Microsoft recently announced the new Azure Active Directory Connect update which is now Version 1.1 and this includes some significant changes including the Auto Update feature.  Some organisations will feel a little worried about this but we will see how this pans out.  However, for those of you who don’t want this then this is how to disable it and re-enable is when you want. 

Automatic upgrade is enabled by default for the following:

  • Express settings installation and DirSync upgrades.


  • Using SQL Express LocalDB, which is what Express settings always use. DirSync with SQL Express also use LocalDB.
  • The AD account is the default MSOL_ account created by Express settings and DirSync.
  • Have less than 100,000 objects in the metaverse.

The current state of automatic upgrade can be viewed with the PowerShell cmdlet Get-ADSyncAutoUpgrade. It has the following states:

Enabled – Automatic upgrade is enabled.

Suspended – Set by the system only. The system is no longer eligible to receive automatic upgrades.

Disabled – Automatic upgrade is disabled.

You can change between Enabled and Disabled with Set-ADSyncAutoUpgrade. Only the system should set the state Suspended.

Examples are:


Set-ADSyncAutoUpgrade -AutoUpgradeState Disabled



Set-ADSyncAutoUpgrade -AutoUpgradeState Enabled