We have 2 records for some users in Azure AD. How can we make it to a single record for Hybrid azure AD and intune?

Alan John Paul 0 Reputation points
2023-10-19T15:52:46.6+00:00

image_2023_10_19T15_19_57_074Z

We have 2 records for some users in Azure AD. How can we make it to a single record for Hybrid azure AD and intune in azure AD?

Microsoft Security | Microsoft Entra | Microsoft Entra ID
{count} votes

1 answer

Sort by: Most helpful
  1. James Hamil 27,221 Reputation points Microsoft Employee Moderator
    2023-10-23T20:16:41.7066667+00:00

    Hi @Alan John Paul ,to merge the duplicate records into a single record, you can follow these steps:

    1. Identify the duplicate records: You can use the Azure AD PowerShell module to search for duplicate records. Run the following command to search for duplicate records based on the user's email address:

    Get-AzureADUser -All $true | Group-Object -Property Mail | Where-Object { $_.Count -gt 1 }

    This command will return a list of email addresses that have more than one user account associated with them.

    1. Choose the primary record: Once you have identified the duplicate records, you need to choose which record will be the primary record. The primary record should have all the correct information and be the record that you want to keep.
    2. Merge the records: To merge the duplicate records, you can use the Azure AD Connect tool. Azure AD Connect can synchronize the attributes from both records into a single record. To do this, follow these steps:
    • Open the Azure AD Connect tool and select "Configure".
    • On the "Optional Features" page, select "Attribute Filtering" and then click "Next".
    • On the "Configure Attribute Filtering" page, select "Synchronize all domains and OUs" and then click "Next".
    • On the "Optional Features" page, select "Password Hash Synchronization" and then click "Next".
    • On the "Ready to Configure" page, click "Configure".
    • Once the configuration is complete, the duplicate records will be merged into a single record.
    1. Verify the merge: After the merge is complete, you should verify that the attributes from both records have been synchronized into the single record. You can do this by checking the user's attributes in Azure AD and Intune.

    Please let me know if you have any questions and I can help you further.

    If this answer helps you please mark "Accept Answer" so other users can reference it.

    Thank you,

    James

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.