I happened to have the Synchronization Service Manager (miisclient.exe) open on my Dirsync server and looked in there first. The Active Directory Connector had a status of Success, which is expected. So, all good on the local side. However, the Windows Azure Active Directory Connector had a status of "stopped-extension-dll-exception".
The Application event log gave more information:
- Directory Synchronization, Event ID 115 - Access to Windows Azure Directory has been denied
- Directory Synchronization, Event ID 0 - Update your password and try again
- Directory Synchronization, Event ID 655- Failed credential provisioning ping
The fix was to perform the following:
- Log in to Office 365 as an administrator and reset the password for the directory synchronization account.
- Update the password in Dirsync.
- Open Synchronization Service Manager (miisclient.exe).
- In Synchronization Service Manager, click Management Agents and double-click Windows Azure Active Directory Connector.
- In the Properties window, click Connectivity.
- On the Connectivity page, update the Password and click OK.
- Run Start-OnlineCoexistenceSync (or wait for Dirsync to do it automatically)
|Update Dirsync Credentials|
A complete set of instructions is here: