To use Microsoft Entra Kerberos, your user account must be a hybrid ID

馬場 勇真 100 Reputation points
2023-11-02T00:34:47.8666667+00:00

Microsoft's official documentation states, "To use Microsoft Entra Kerberos, your user account must be a hybrid ID."

Do all UPNs have to match for a hybrid ID?

for example,

On-premises user ID:aaa.bbb@example.com

Entra ID created by Azure Entra AD Connect:aaa.bbb@example.onmicrosoft.com

Can this situation still be called a hybrid ID?

Azure Files
Azure Files
An Azure service that offers file shares in the cloud.
1,043 questions
Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
5,148 questions
0 comments
Accepted answer
  1. Konstantinos Passadis 13,446 Reputation points
    2023-11-02T01:40:53.2933333+00:00

    Hello @馬場 勇真 !

    As we can read from https://learn.microsoft.com/en-us/entra/identity/hybrid/whatis-hybrid-identity

    Hybrid identity is accomplished through provisioning and synchronization. Provisioning is the process of creating an object based on certain conditions, keeping the object up to date and deleting the object when conditions are no longer met. Synchronization is responsible for making sure identity information for your on-premises users and groups is matching the cloud

    So as long as your user is syncing from On Premises AD to Entra ID it is a Hybrid Identity user.

    I hope this helps!

    Kindly mark the answer as Accepted and Upvote in case it helped!

    Regards

    0 comments

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest