This can be performed in 2 different ways. One way is to move the user in on-premises AD to non-sync OU and run sync on AD connect.
This method will move user in Azure AD to deleted container.
Another method is using sync rules you can perform this task.
Follow below steps to create sync rule and apply only to this user using object ID,
To stop Azure AD Connect from syncing one user to Azure, you can use attribute filtering. Here are the steps to exclude a user from syncing to Azure**:**
- Sign in to the server that is running Azure AD Connect sync by using an account that is a member of the ADSyncAdmins security group.
- Start Synchronization Rules Editor from the Start menu.
- Make sure Inbound is selected and click Add New Rule.
- Give the rule a descriptive name, such as "Exclude User from Sync". Select the correct forest, select User as the CS object type, and select Person as the MV object type. In Link Type, select Join. In Precedence, type a value that isn't currently used by another synchronization rule (for example 50), and then click Next.
- In Scoping filter, click Add Group, and click "Add clause". In Attribute, select ObjectGUID. Make sure that Operator is set to NOT EQUAL, and type the ObjectGUID of the user you want to exclude in the Value box. Click Next.
- Leave the Join rules empty, and then click Next.
- Click Add to save the rule.
This rule will exclude the specified user from syncing to Azure. Please note that it may take some time for the changes to take effect.
NOTE: Make sure you test this in your test environment first before implementing this in PROD environment.
Let me know if you have any further questions.
Please "[Accept the answer] (https://docs.microsoft.com/answers/support/accepted-answers)" if the information helped you. This will help us and others in the community as well.