25,204 questions
Hi @Don Shappelle ,
Have you cheked that all requirement steps have been done?
No sign on options for domain users synced with AD Connect after changing from federated to managed domain
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(115.19999999999999, 41%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDS%3C/text%3E%3C/svg%3E)
Don Shappelle
11
Reputation points
Hi:
I had the hybrid configuration working fine, with certain OUs syncing, and my users, computers, and groups all proper. Password hash sync was working and my domain users were syncing to azure ad without issue.
Then, I converted to federated domain with ADFS (I should not have) while testing in my lab. I switched back to managed but now my domain users, when attempting to access cloud resources, are given no sign options, only a logon screen after entering UPN that says "Choose a way to sign in" which is blank.
Sync is still working because I created a new user in the synced OU and ran the sync successfully, with the user account visible in Azure AD. However, attempts to use the account to auth to something like AVD, for example, result in the empty "Choose a way to sign in" screen.
What am I missing to get the password (and eventual MFA requirement) back for these user accounts? Accounts I created in the cloud only are fine.
Microsoft Security | Microsoft Entra | Microsoft Entra ID
2 answers
Sort by: Most helpful
-
T. Kujala 8,766 Reputation points2022-07-03T02:03:00.723+00:00 -
Don Shappelle 11 Reputation points
2022-07-03T15:29:35.107+00:00 It was simply a matter of waiting. After ~15 minutes, authentication options became available.
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(217.60000000000002, 59%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBR%3C/text%3E%3C/svg%3E)
Bourgue Romain 0 Reputation points2024-03-15T07:13:29.5933333+00:00 Same here. It actually started working after the next account and password sync from AD Connect (every 30 min by default) ; it can be forced but we just waited and it arrived.
Sign in to comment -
-
James Hamil 27,221 Reputation points Microsoft Employee Moderator2022-07-05T19:25:50.447+00:00 Hi @ DonShappelle-7845 , following up on your reply I wanted to post some more details here. After changing settings or syncing it usually takes up to an hour for everything to propagate. In the event that nothing updates within an hour usually means something is broken but yours isn't!
If this answer helped you please mark it as "Verified" so other users can reference it.
Thank you,
James