Hello James,
Thank you for the reply. Apologies because I didn't explain very well. I'm in a situation where my company has been creating two identities for users. One identity with password is in Azure, the second identity is On-premises AD.
I am looking to use On-Premises AD as the "source of authority" going forward. I have setup AADSync with Azure and was concerned about what will happen when I sync the on-premises account with Azure.
Will an On-premises account overwrite the cloud account making the password policy in azure invalid because they are no longer technically Azure accounts? My assumption is yes, but I was looking for confirmation before I start rolling this out.
I am matching UPN's from on-premises to azure so that I don't accidently create two accounts. We will also be implementing a weekend password change event and the expectation is that the user will have to sign in twice with their on-premises AD password for both the local profile and for their O365 application.
Thanks,
Tom