Meraki

Community

AD Sync Failures

OrionNet
New here
‎Nov 18 2021 9:24 AM
‎Nov 18 2021 9:24 AM

AD Sync Failures

We are running Azure AD Connect to sync our on-prem AD to Azure. Recently, the sync service has started to fail, occasionally, with one of the following two error statuses:

 

Stopped-Extension-DLL-Exception or no-start-ma

 

The URL used for syncing is autologon.microsoftazuread-sso.com. After some investigating, we found that Microsoft is redirecting this URL to other countries that we have in the Geo Location Block setting. Adding the URL to the whitelist did not resolve the issue. Is anyone experiencing this issue and is there a workaround?

0 Kudos
3 Replies 3
CptnCrnch
Kind of a big deal
Kind of a big deal
‎Nov 18 2021 10:40 AM
‎Nov 18 2021 10:40 AM

It seems like Geo Blocking still can't be overriden by Allow lists:

Block Listing and Allow Listing Clients - Cisco Meraki

PhilipDAth
Kind of a big deal
Kind of a big deal
‎Nov 18 2021 12:07 PM
‎Nov 18 2021 12:07 PM

What an interesting choice you have.  Your service provider (Microsoft) is providing services to you out of a country you don't want anything to do with.

 

I only see two choices.

  • Stop using the Microsoft service
  • Remove the geo-block.
CptnCrnch
Kind of a big deal
Kind of a big deal
‎Nov 18 2021 12:45 PM
‎Nov 18 2021 12:45 PM

+1 for removing Geo Blocking! 😇 There may be realistic use cases for it, I've never seen one though in our nowadays cloud-centric world. 😉

0 Kudos
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.