Share via

Azure Active Directory and On-premise User Accounts

Jackie Butler 236 Reputation points
2020-09-10T20:44:22.127+00:00

We already have an Azure Active Directory with O365. I'm in the process of setting up a sync with our on-premise Domain Controller in a single forest.
We have passwords and user names within our O365 environment and on our on-premise active directory. Once the sync takes place which account will take over? The on premise account or the O365 account? What user name will then be used to logon to their computer system and which will be used to logon to Teams in O365? We have about 100 user accounts in the on-premise domain and only about 40 with licenses in the O365 environment. Will the sync upload all the on-premise accounts to the Azure Active Directory?

Microsoft Security | Microsoft Entra | Microsoft Entra ID
0 comments

Answer accepted by question author

  1. Vasil Michev 126.1K Reputation points MVP Volunteer Moderator
    2020-09-11T08:10:05.253+00:00

    Sync is one-way only, from on-premises AD to Azure AD, thus the on-prem accounts will be "source of authority". Syncing doesnt depend on any license, if you want to limit which accounts sync to Azure AD use filtering as detailed here: https://learn.microsoft.com/en-us/azure/active-directory/hybrid/how-to-connect-sync-configure-filtering

    2 people found this answer helpful.
    0 comments

1 additional answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Jackie Butler 236 Reputation points
    2020-09-12T12:53:55.683+00:00

    What user name will be used to logon to Teams in O365 once the sync takes place? Is it the Domain\username or the O365 account username@keyman .com?
    What happens to the O365 account after the sync takes place?

Your answer

Answers can be marked as 'Accepted' by the question author and 'Recommended' by moderators, which helps users know the answer solved the author's problem.