<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeCommunityForum
0D54z0000882FU3CAMOkta Classic EngineIntegrationsAnswered2022-09-29T03:58:50.000Z2022-09-27T21:03:07.000Z2022-09-29T03:58:50.000Z

PaulC.27959 (DigitalFish, Inc.) asked a question.

September 27, 2022 at 9:03 PM
Synchronization email warnings from Azure for Microsoft 365

I recently added the Microsoft 365 Integration to Okta. Everything (SSO at Microsoft, Office 365 provisioning) is working fine. However, Microsoft Azure sends me multiple emails a day titled "Your identity synchronization from on-premises is unhealthy," saying there was a lack of synchronization attempts from the "identity synchronization tool."

 

All information I can find about this assumes we have an AD on-prem server, but we do not. Our users are defined in Okta (or in most cases, Bamboo HR). There's nothing to sync with! Is anyone else using Okta Microsoft 365 integration without running an Active Directory server? Does anybody know how to stop this warning?

  • 2 answers
  • 468 views

  • Mihai N. (Okta, Inc.)

    Hi @PaulC.27959 (DigitalFish, Inc.)​ , Thank you for reaching out to the Okta Community!

     

    I was looking into this and it might have something to do with the "Manage Security defaults" setting on the Azure side. It could be that it erroneously expects an on-premise integration.  

    If your authentication and Provisioning with Okta works, but you are just receiving notifications from Azure, you might want to check those settings. 

     

    https://learn.microsoft.com/en-us/azure/active-directory/fundamentals/concept-fundamentals-security-defaults

     

    I've also found a mention of something similar here:

    https://support.okta.com/help/s/question/0D51Y00005pKvxCSAS/unhealthy-identity-synchronization-notification?language=en_US

     

     

    If my answer helped, remember to mark it as best to increase its visibility for other members of the Okta Community who might have the same questions as you. 

     

    Hope my answer helps! 

    --------------------------------

    The Okta Community Catalysts Program is now live. Collect online badges when you participate in the Okta Help Center Questions community. Learn more here.

    Expand Post

  • PaulC.27959 (DigitalFish, Inc.)

    Mihai, That seems like a reasonable theory. I turned off Security Defaults (a single option) in the Azure portal, which I didn't know existed! (I use the Microsoft 365 admin portal). We'll see if that stops the emails. The old thread did sound a lot like this, and it sounded like it just went away that time. Thanks!

This question is closed.
Loading
Synchronization email warnings from Azure for Microsoft 365