Will Entra ID sync remove existing azure ad accounts if that account does not exist in the on premises ADDS?

Curt Eberfeld 0 Reputation points
2024-02-07T19:57:16.4133333+00:00

Ok. I am about to test my Azure (Entra ID) sync. I'm sycing to Azure from on premises ADDS. I've configured the Azure sync to target a specific OU and deselected all the rest. Will this remove any existing AZure AD accouts? Thank you.

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
18,748 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. Domooney-MSFT 2,141 Reputation points Microsoft Employee
    2024-02-08T15:22:43.46+00:00

    Hi @Curt Eberfeld

    Thank you for posting your query on Microsoft Q&A!

    If you have already sync'd users / devices from some OUs, and then you deselect them, it will delete these objects, or in the case of a user, it will "Soft delete" them. If the users have never been in scope for sync then there will be no change.

    To ensure you don't lock yourself out of your tenant be sure to have a break glass global admin account just in case your admin user is deleted by the sync service.

    Let me know if you have any further issues or queries and I would be happy to help!

    Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

    0 comments No comments