How do I resolve Sync issue between Azure Active Directory and Exchange Online?

Question

How do I resolve Sync issue between Azure Active Directory and Exchange Online?

Matthew Beaso 10

Hi all,

I have a few users on our O365 exchange, whose primary email address have somehow picked up the suffix "@companydomain.onmicrosoft.com" .

When I tried changing the primary email back to "@companydomain.com" I encounter the following error:
User's image

I have so far done the following:

Checked with our on-premise AD to confirm correct user email was typed in.
Re-run Azure AD Connect to refresh domain schema (successful without any errors)

Appreciate your help in resolving this issue.

Thanks.

Matt.

Kael Yao 37,746 Reputation points Moderator

2024-02-12T02:22:40.8+00:00

Hi @Matthew Beaso

This is the expected behavior that objects synced from on-premises can only be managed in on-premises.

Below is a similar thread for your reference:

Unable to update the specified properties for on-premises mastered Directory Sync objects

Besides, if you are having other kinds of sync issues between Azure AD and Exchange Online, please create a service request in Microsoft 365 admin center to contact support to have them check in backend.
Matthew Beaso 10 Reputation points

2024-02-12T02:33:19.9333333+00:00

Hi @Kael Yao , thanks for clarifying this and noted. I could not locate this email suffix on our on-premises AD to change it. Office 365 Exchange would not allow me to swap between the primary and secondary email aliases. Will have a look at the link provided, and if still no luck, will create a service request as advised.
Givary-MSFT 35,621 Reputation points Microsoft Employee Moderator

2024-02-12T03:53:14.94+00:00

@Matthew Beaso Just checking in to see if below information was helpful. If you have any further updates on this issue, please feel free to post back. Please remember to "Accept Answer" if answer helped, so that others in the community facing similar issues can easily find the solution.
James Hamil 27,211 Reputation points Microsoft Employee Moderator

2024-03-01T21:11:11.49+00:00

Hi @Matthew Beaso , did you need any more help with this question? If not could you please mark "Accept Answer" on the appropriate answer so other users can reference it?

Thank you,

James

1 answer

Your answer

Kael Yao 37,746 Reputation points Moderator

2024-02-12T02:22:40.8+00:00

Hi @Matthew Beaso

This is the expected behavior that objects synced from on-premises can only be managed in on-premises.

Below is a similar thread for your reference:

Unable to update the specified properties for on-premises mastered Directory Sync objects

Besides, if you are having other kinds of sync issues between Azure AD and Exchange Online, please create a service request in Microsoft 365 admin center to contact support to have them check in backend.
Matthew Beaso 10 Reputation points

2024-02-12T02:33:19.9333333+00:00

Hi @Kael Yao , thanks for clarifying this and noted. I could not locate this email suffix on our on-premises AD to change it. Office 365 Exchange would not allow me to swap between the primary and secondary email aliases. Will have a look at the link provided, and if still no luck, will create a service request as advised.
Givary-MSFT 35,621 Reputation points Microsoft Employee Moderator

2024-02-12T03:53:14.94+00:00

@Matthew Beaso Just checking in to see if below information was helpful. If you have any further updates on this issue, please feel free to post back. Please remember to "Accept Answer" if answer helped, so that others in the community facing similar issues can easily find the solution.
James Hamil 27,211 Reputation points Microsoft Employee Moderator

2024-03-01T21:11:11.49+00:00

Hi @Matthew Beaso , did you need any more help with this question? If not could you please mark "Accept Answer" on the appropriate answer so other users can reference it?

Thank you,

James

Answer 1

Vasil Michev 119.5K MVP Volunteer Moderator

You cannot make changes against objects synchronized from AD, so the above is the expected behavior. That said, there is a workaround that might work in your scenario, if all you need to change is to update the primary SMTP address. Try the following:

Set-Mailbox ******@domain.com -WindowsEmailAddress ******@domain.com

This cmdlet should work even for synced users and will overwrite the current Primary SMTP value (while preserving the old value as additional alias, so there is no concern of potential email loss). However, this is not an officially supported method and any changes you make can be eventually overridden by AAD Connect/sync, so also make sure the on-premises value is updated.

JamesTran-MSFT 36,906 Reputation points Microsoft Employee Moderator

2024-02-23T19:27:27.9766667+00:00

@Matthew Beaso

I just wanted to check in and see if you had any other questions or if you were able to resolve this issue?

If you have any other questions, please let me know. Thank you for your time and patience throughout this issue.

If the information helped address your question, please Accept the answer. This will help us and also improve searchability for others in the community who might be researching similar information.

Share via

How do I resolve Sync issue between Azure Active Directory and Exchange Online?

1 answer

Your answer