Hello @NEXT2I SUPPORT
Thank you for posting this in Microsoft Q&A.
I understand you want to know if it’s possible to sync users from Entra ID to Local Domain Controller.
It's not possible to directly sync Microsoft Entra ID (formerly Azure AD) users to an on-premises Domain Controller in the way you describe. Typically, synchronization flows in the opposite direction: from on-premises Active Directory (AD) to Microsoft Entra ID using tools like Azure AD Connect.
If you're looking to have your Entra ID users available on a new Domain Controller, you'd generally do the following:
- Azure AD Domain Services (AAD DS): If you need your cloud-only users (those that exist only in Entra ID and not in on-prem AD) to be available in a domain-joined environment, you can deploy Azure AD Domain Services. AAD DS provides domain services (like domain join, group policy, etc.) in the cloud and allows Entra ID users to authenticate to those services. However, this does not sync users back to an on-prem Domain Controller.
This is not supported natively if you want to sync cloud-only users from Entra ID to on-prem AD. If that's your goal, you must script or manually create those users in your on-premises AD.
Thanks.
Siri.