Create Skype Online Contact Active Directory

Posted on by

Create Skype Online Contact Active Directory

Hello,

In an on premise setup, when you create a contact in Active Directory, fill in the SIP address in ProxyAddresses or MsRtcSip-PrimaryUserAddress and you’re good to go.If you have an hybrid deployment or just using Skype online with an AADConnect and an on premise Active Directory, this simple contact won’t work. Indeed, AADConnect that is in charge of syncing your contacts from Active Directory to Azure Active Directory won’t sync the SIP address from the ProxyAddresses unless the domain is a validated one in your Office 365 tenant.

AADConnect won’t sync the MsRtcSip-PrimaryUserAddress either. This will result in your Active Directory contacts synced to Azure Active Directory without any of the SIP information you supplied in the contact. The SIP address will be the primary SMTP address. In most cases it will be fine, but if your contacts have SIP addresses that don’t match their primary SMTP, it just won’t work.

To summarize, if you have:

  1. Contacts in Active Directory
  2. AADConnect
  3. Contacts with SIP that differs from primary SMTP
  4. Contacts with external SIP address
  5. Skype online

You will need to modify a sync rule in your AADConnect.By default AADConnect will sync the MsRtcSip-PrimaryUserAddress in its database, but this information won’t be sync to Azure Active Directory:

Create Skype Online Contact Active Directory - Inbound Rule

Create Skype Online Contact Active Directory – Inbound Rule

But if you have a look at the outbound sync rule:

Create Skype Online Contact Active Directory - Outbound Rule

Create Skype Online Contact Active Directory – Outbound Rule

The MsRtcSip-PrimaryUserAdress is missing, you need to add it to get your contacts to sync the right way. You can edit this rule and add the missing attribute, or you can create a custom new one (best practice). You can do it manually, or you can use this PowerShell line:

New-ADSyncRule  `
-Name 'Out to AAD - Contact LyncOnline - MsRtcSip-PrimaryUsersAddress' `
-Identifier '4fdd92dd-f17c-4260-9be5-42b4477e9745' `
-Description ' 
 Cloned from rule ''Out to AAD - Contact LyncOnline'', Id= ''845158de-52db-4984-bfea-8abc6c862161'', At 2/14/2018 10:29:36 AM' `
-Direction 'Outbound' `
-Precedence 158 `
-PrecedenceAfter '00000000-0000-0000-0000-000000000000' `
-PrecedenceBefore '00000000-0000-0000-0000-000000000000' `
-SourceObjectType 'person' `
-TargetObjectType 'contact' `
-Connector 'b891884f-051e-4a83-95af-2544101c9083' `
-LinkType 'Join' `
-SoftDeleteExpiryInterval 0 `
-ImmutableTag '' `
-OutVariable syncRule


Add-ADSyncAttributeFlowMapping  `
-SynchronizationRule $syncRule[0] `
-Source @('msRTCSIP-PrimaryUserAddress') `
-Destination 'msRtcSipPrimaryUserAddress' `
-FlowType 'Direct' `
-ValueMergeType 'Update' `
-OutVariable syncRule


New-Object  `
-TypeName 'Microsoft.IdentityManagement.PowerShell.ObjectModel.ScopeCondition' `
-ArgumentList 'sourceObjectType','Contact','EQUAL' `
-OutVariable condition0


Add-ADSyncScopeConditionGroup  `
-SynchronizationRule $syncRule[0] `
-ScopeConditions @($condition0[0]) `
-OutVariable syncRule


Add-ADSyncRule  `
-SynchronizationRule $syncRule[0]


Get-ADSyncRule  `
-Identifier '4fdd92dd-f17c-4260-9be5-42b4477e9745'
Create Skype Online Contact Active Directory - New Rule

Create Skype Online Contact Active Directory – New Rule

Now, you need to start an initial sync and give AADConnect & AAD 24h to sync everything between AD, AADConnect, AAD and Skype online address book.

Start-ADSyncSyncCycle -PolicyType Initial

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.