Azure AD Connect choose password source (multiple domains with the same account in it)

Jarod Schilke 1 Reputation point
2021-05-04T11:27:48.057+00:00

Hi,

So I installed Azure AD Connect in our local infrastructure and synced our both domains to it. Most accounts there have the same name as their pardon in the other domain. I configured the sync this way, that these two accounts are getting combined (we only use the azure ad for a centralized teams managment, not for any kind of mail stuff or so)

So, where and how can i decide for the individual account, where the Azure AD takes the password from (the domain accounts have different passwords)

Thanks in advance!

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
18,626 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. Marilee Turscak-MSFT 32,541 Reputation points Microsoft Employee
    2021-05-04T21:24:54.28+00:00

    Are you saying that you have two on-premises directories or two Azure directories? You won't be able to have the same user in multiple directories as this is not a supported topology. https://learn.microsoft.com/en-us/azure/active-directory/hybrid/plan-connect-topologies

    You can only achieve this if you have separate Azure AD connects with mutually exclusive sets of objects synchronized to Azure AD. For reference, see Each object only once in an Azure AD tenant documentation for details.

    As for the password source, it will be on-premises but you can also configure password writeback.