com/-PM9sLtY4GQ-i_IKtg2Pe9caxvifo17eCXyeu9_7U0f8nwX9GPWaFtejPEupkMtvez454voNuaipbEc3u5v6WPtDbx7RJFKjsMlUb7a8dSuz1IFc6sXy=w673" alt=""/></figure>



<p>While installing I had an error saying that current user was not member of the Synchronization Engine FIMSyncAdmins group. </p>



<p>I tried uninstall DirSync but it it gives the same error message</p>



<figure class="wp-block-image"><img src="https://lh3.googleusercontent.com/Ln-NVh90PuT54PMJ1RkNVenvDHFvhOZ-jUXAb0x7KGz-bWwmU2ue5-sTx5OXDWUjxpoUNhru_w7LNphlFYufN55Oon4SqtcbqjmUJ22hAKwtXwdhty4k=w773" alt=""/></figure>



<p>The FIMSyncAdmins group is a local group on the server. Your user is not a member of that group locally. Try adding your user to the group.. after adding the user to the required group the installation were completed successfully.</p>



<figure class="wp-block-image"><img src="https://lh5.googleusercontent.com/Qrt0G84BGpJzKjz_U76f3NlcIGhpkxBaKPZKKA4AVT8PyHh53fvknWknKGivo4gEf7f7oQY1=w773" alt=""/></figure>



<figure class="wp-block-image"><img src="https://lh4.googleusercontent.com/OSQ8EgBMZzph5Vnlk_RgPmZTqis3hprb9AxWslPHixLiwmcjVBLt8tLlab2u5bVsXApw9_zi0aG8rDe1ESEZ0Mu4kYaANU-ruLN25WgjMbMfrJ5YBkfJ=w773" alt=""/></figure>



<figure class="wp-block-image"><img src="https://lh4.googleusercontent.com/BDFYt5MfxNgppWLL7auOXOHMZ4NwsFrNT57AXl1ZxLJROHuYOOVHwLNFwJAZv8vKUkDjRmrA7-gcZi6pi36Zp-7_Y_2yfjzkVs3pqt3FeSAnXUl6KG0=w773" alt=""/></figure>



<figure class="wp-block-image"><img src="https://lh5.googleusercontent.com/2MeDCvUsn9Tlxwj8gpx-HJ8tPFbTdqyiHZMkOEcqgpKbbIPpcI6ruIThggkNgJYa9aEmhU_qj8zliLm6u4_WBsf8KBdFAbbdADRsVL0868M7PYqRjGUc=w773" alt=""/></figure>



<p>First you need to make sure that your customized (personal) domain is active.</p>



<figure class="wp-block-image"><img src="https://lh6.googleusercontent.com/mH_Q_nKGN5aLJGwYY22MS03uOTWKoBoDvXYyxTad1J760oPQacsUGIiMmjA-ITmKt37h-HQCt9csf-Nou8zGCeawsc12nKXOXRwlOxYI18DDUI8c2Vk=w673" alt=""/></figure>



<p>Now we need to enable Dirsync from the portal, next to Active Directory ® Synchronization Click on <strong>Set up</strong> and activate DirSync.</p>



<figure class="wp-block-image"><img src="https://lh3.googleusercontent.com/o4_lOVEzP_sYsU-CpYKmVdM63k4kywfy_Cicio9Y9eZixQPuwFw2sYN8nsL4ka8B0DvsWHFIzSXNiNhYxHg9F3eLYnNi54mQZKkong1D9qM3zZzzCNRo=w1075" alt=""/></figure>



<p>Now click on Activate</p>



<figure class="wp-block-image"><img src="https://lh6.googleusercontent.com/pGRiRzr7_WWyLUHJgjoK5C69wGN9XmQB71ydpHneyvZE0TPbt8Q-R1_1OvuNcRWmyc_5fGi2LVYQnqZIYz2M2svuK4T8oXQMBC6Y2axJtC6FkvlvpRYH=w974" alt=""/></figure>



<p>Now after we made sure that our domain is active and we activated Dirsync on Office 365 portal let&#8217;s Go back to DirSync server to complete the steps and check if we can start syncing your Active Directory.</p>



