Server Lockdown - Azure AD Connect

Question

After enabling Lockdown on a domain controller running Server 2012R2, Microsoft's Synchronization Service Manager application included with Azure AD Connect would not function correctly. I was also experiencing the Microsoft Azure AD Sync service failing and restarting when opening the Azure AD Connect application. Within the Synchronization Service Manager application, the ADDS Delta import would show with status of success when trying to sync, but the Azure AD connector's delta import would show a status of stopped-server. 
 I unlocked the server within Central Admin and was able to resume syncing correctly. After locking down again, it stopped. I had to add Lockdown policy folder exceptions in order for it to work properly when locked down: 
 
 C:\Program Files\Microsoft Azure Active Directory Connect 
 C:\Program Files\Microsoft Azure AD Connect Health Sync Agent 
 C:\Program Files\Microsoft Azure AD Sync

Mark Rudella · Accepted Answer

After speaking with tech support, they added in 2 additional white list entries (seen below) and all of the connector operations are now working properly, with a status of success. 
 C:\Program Files\Microsoft Azure AD Sync\Bin\miiserver.exe 
 C:\Program Files\Microsoft Azure AD Sync\ExtensionsCache\Extensible MA {CD2F8562-3580-4133-A1C9-F2481F7309BA}\assembly\dl3\94cd77df\006b33aa_6120d401\Microsoft.Azure.ActiveDirectory.Connector.DLL 
 I'm not completely sure why those entries had to be explicitly added, considering my original white list entries also had C:\Program Files\Microsoft Azure AD Sync added in. Also, I'm assuming that the actual location of the DLL file may be different for each instance, so I'd recommend checking that out for yourself and not just adding what I put here.