To implement directory synchronization, which is briefly described in Chapter 4, Identities and Authentication, you need to fulfill a few requirements.

• In a nutshell, these are the prerequisites you'll need to ensure that you have set up:
  • On-premises data prepared and ready
  • On-premises Active Directory
  • Azure AD Connect server
  • SQL Server
  • Accounts
  • Network connectivity
  • Component prerequisites
  • Hardware requirements

• Install Azure AD Connect. The installation has the following options:
  • Express settings
  • Custom settings

• Plan:
  • Design concepts: Go to https://docs.microsoft.com/en-us/azure/active-directory/connect/active-directory-aadconnect-design-concepts and read the documentation you find there. This article describes the main concepts of Azure AD Connect, such as the source anchor, which must be used when planning an Active Directory synchronization. By following the steps described in the article, you'll be able to select the best approach and synchronization schema for your organization.

• • Topologies: Go to https://docs.microsoft.com/en-us/azure/active-directory/connect/active-directory-aadconnect-topologies and read the documentation you find there. This scenario describes the supported topologies when configuring directory synchronization using Azure AD Connect and Azure Active Directory.

• Manage:
  • To learn how to manage Azure AD Connect, go to https://docs.microsoft.com/en-us/azure/active-directory/connect/active-directory-aadconnect-whats-next.

The required ports and protocols are shown in the following diagram:

The express installation is used in most organizations. You can set it up by going to the Admin center and, in Home | Active users, selecting More | Directory synchronization: