Microsoft recently announced the new Azure Active Directory Connect update which is now Version 1.1 and this includes some significant changes including the Auto Update feature. Some organisations will feel a little worried about this but we will see how this pans out. However, for those of you who don’t want this then this is how to disable it and re-enable is when you want.
Automatic upgrade is enabled by default for the following:
- Express settings installation and DirSync upgrades.
- Using SQL Express LocalDB, which is what Express settings always use. DirSync with SQL Express also use LocalDB.
- The AD account is the default MSOL_ account created by Express settings and DirSync.
- Have less than 100,000 objects in the metaverse.
The current state of automatic upgrade can be viewed with the PowerShell cmdlet
Get-ADSyncAutoUpgrade. It has the following states:
Enabled – Automatic upgrade is enabled.
Suspended – Set by the system only. The system is no longer eligible to receive automatic upgrades.
Disabled – Automatic upgrade is disabled.
You can change between Enabled and Disabled with
Set-ADSyncAutoUpgrade. Only the system should set the state Suspended.
Set-ADSyncAutoUpgrade -AutoUpgradeState Disabled
Set-ADSyncAutoUpgrade -AutoUpgradeState Enabled