Share via

Synchronizing Azure AD Users with fresh Windows Server 2022 AD with different domain name

Josef Hrňa 20 Reputation points
2024-06-25T08:35:11.7866667+00:00

Hello,

I am seeking guidance on the best way to synchronize users from Azure Active Directory (Entra ID) to a freshly installed Windows Server 2022 Active Directory, which has a different domain name.

Current Situation:

I have 180 users currently joined to Entra ID with the domain "domainXXX.onmicrosoft.com".

My Question:

Is it possible to synchronize these users from Entra ID to a newly set up Windows Server 2022 Active Directory with the different domain name "domainYYY.local"?

When I attempted to export users from Azure and then ran synchronization, it created users in Entra ID with the domain domainYYY.local. My goal is to have these users from Entra ID (User.domainXXX.onmicrosoft.com) appear in my local AD with the domain domainYYY.local (User@domainYYY.local).

Thank you in advance for your help.

Windows Server
Windows Server
A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.
12,493 questions
Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
6,121 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
20,275 questions
0 comments
Accepted answer
  1. Sandeep G-MSFT 15,816 Reputation points Microsoft Employee
    2024-06-25T12:59:06.1566667+00:00

    @Josef Hrňa

    Thank you for posting this in Microsoft Q&A.

    As I understand you have created about 180 users in Azure active directory. Now you want to sync all 180 users to on-premises Active directory that you have configured.

    AD connect is the only tool that is used to sync object between on-premise AD and Azure active directory.

    However, AD connect is always one way sync for objects (users, groups, contacts and devices). AD connect syncs objects from on-prem to Azure AD.

    AD connect doesn't writeback user from Azure AD to on-premises AD. The user writeback preview feature was removed in the August 2015 update to Azure AD Connect.

    This is also documented in our public document https://learn.microsoft.com/en-us/azure/active-directory/hybrid/how-to-connect-preview#user-writeback

    Currently we do not have this feature. However, this might be one of our upcoming features in AD connect.

    You can submit the feedback regarding this in our Azure feedback portal.

    https://feedback.azure.com/d365community/idea/2f830ecc-ba25-ec11-b6e6-000d3a4f0789

    This feedback is directly monitored by out product managers and they will be able to share any update on this if they have.

    The only solution to you ask is to export users from Azure active directory and import them to manually to on-premise active directory using PowerShell scripts.

    You can work with your scripting engineer in your organization and build a script to import them to on-premise active directory

    Let me know if you have any further questions on this.

    Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

    0 comments

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest