This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(92.8, 91%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ES%3C/text%3E%3C/svg%3E)
Hi All
I am currently implementing a password hash sync for my local AD and Azure AD. This was actually a half done project by my previous guy who had left and I am picking it up to continue it. The first thing I did was to uninstalled the old Azure AD connect from another server which i assume should have remove any old connection or configuration setting and I set up another one on a different server with all the new sync configuration. I created a new OU for sync testing and move a few user over.
I run into some duplicate issue which I was able to clear beside the one such as in the attachment. I figure out that the account must have been either created first in Azure AD or already synced to an old domain server by the previous guy because the username in that problematic account that synced with the active directory is definitely incorrect from what I see inside the AD server. I need to at least know is what i suspect is correct
To make the matter more complex, the company were a cloud users first and then the local AD start appearing after that. They have also migrated from a old AD domain to a new AD domain
alt text
HI GK87
Thank you for the advise. I will amend out the sensitive detail.
What is the UPN for the affected user in onprem AD? What UPN suffix it has? I think you have wrong UPN suffix for this user. This user account should have the justcoglobal.com UPN suffix. Then start initial sync (Start-adsyncsynccycle -policytype initial)
Hi Lukas
TH UPN in the local AD is definitely correct, which make me even more puzzle. I was wonder if it has already been sync to a previous old domain name instead?