Please implement a feature to sync only active AD accounts via Authentication Schemes - MSAD Authentication - Offline Sync. Customer has 75.000 disabled vs. 25.000 active AD accounts.
At the moment only one server could be defined for NTLM/MS-CHAP v2 Authentication. A second server would be fine for redundancy.
For details have a look at case: 01955181