Hey everyone! I'm trying to set up a hybrid mail system as a learning project, but I'm running into a major headache with AzureAD Connect Sync. I've reinstalled it multiple times and rebooted the server as well, but I keep getting the same error message. I can confirm that local mailboxes can receive emails, but they can't send any. I'm using an HP ProLiant DL380 G9 with dual Xeon e5-2670v3 processors and 32GB of DDR4 RAM, all on a fresh install of Windows Server 2019. The error I keep facing suggests there's a problem with cloud sync intervals and an invalid provider type. I really want to get this sorted out, as I've dedicated nearly 30 hours over the last four days to getting it up and running. Can anyone help me?
2 Answers
First off, it seems like TLS might be your main issue. Make sure you haven't disabled TLS incorrectly on the server. It's crucial to test this type of setup in a clean environment rather than your production system, especially if you want to know how everything is supposed to work versus how your unique setup behaves. A basic clean install can save you a lot of headaches in the future!
It sounds like you're using an actual physical server for this setup, which might not be the best approach. Usually, running AzureAD Sync in a virtual machine is more flexible and easier to manage. What version of Windows Server and .NET are you using? Also, AzureAD Sync itself doesn’t handle mail flow, so you should check if all the connectors on your Exchange server are set up correctly. For the issues with TLS settings, I recommend using a tool like IIS Crypto to verify your settings. That might just point you to what's wrong.
I thought running it on hardware would be better for performance, but I've found that VMs work better overall. I'm on Windows Server 2019 Essentials with .NET 4.8. Setting up the Exchange server was a bit of a workout, too. I've tried resetting the TLS settings, but I keep getting the same error message. I'll check out IIS Crypto.
This is indeed a clean system, and I’m specifically on a test environment here—no users have been set up except for some test accounts. I also haven’t messed with TLS settings, but I’ll triple-check to be sure.