<figure class="wp-block-image"><img src="https://lh4.googleusercontent.com/51clGmQ8o9CBZkJ2vhfW4mH_IGbUKPS3ZSXs7ECHOim1oUUww4bRaG-WuMQYDFFFgOAXffydbmefBtaGfXuwsflTYlgQFNWl_sYt-7bKqjkBLkm9OeWc=w773" alt=""/></figure>



<p>Type your enterprise admin user which you have prepared for Dirsync, for my case I&#8217;m just going to use the domain admin user since it&#8217;s a Lab. </p>



<figure class="wp-block-image"><img src="https://lh4.googleusercontent.com/84Le3l71_La2dyGwzta8pMNnm9sWAJtUwe7jhTWwPMkqb-Z7pufDR7EfLh0QeV6CHR71y-FAWyMq93b8Keoq-gSFtfQO-E5W-e52QoFa6JzmdujPpBc=w1175" alt=""/></figure>



<p>Make sure you Enable Hybrid Deployment since Azure active directory will modify objects in your on-premises AD.</p>



<figure class="wp-block-image"><img src="https://lh3.googleusercontent.com/nDwTZjJeHHBNKe8KRT4OuoCFpxYafX97sqVU0Y94w7Z-btLXNzUlKGcAItanAMp-co0bLHnNtbzhEkMHjkBt-rVDAhYusFEaueEqSWrSlwtNUcyoefvm=w673" alt=""/></figure>



<p>In case you would want to have your On-premises AD password for users synchronized with users on Office 365</p>



<p>then you must tick the option as in the below snapshot.</p>



<figure class="wp-block-image"><img src="https://lh6.googleusercontent.com/eWpUYjUtp-Zp8yXIbYTDh6fNfEKLXrCRZjkZ6CGcSqZAQwynRk6w0DIhFQ81H8c9VBQVgeTqWjsl1tCvBY5XToTFy0sLbdmMydDgVeCkE6d96vu0Wg=w673" alt=""/></figure>



<p>Here, When I click next I get an error as following:</p>



<figure class="wp-block-image"><img src="https://lh4.googleusercontent.com/KwIOkRIXVWcWKKch3l4GSoSJf1OJQA0dyrqZHaE4K087gFMvSsN620NYWVH9tQ--9xNRqiEqEf-5tQAZXZdjpxSgsaYvI5hY01SqyLc5RkygXoswBgea=w673" alt=""/></figure>



<p><strong>Error:</strong></p>



<p>The new version of Dirsync doesn&#8217;t accept the domain admin account.</p>



<p><strong>Solution:</strong></p>



<p>In order to resolve the problem you have to create a new user account with enterprise admin privileges</p>



<p>Use this account to connect to AD during config.</p>



<p>Here I created the new user and added the required groups.</p>



<figure class="wp-block-image"><img src="https://lh6.googleusercontent.com/_FzJG0HRFeQK3P4mfXik9SGHFdmWLg9DV8MvjD58CYz7RruCWIcQwjrO-Kk7YJ_BwCWS83KtPykY3Fm-ZDwN7o0FLrCBNYpgChfKC_rzNxu26xbTwQs=w472" alt=""/></figure>



<p>After using the new account there was no issue with the setup and I could complete the configuration successfully.</p>



<figure class="wp-block-image"><img src="https://lh5.googleusercontent.com/Hmrjfwk6o6tS9AzxvQd1erhQvnDhqq024H1NvOAub3yhAgzTnJtKNpETFAzYYoWU2QAICKz57mSzpgvCRMdwuj3EuSbVxHjSu4NtG1dNsI-4gYzuiTo=w673" alt=""/></figure>



<figure class="wp-block-image"><img src="https://lh5.googleusercontent.com/Irydw5DXmtixwE-pZKEDQQx80-wu0Mdv9D7u17ReyKVzg7KBHrl1VVrKPFnWRBIVmJxpdPUHTKlNmS0b1yCgTHvYfU4K_26Qx1v-DeQoRPw9Caw1yy-U=w673" alt=""/></figure>



<figure class="wp-block-image"><img src="https://lh4.googleusercontent.com/wLbnhP23be_G7wr2IlXGxYaqKjoYOE2qBs3fHz9Z4ie5j-oyXtF0zsg6AVL3SdUVF0InhaSvgOp_z2vl4-cGMYfvf9Mil90fIimsNQD0_cfCF-Iy9Ws=w673" alt=""/></figure>



