Azure AD Connect: staging mode advised

Microsoft Entra Connect is the bridge that copies user changes from on-premises Active Directory into Microsoft Entra ID, and Microsoft says a second server in staging mode can take over if the primary sync server fails. (learn.microsoft.com) Microsoft’s staging-mode guide, updated in April 2026, says the standby server keeps importing changes from Active Directory and Microsoft Entra ID but does not export them until administrators switch it into active use. The same document lists fault tolerance, testing configuration changes, and replacing an old server as core uses for staging mode. (learn.microsoft.com) Vision Training Systems, in a technical guide published on April 13, 2026, said organizations should use staging mode when “the failure of a single synchronization server would be unacceptable.” The guide framed that setup as a way to cut outage risk without rebuilding the rest of a hybrid identity design. (visiontrainingsystems.com) The sync server matters because it is the system that creates, updates, and removes cloud identities based on changes in the on-premises directory. Microsoft’s architecture documentation says the sync engine imports objects, joins them in a central metaverse, applies synchronization rules, and then exports the results to Microsoft Entra ID. (learn.microsoft.com) If that pipeline stops, account changes can lag. Vision Training Systems tied those delays to stale accounts, delayed deprovisioning, access-control drift, and compliance problems when disabled or terminated users are not removed from cloud services on time. (visiontrainingsystems.com) Microsoft’s topology guidance draws a hard line on how to add resilience: one active Microsoft Entra Connect Sync server per tenant is supported, and a second server is supported only in staging mode. Microsoft says multiple active sync servers connected to the same tenant are not supported, even if each handles a different set of objects. (learn.microsoft.com) Staging mode is not a cold backup that sits untouched for months. Microsoft’s scheduler documentation says even staging servers need a delta synchronization within seven days, or administrators may need a full synchronization to recover normal operation. (learn.microsoft.com) Microsoft also says administrators can enable staging mode during installation or later through the setup wizard, then run full import and full synchronization jobs to confirm expected results before cutover. In a failure, the staged server can be switched to export changes and assume production duties. (learn.microsoft.com, learn.microsoft.com) The practical message is narrow but concrete: if identity sync is a single point of failure, Microsoft’s supported backup plan is already in the product, and the standby server has to stay current to be useful. (learn.microsoft.com, learn.microsoft.com)