![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 8%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
639 questions
Hi faraz imran,
Thank you for posting in the Microsoft Community Forums.
- Check Account Synchronization Settings
First, ensure that your Azure AD Connect is configured correctly so that changes in Active Directory are properly synchronized to Azure AD. check the following settings:
Sync rules: see if there are custom sync rules for this specific account that may override the default disabled behavior.
Connection filters: verify that no filters prevent synchronization for this account.
Attribute Mapping: Check the attribute mapping settings to make sure that the account status (e.g. enabled/disabled) is mapped correctly.
- Troubleshooting automatic re-enablement issues
You can consider the following troubleshooting steps for this account being automatically re-enabled in Azure AD:
Conditional Access Policies: check if there are any conditional access policies or automation scripts that may automatically re-enable the account after detecting that it has been disabled.
Azure AD automation: check for automation tasks in Azure AD, such as Azure Automation Runbooks or Azure Logic Apps, that may trigger the re-enabling of the account.
Third-party tools: If you use third-party identity management or synchronization tools, check whether these tools may interfere with the account status.
- Check account status and history
Azure AD Portal: Check the status and history of the account in the Azure AD Portal for any unusual actions or events.
Audit Logs: Check the audit logs for Azure AD to get detailed information about changes to the account status.
Best regards
Neuvi