<p>Once the configuration finished you will be able to find event ID 611 in the logs.</p>



<figure class="wp-block-image"><img src="https://lh5.googleusercontent.com/euyeL4_RrLv7a78Mcn_eilWC5CmHn7bp_eLudC-IRO0OVbmkxEiZsfI8T0hfLCdvL3ZMc5aZR6EfYF0FsSq3_zsYBOippVeCPlffDMlPodIESzJpKTUK=w673" alt=""/></figure>



<p>Now checking Office 365 portal, I can see that users have been synced to the Office 365 portal:</p>



<figure class="wp-block-image"><img src="https://lh4.googleusercontent.com/4VN3j2rL0KTZG1bf2IYBXzDoJwe89VfP_ak93mVTiZF7VDVce2-FydxKPIojJoTUTy8tyvzjlkDGqzITIw2o6kM6Et4jfxVx-tfgVT06hOHgsDKoH4YI=w1175" alt=""/></figure>



<p>Now let&#8217;s go to the Exchange On-Premises server, and before starting the HCW on Exchange on-premises you will have to do three main steps:</p>



<ol class="wp-block-list"><li>Make sure Autodiscover is set</li><li>Make sure WSSecurity is set to true.</li><li>Make sure that&#8217;s MSProxy is set to True.</li></ol>



<p><strong>You need to make sure that Autodiscover URL on autodiscover virtual directory is set for internal and External. To do so first check the current configuration by using the following commands.</strong></p>



<p><strong>Get-autodiscovervirtualdirectory | fl</strong></p>



<figure class="wp-block-image"><img src="https://lh6.googleusercontent.com/eL8quPd7cy0DgGAqwrQGxYU4tMZKWExVQjONr2moWONnkN3_nm5p9vHGQsL22_p4DYjqONUOWRpHp-u72YNUqKr6TepQ6zxLzQ9PvpT9tUBBmdiwFg=w974" alt=""/></figure>



<p><strong>If the Internal and external Autodiscover urls are not set then set them using the following command line.</strong></p>



<p>Set-AutodiscoverVirtualDirectory -Identity &#8216;autodiscover(default Web Site)&#8217; Internalurl <a href="https://www.google.com/url?q=https%3A%2F%2Finternalfqdn.domain.com%2Fautodiscover%2Fautodiscover.xml&;sa=D&;sntz=1&;usg=AFQjCNHU_JVqnPGalU8dAqwkz8BU9yQR2A" target="_blank" rel="noreferrer noopener">https://internalfqdn.domain.com/autodiscover/autodiscover.xml</a></p>



<p>Set-AutodiscoverVirtualDirectory -Identity &#8216;autodiscover(default Web Site)&#8217; Externalurl <a href="https://www.google.com/url?q=https%3A%2F%2Fmail.domain.com.com%2Fautodiscover%2Fautodiscover.xml&;sa=D&;sntz=1&;usg=AFQjCNG9JqP6VYD8bC9ehNlsxYIkwar2Tw" target="_blank" rel="noreferrer noopener">https://mail.domain.com.com/autodiscover/autodiscover.xml</a></p>



<p>From <;<a href="http://www.google.com/url?q=http%3A%2F%2Ftechnet.microsoft.com%2Fen-us%2Flibrary%2Faa998601%28v%3Dexchg.150%29.aspx&;sa=D&;sntz=1&;usg=AFQjCNE-DVHPy_9iSqx92FLAKEvO0tF42g" target="_blank" rel="noreferrer noopener">http://technet.microsoft.com/en-us/library/aa998601(v=exchg.150).aspx</a>>;</p>



<p><strong>Now we have to enable the wssecurity and mrsproxy since both of them are not enabled by default in the virtual directory:</strong></p>



<p>You can still check if you need to to make sure that it&#8217;s enabled or not by using the following cmdlet</p>
<!-- WP QUADS Content Ad Plugin v. 2.0.92 -->
<div class="quads-location quads-ad2530 " id="quads-ad2530" style="float:none;margin:0px 3px 3px 3px;padding:0px 0px 0px 0px;" data-lazydelay="0">

</div>




<p>Get-WebServicesVirtualDirectory -Server ExchangeHostName | fl</p>



<p>Now to enable the WebServices use the following cmdlet on Exchange Management shell</p>



