Hi,
I'd be happy to help you out with your question. Sorry for the inconvenience caused.
To revert from hybrid Azure AD back to on-premises AD only, you can follow these steps:
- Remove the device from Azure AD by unjoining it. You can do this using the Azure portal or PowerShell.
- Remove the device from Intune if it is enrolled. This can be done in the Intune console or PowerShell.
- Remove the device from the Hybrid Azure AD join by running the following PowerShell command on the device: dsregcmd /leave.
- Remove the device object from Active Directory Users and Computers.
- Remove the device object from Active Directory Sites and Services.
- If you used Azure AD Connect to synchronize the device object to Azure AD, you need to ensure that the device object is not synchronized again by removing it from the appropriate synchronization group.
- Ensure that the device is joined to the on-premises AD domain using traditional methods.
Note that if the device has been enrolled in Intune, any data or settings that were configured on the device using Intune may still remain after the device is removed from Azure AD. Therefore, it's important to ensure that all Intune policies are removed from the device as well.
Also, reverting from hybrid Azure AD back to on-premises AD only means that the device is no longer managed by Azure AD. This can affect access to cloud resources and applications that rely on Azure AD authentication, so you may need to adjust your access policies accordingly.
If you have any other questions or need assistance with anything, please don't hesitate to let me know. I'm here to help.
If the reply was helpful, please don’t forget to upvote or accept as answer, thank you.