Sign in
 
HomeOnline20132010Other VersionsRelated ProductsLibraryForumsGallery
TechCenter >
User Profile Sync - AD Changes are not replicated

Answered User Profile Sync - AD Changes are not replicated

  • Friday, July 20, 2012 6:02 PM
     
     
    Sign In to Vote
    0

    SharePoint Server 2010 with User Account Profile Synch set up and seems to be working.

    Issue: Display name, e-mail, etc.. changes are not replicated during a full import of the user profile info. The changes are not reflected in My Settings or in the site collections.

    I have seen some powershell commands to force the change, but what is the use of the user profile service and full synch job if the properties are not pulled in?

    Any help on how I can get changes in AD to be reflected would be appreciated.

    Thanks

    Mark


    • Edited by cdr_pfeifer Friday, July 20, 2012 6:32 PM
    •  
     

All Replies

  • Friday, July 20, 2012 6:31 PM
    Moderator
     
     
    Sign In to Vote
    0
    Are you saying that the changes aren't pulled from AD into the UPA, or that they're not pushed from the UPA to Site Collections?

    http://sharepoint.nauplius.net

     
  • Friday, July 20, 2012 6:33 PM
     
     
    Sign In to Vote
    0

    Sorry about that - the changes are not showing up in My Settings or in the site collections.   For example, if I change my e-mail, my profile still shows the old one.  If I wipe out the e-mail in the SharePoint User Profile (central admin) and do a full sync, it is not being repopulated from AD either.

    Thanks

    Mark

     
  • Friday, July 20, 2012 7:00 PM
    Moderator
     
     
    Sign In to Vote
    1
    I would check the miisclient to see if it is reporting any errors.  It can be found at C:\Program Files\Microsoft Office Servers\14.0\Synchronization Service\.

    http://sharepoint.nauplius.net

     
  • Friday, July 20, 2012 7:13 PM
     
     
    Sign In to Vote
    0

    Thanks.  I am getting no-start-credentials on the FullImport lines.  Do I need to do something to update the user profile services?  Any ideas on what service account and where I need to validate?

    thanks

    Mark

     
  • Friday, July 20, 2012 7:14 PM
    Moderator
     
     
    Sign In to Vote
    0
    You'll want to update the sync account (this shouldn't, but can be the same account that is running the UPSS).  Go into your UPA Connections and just re-enter the information there.  Then try another Full Import.

    http://sharepoint.nauplius.net

     
  • Friday, July 20, 2012 7:47 PM
     
     
    Sign In to Vote
    0

    Updated the UPA connection to AD, repopulate the appropriate groups and did a full sync.  MIISClient has success for everything but still the AD properties are not syncing from AD after the initial import.  I delete the profile and recreate it, everything comes from AD fine.  I make changes in AD, and fo a full sync and nothing gets updated.

    Other ideas?  Thanks!

     
  • Friday, July 20, 2012 7:48 PM
    Moderator
     
     
    Sign In to Vote
    0
    Can you clarify if by changes you mean the Profile as viewed via the UPA User Profiles, or via Site Collection details?

    http://sharepoint.nauplius.net

     
  • Friday, July 20, 2012 7:53 PM
     
     
    Sign In to Vote
    0

    I make changes to AD, do a Full Import and then check the profile attributes by using Central Admin/UPA/Manage User Profiles.  I have not gotten to the site collection yet.

     
  • Friday, July 20, 2012 7:53 PM
    Moderator
     
     
    Sign In to Vote
    0
    Does the Sync account have the Replicate Directory Change right on the user objects you're sync'ing?

    http://sharepoint.nauplius.net

     
  • Friday, July 20, 2012 7:56 PM
     
     
    Sign In to Vote
    0

    Yes - In AD, I right click the domain, security tab and see the user account has replicate directory changes.  I do not have the replication directory changes all selected but will try that.  This is W2003 AD.

     
  • Friday, July 20, 2012 7:57 PM
    Moderator
     
     
    Sign In to Vote
    0
    Make sure you also validate that the Replicate Directory Change right is for "All Objects and Child Objects" (I believe that is the correct phrasing).

    http://sharepoint.nauplius.net

     
  • Friday, July 20, 2012 8:02 PM
     
     
    Sign In to Vote
    0

    Yup - it is set as well.  I am seeing success for the imports and exports - all phases.  However, the only items I see are the groups no users in the MIISClient.

    Still no joy though,

    Thank you!  

     
  • Friday, July 20, 2012 8:39 PM
    Moderator
     
     
    Sign In to Vote
    0
    You might want to consider resetting the Sync database (http://technet.microsoft.com/en-us/library/ff681014.aspx#resetSync).  If you haven't made any property changes, there should be no impact to doing this.

    http://sharepoint.nauplius.net

     
  • Friday, July 20, 2012 8:42 PM
     
     Answered
    Sign In to Vote
    0

    I got it working now - I rebuilt the connection again and it now seems to be working.  Ugg - so much. 

    Thank you for all your assistance, you got me in the right direction with the MIISClient to rebuild the connection.

    Mark