<figure class="wp-block-image"><img src="https://lh6.googleusercontent.com/Q8MxxgPx0mIFMpponda9agk15cnE3sYAeGuvO3aYcfcZxl6eHySov6i6J_h2YJ3lxiWS-ICu5wik9uFLVqqcYGwyZeKkZwxsC9TOMBWlNw-9Ql9pkg=w1175" alt=""/></figure>



<p>To enable the WSSecurity use the following CMDlet</p>



<figure class="wp-block-image"><img src="https://lh4.googleusercontent.com/jLg-DZJE9pCGgSoFBzuaeivr3BBDzsgP5RWqIZvxsca1koLK-ZQg2v8u5oAYg0mHTTExGFEUi20PWJ0WgMLN6u4GMUT2EqGfatnTocJvW2kPjerTHQ=w1175" alt=""/></figure>



<p>Then use the command &#8220;Get-WebServicesVirtualDirectory -Server ExchangeHostName | fl&#8221; to see if the values have changed</p>



<figure class="wp-block-image"><img src="https://lh5.googleusercontent.com/241ULNbKOBNjtbW432rCXrWV98AfPdB4i767o-qGAc6KnK2COTE6W4bVvegxDkNnaeIT-EJEW6VR5P7iS9HBU7SsWZC2Gf-1-9IE0vFy5aobk-dg4Uo6=w874" alt=""/></figure>



<p>I need to go to my Local exchange server and start the Hybrid process.</p>



<p>From Under MS Exchange on-premises we click on Organization Configuration after we add our trusted tenant domain to the Exchange server.</p>



<figure class="wp-block-image"><img src="https://lh6.googleusercontent.com/Du4CNcqWuTYXHRpJolA1Zb8GTJpuq1cG65BQ8jlPv-qTvgfv9pTWgtwNIkJFhE1uET5FAa6z9qLV_6cYCZ-dtfx9Od_5kBoIzJPGrgGGqC8_sOrmolY=w1175" alt=""/></figure>



<p>Click Next, and enter the credentials for your domain admin and tenant admin.</p>



<figure class="wp-block-image"><img src="https://lh5.googleusercontent.com/wabSsrzk1QrkDkfv6jVu4_mJWqFoDtc6xybappFYVkCek6vR3-Ual6jmHDBVwoxC5HO3Czh1Jh1OWPaY-Q756HT0Yp7ZaXuo6kjxF5yMcB7Csg6Vx9o=w673" alt=""/></figure>



<p>Click Next, Add enter the verified domain.</p>



<figure class="wp-block-image"><img src="https://lh4.googleusercontent.com/VJ9697hMwxvmnUFazvJDhpW9c-cdlwhE_u2EJsfoKFjgz4wYs9_22Uk-Rj4a1z2JiDKlALLysksSHQMu8jy0f8epP5GJ5to48q_U3sFiFoHprtZy-qM=w673" alt=""/></figure>



<p>Click next, here you will need to press ctrl + C to copy the value and create this value as txt in your public DNS.</p>



<figure class="wp-block-image"><img src="https://lh3.googleusercontent.com/ynGwCZqqgU84Di_c-2avxCKkCqyb-0uRgPGW205w_egdAueOaCGPqE7GJHACfiKh1U7D067bLe3DkC-LE1_hQqtZieT90MTwLd-B3Ea9B7ZswCkfomw=w673" alt=""/></figure>



<p>Click next once you verified that the value has been published and available on</p>



<figure class="wp-block-image"><img src="https://lh6.googleusercontent.com/RKYNiBTEbkm16EedENltplLOnTXYk0N1aceDIXUl-raq-iQbNwBVMYpBK54uRIha9J0sqQbkk3Rouyz4mHR2HO5jHC43nNTXNjBkTkIW076_6eBb7rU=w673" alt=""/></figure>



<p>Select the Mailbox, Client Access, Hub transport.</p>



<figure class="wp-block-image"><img src="https://lh3.googleusercontent.com/RfxsEgQ5mngonecXkX1aLqVElmdSrEmfyLXtfxhYMoxkOk6fOiKgVieaApPR_G_MqRpnt-k54jsqfNl6V1ZvaTPAAs4KbcUvL5atCamFNqGZCbdiuYpU=w673" alt=""/></figure>



