Scribd Logo
Upload

Welcome to Scribd!

  • SL - Tai Lieu Cai Dat Azure AD Connect - v1.0

    Uploaded by

    Hoang Tran Dang
    8 views9 pages

    Original Title

    SL_Tai lieu cai dat Azure AD Connect_v1.0

    Copyright

    © © All Rights Reserved

    Available Formats

    DOCX, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    8 views9 pages

    SL - Tai Lieu Cai Dat Azure AD Connect - v1.0

    Uploaded by

    Hoang Tran Dang

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 9

    1 Cài đặt Azure AD Connect

     Chạy lệnh dưới đây để thực hiện Enable TLS 1.2 cho server bằng Powershell Administrator

    If (-Not (Test-Path 'HKLM:\SOFTWARE\WOW6432Node\Microsoft\.NETFramework\v4.0.30319'))


    {
    New-Item 'HKLM:\SOFTWARE\WOW6432Node\Microsoft\.NETFramework\v4.0.30319' -Force |
    Out-Null
    }
    New-ItemProperty -Path 'HKLM:\SOFTWARE\WOW6432Node\Microsoft\.NETFramework\
    v4.0.30319' -Name 'SystemDefaultTlsVersions' -Value '1' -PropertyType 'DWord' -Force | Out-Null
    New-ItemProperty -Path 'HKLM:\SOFTWARE\WOW6432Node\Microsoft\.NETFramework\
    v4.0.30319' -Name 'SchUseStrongCrypto' -Value '1' -PropertyType 'DWord' -Force | Out-Null

    If (-Not (Test-Path 'HKLM:\SOFTWARE\Microsoft\.NETFramework\v4.0.30319'))


    {
    New-Item 'HKLM:\SOFTWARE\Microsoft\.NETFramework\v4.0.30319' -Force | Out-Null
    }
    New-ItemProperty -Path 'HKLM:\SOFTWARE\Microsoft\.NETFramework\v4.0.30319' -Name
    'SystemDefaultTlsVersions' -Value '1' -PropertyType 'DWord' -Force | Out-Null
    New-ItemProperty -Path 'HKLM:\SOFTWARE\Microsoft\.NETFramework\v4.0.30319' -Name
    'SchUseStrongCrypto' -Value '1' -PropertyType 'DWord' -Force | Out-Null

    If (-Not (Test-Path 'HKLM:\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\


    Protocols\TLS 1.2\Server'))
    {
    New-Item 'HKLM:\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\
    TLS 1.2\Server' -Force | Out-Null
    }
    New-ItemProperty -Path 'HKLM:\SYSTEM\CurrentControlSet\Control\SecurityProviders\
    SCHANNEL\Protocols\TLS 1.2\Server' -Name 'Enabled' -Value '1' -PropertyType 'DWord' -Force |
    Out-Null
    New-ItemProperty -Path 'HKLM:\SYSTEM\CurrentControlSet\Control\SecurityProviders\
    SCHANNEL\Protocols\TLS 1.2\Server' -Name 'DisabledByDefault' -Value '0' -PropertyType 'DWord'
    -Force | Out-Null

    If (-Not (Test-Path 'HKLM:\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\


    Protocols\TLS 1.2\Client'))
    {
    New-Item 'HKLM:\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\
    TLS 1.2\Client' -Force | Out-Null
    }
    New-ItemProperty -Path 'HKLM:\SYSTEM\CurrentControlSet\Control\SecurityProviders\
    SCHANNEL\Protocols\TLS 1.2\Client' -Name 'Enabled' -Value '1' -PropertyType 'DWord' -Force |
    Out-Null
    New-ItemProperty -Path 'HKLM:\SYSTEM\CurrentControlSet\Control\SecurityProviders\
    SCHANNEL\Protocols\TLS 1.2\Client' -Name 'DisabledByDefault' -Value '0' -PropertyType 'DWord' -
    Force | Out-Null

    2
    Write-Host 'TLS 1.2 has been enabled. You must restart the Windows Server for the changes to take
    affect.' -ForegroundColor Cyan

     Mở trình cài đặt Azure AD Connect  Continue

     Chọn mode Customize

    3
     Bấm Install

     Chọn mode Password Hash Synchronization

    4
     Bấm Add Directory  chọn Create new AD Account  điền Enterprise Admin để tạo ra 1 tài
    khoản service chạy cho Azure AD Connect với các quyền cần thiết  OK  Next

     Chọn User Principal Name là thuộc tính mail  tick chọn Continue without matching all UPN
    suffixes to verified domains  Next

    5
     Lựa chọn OU muốn sync object lên  Next

     Next để tiếp tục:

    6
     Next để tiếp tục

     Tick chọn Exchange hybrid deployment  Next

    7
     Bấm Install để cài đặt

     Bấm Exit để kết thúc

    8
    9

    You might also like