![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(25.6, 61%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKG%3C/text%3E%3C/svg%3E)
Microsoft Graph
A Microsoft programmability model that exposes REST APIs and client libraries to access data on Microsoft 365 services.
11,388 questions
Hi @Karl Gardner
The kgardner3300_gmail.com#EXT#@kgardner3300gmail.onmicrosoft.com account is actually the work identity of the kgardner3300@gmail.com account.
When you create a tenant with your personal account "kgardner3300@gmail.com", your personal account will be treated as the root account of the new tenant, and it will be automatically assigned the global administrator role and work domain, and it will be a work account at this time.
Although both identities are different manifestations of your same account, Entra ID treats them as two different accounts and they have different access rights.
Therefore, the photo of your account's "personal" identity will not be synchronized to its "work" identity. You need to upload a new photo for your user's work identity in Entra ID, which is why your user has two different photos.
In summary, if you want to get the photo of your user's "personal" identity, you need to log in to the multi-tenant application using the /common endpoint. Conversely, if you want to get the photo of your user's "work" identity, you need to log in to the multi-tenant application using the /{tenant_id} endpoint.
Hope this helps.
If the reply is helpful, please click Accept Answer and kindly upvote it. If you have additional questions about this answer, please click Comment.