<p>Here click Next again, below you will need to create a new A Name record in your public DNS that directs to your Inbound connector&#8217;s IP under ForeFront Online Protection and the FQDN e.g. &#8220;Mail.domain.com&#8221; under the outbound connector or place the SMTP gateway&#8217;s Public IP if you have it and create an A name in your public DNS that has the same IP .</p>



<figure class="wp-block-image"><img src="https://lh6.googleusercontent.com/s2Z3oaEP6SxwIiAkFlRoTxto6-foYvmO3hBAopbTZLf_IDjVCX6LPM7zzYITrHjneow2PloeQbrdRbltIyCUdP2VQBT_ynZT3HVkJD4t0rNzi5TXqw=w673" alt=""/></figure>



<figure class="wp-block-image"><img src="https://lh6.googleusercontent.com/N4KvOMCEfYddYJfxnpQmBra7-blKTEoYCAEpKGS0RFD5taEf_MtM-0phiWbO5nO0iEfZL1WgJ5ZesYr4onFqH-QQAbmvkPiu2g1B_hMeAjGIQUAPnE8=w673" alt=""/></figure>



<p>In the following step, the snapshot shows the certificate which I have associated with my hub transport server however, this certificate is public certificate that&#8217;s brought from 3rd party.</p>



<figure class="wp-block-image"><img src="https://lh6.googleusercontent.com/UnZQ8CXsHIYZ4e4dja0dm3Ks_dTSjFAhUq_K6XfqnyKGXoI6eo3gr5ZljpF33CQfIObSBa7bgT98o5jXjovp9121JSadM4l0Erq164n7UO9rRORE-Qg=w673" alt=""/></figure>



<p>Select the certificate and choose how you want to route your mail.</p>



<figure class="wp-block-image"><img src="https://lh6.googleusercontent.com/TtlAxH_FRvwbLfVaZdxq-_Sexd4A_055nhpv3liRbHG3NBS72pFy9fGfVAQWc8S0s5rtyffRm47Jc0bO-G9Xjn3mXW0afk_8iaLCU1cyCtktb2Idmg=w673" alt=""/></figure>



<p>Click Manage, When clicking manage you might get the following error message </p>



<figure class="wp-block-image"><img src="https://lh5.googleusercontent.com/fh9oPgyEvM3oz6qgTyxJKMvBD8PRIiuu7HpVdGgOK37m3lojsaiwEsASD2cGkjT4zsLgZl4Q9yGKbeQikSHxWyQ15ALvT8z2-BsGIeV_AMVe4zH4jQ=w1175" alt=""/></figure>



<p>Summary: 2 item(s). 1 succeeded, 1 failed.</p>



<p>Elapsed time: 00:03:37</p>



<p>Set-HybridConfiguration</p>



<p>Completed</p>



<p>Exchange Management Shell command completed:</p>



<p>Set-HybridConfiguration -Features &#8216;MoveMailbox&#8217;,&#8217;OnlineArchive&#8217;,&#8217;FreeBusy&#8217;,&#8217;Mailtips&#8217;,&#8217;MessageTracking&#8217;,&#8217;OwaRedirection&#8217;,&#8217;SecureMail&#8217;,&#8217;CentralizedTransport&#8217; -Domains &#8216;cloudimia.com&#8217; -ClientAccessServers &#8216;EXCH01&#8217; -TransportServers &#8216;EXCH01&#8217; -ExternalIPAddresses &#8216;95.0.52.125&#8217; -OnPremisesSmartHost &#8216;hybrid.cloudimia.com&#8217; -SecureMailCertificateThumbprint &#8216;E2539EB2BE3BB5FFB56B5EF3BF4CB2017A645717&#8217;</p>



<p>Elapsed Time: 00:00:06</p>



<p>Update-HybridConfiguration</p>



<p>Failed</p>



<p><strong>Error:</strong></p>



<p>Updating hybrid configuration failed with error &#8216;Subtask Configure execution failed: Configure Mail Flow Execution of the Set-HybridMailflow cmdlet had thrown an exception. This may indicate invalid parameters in your Hybrid Configuration settings.</p>



<p>Connector validation failed: RouteAllMessagesViaOnPremises can be set to true only when there is at least one inbound connector of type OnPremises with AssociatedAcceptedDomains set to empty.</p>



