This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(28.799999999999997, 50%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESD%3C/text%3E%3C/svg%3E)
Hi
I have some users left on prem and would like to convert them to Cloud accounts. I have come across a script to disable AD Connect and convert everyone at once 'Set-MsolDirSyncEnabled -EnableDirSync $false'.
However, I need to know that the users will not have any issues and that this will not reset their passwords.
Please advise on any possible user issues and whether their passwords will be reset.
Once everyone is cloud only I will remove AD connect
Regards
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(281.6, 80%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETB%3C/text%3E%3C/svg%3E)
If you want users use the same password , you should enabling the synchronization of password hash before disabling the directory synchronization. If it's the case the user will able to resuse the same password when his Entra ID account will be converted to cloud only.
Please don't forget to accept helpful answer
Disabling it client-side means objects continue to be managed on-premises, and updates made will not be synchronized to Azure AD. However, if you disable it server-side, as in your case using the 'Set-MsolDirSyncEnabled -EnableDirSync $false' command, the objects will be "converted" to cloud-only and can be managed directly in Azure AD/Office 365. After disabling Azure AD Connect, passwords will no longer sync from your on-premises AD to Azure AD. Azure AD offers a feature called password writeback, which allows you to sync passwords reset in the cloud back to the on-premises AD. This feature is useful if you are using federation or password hash sync. When enabled, if users reset their passwords in Azure AD, these changes can be synchronized back to your local AD environment. It's worth noting that this feature requires DirSync to be up-to-date and enabled
Hi Sedat
I will be disabling it server side. If I do so would the users current passwords remain the same as they are currently using? as we do not allow Azure to overwrite on prem but if they are converting to cloud only, then there passwords should remain the same?
Kind regards