Azure AD Connect choose password source (multiple domains with the same account in it)

asked 2021-05-04T11:27:48.057+00:00
Jarod Schilke 1 Reputation point

Hi,

So I installed Azure AD Connect in our local infrastructure and synced our both domains to it. Most accounts there have the same name as their pardon in the other domain. I configured the sync this way, that these two accounts are getting combined (we only use the azure ad for a centralized teams managment, not for any kind of mail stuff or so)

So, where and how can i decide for the individual account, where the Azure AD takes the password from (the domain accounts have different passwords)

Thanks in advance!

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
12,578 questions
No comments
{count} votes

1 answer

Sort by: Most helpful
  1. answered 2021-05-04T21:24:54.28+00:00
    Marilee Turscak-MSFT 20,406 Reputation points Microsoft Employee

    Are you saying that you have two on-premises directories or two Azure directories? You won't be able to have the same user in multiple directories as this is not a supported topology. https://learn.microsoft.com/en-us/azure/active-directory/hybrid/plan-connect-topologies

    You can only achieve this if you have separate Azure AD connects with mutually exclusive sets of objects synchronized to Azure AD. For reference, see Each object only once in an Azure AD tenant documentation for details.

    As for the password source, it will be on-premises but you can also configure password writeback.