<p> at Microsoft.Exchange.Management.Hybrid.RemotePowershellSession.RunCommand(String cmdlet, Dictionary`2 parameters, Boolean ignoreNotFoundErrors)</p>



<p>&#8216;.</p>



<p>Additional troubleshooting information is available in the Update-HybridConfiguration log file located at C:\Program Files\Microsoft\Exchange Server\V14\Logging\Update-HybridConfiguration\HybridConfiguration_2_11_2014_15_9_37_635277281771541111.log.</p>



<p>Exchange Management Shell command attempted:</p>



<p>Update-HybridConfiguration -OnPremisesCredentials &#8216;System.Management.Automation.PSCredential&#8217; -TenantCredentials &#8216;System.Management.Automation.PSCredential&#8217;</p>



<p>Elapsed Time: 00:03:31</p>



<p>As Microsoft Employee advises it&#8217;s better to use the internet instead. So we will go with this option and see what happens.</p>



<p><strong>The general recommendation and default setting is not do this, but to deliver e-mail from Exchange Online to external recipients directly to the Internet instaed.</strong></p>



<p><strong>If it is no requirement, I advise you to skip that option.</strong></p>



<p>From <;<a href="http://www.google.com/url?q=http%3A%2F%2Fcommunity.office365.com%2Fen-us%2Fforums%2F156%2Ft%2F202214.aspx&;sa=D&;sntz=1&;usg=AFQjCNGzNwaUVNiKuNk5UI_fwsZJwpWeOA" target="_blank" rel="noreferrer noopener">http://community.office365.com/en-us/forums/156/t/202214.aspx</a>>; </p>



<figure class="wp-block-image"><img src="https://lh5.googleusercontent.com/oVK-c4qgCe2xO62uBSo0MEL7ifF0KGigjyjhHL6ooeEw9WibXbvGr2GTRKagJILSku4yJtKrNY09IQsLCt9SbpdTo4nCVGlEhf8Fm66tMO3sHiWFoOM=w1175" alt=""/></figure>



<figure class="wp-block-image"><img src="https://lh5.googleusercontent.com/zrffb92mLQZQ8rLqxHnf4PLciWv_UocL78LduCjsvxFyobEms6umqMfPoy2cf65CPaqKiyNzmUOj7ntDh1GJGzMJyLFmXnoo-cex7jzHS8cuM8OHwyc=w1175" alt=""/></figure>



<p>And here we are done.</p>
<!-- WP QUADS Content Ad Plugin v. 2.0.92 -->
<div class="quads-location quads-ad2525 " id="quads-ad2525" style="float:none;margin:0px 3px 3px 3px;padding:0px 0px 0px 0px;" data-lazydelay="0">

</div>




<figure class="wp-block-image"><img src="https://lh4.googleusercontent.com/Jkpy4NaBi6kT7teyzI05Dhp5Qn96LpdfK4tFdsCrx-zB0No55XCtidh3OSfeRbY9TKRBpFTjLlUemDBLVBbA1cKmqLFa9p_z4iT8i2VRwySG03XnYCk=w1175" alt=""/></figure>



<p>Looking at the Hub Transport, we can see that at remote domains we have new domains added automatically after the Hybrid Configuration.</p>



<figure class="wp-block-image"><img src="https://lh4.googleusercontent.com/z54ZwaL_pLjPr5iVFS_HD1lKZ04M9vW_k5d5lazwmaSrJM0qDwilHU-qt7MmnqrIsWXaYsEw-MdjYTvgHa7jqJerxW0f8NaSjX2QDlEBGisHg2mIoMvK=w1175" alt=""/></figure>
</p>
<!-- WP QUADS Content Ad Plugin v. 2.0.92 -->
<div class="quads-location quads-ad2524 " id="quads-ad2524" style="float:none;margin:0px 3px 3px 3px;padding:0px 0px 0px 0px;" data-lazydelay="0">

</div>


Reset and manage your Active Directory users' Passwords Active Directory is one of the most…
Finding Exchange Database hidden mailboxes. Story:Maybe you have been in this situation before, trying to…
If you're using a Proxy server in your firewall or in your network and have…
Story:I got some clients that have reported some of their users being locked out and…
Delegate Permissions This is a code that I have wrote recently to check if an…
Story: I got a request from a client who constantly gets CVs and have to…