top of page

Setup Azure AD Connect using express settings

Updated: Aug 15, 2020


Azure AD Connect Express Settings is used when you have a single-forest topology and password hash synchronization for authentication. Express Settings is the default option and is used for the most commonly deployed scenario. You are only a few short clicks away to extend your on-premises directory to the cloud.

Before you start installing Azure AD Connect, make sure to download Azure AD Connect and complete the pre-requisite steps in Azure AD Connect: Hardware and prerequisites.

If express settings does not match your topology, see related documentation for other scenarios.


Express installation of Azure AD Connect


  1. Sign in as a local administrator to the server you wish to install Azure AD Connect on. You should do this on the server you wish to be the sync server.

  2. Navigate to and double-click AzureADConnect.msi.

  3. On the Welcome screen, select the box agreeing to the licensing terms and click Continue.

  4. On the Express settings screen, click Use express settings.

  5. On the Connect to Azure AD screen, enter the username and password of a global administrator for your Azure AD. Click Next. If you receive an error and have problems with connectivity, then see Troubleshoot connectivity problems.

  6. On the Connect to AD DS screen, enter the username and password for an enterprise admin account. You can enter the domain part in either NetBios or FQDN format, that is, Domain\administrator or Domain.com\administrator. Click Next.

  7. The Azure AD sign-in configuration page only shows if you did not complete verify your domains in the prerequisites. If you see this page, then review every domain marked Not Added and Not Verified. Make sure those domains you use have been verified in Azure AD. Click the Refresh symbol when you have verified your domains.

  8. On the Ready to configure screen, click Install.

    • Optionally on the Ready to configure page, you can unselect the Start the synchronization process as soon as configuration completes checkbox. You should unselect this checkbox if you want to do additional configuration, such as filtering. If you unselect this option, the wizard configures sync but leaves the scheduler disabled. It does not run until you enable it manually by rerunning the installation wizard.

    • Leaving the Start the synchronization process as soon as configuration completes checkbox enabled will immediately trigger a full synchronization to Azure AD of all users, groups, and contacts.

    • If you have Exchange in your on-premises Active Directory, then you also have an option to enable Exchange Hybrid deployment. Enable this option if you plan to have Exchange mailboxes both in the cloud and on-premises at the same time.


  1. When the installation completes, click Exit.

  2. After the installation has completed, sign off and sign in again before you use Synchronization Service Manager or Synchronization Rule Editor.

20 views0 comments

Recent Posts

See All

What is Azure AD Privileged Identity Management (PIM)?

Privileged Identity Management (PIM) is a service in Azure Active Directory (Azure AD) that enables you to manage, control, and monitor access to important resources in your organization. These resour

Prerequisites for Hybrid Azure AD

In a similar way to a user, a device is another core identity you want to protect and use it to protect your resources at any time and from any location. You can accomplish this goal by bringing and m

bottom of page