Adaxes

Duplicate user accounts after connecting Entra domain and on-prem domain.

0 votes

I connected my local AD domain as well as my Entra domain in Adaxes, however I am now seeing duplicate user accounts, one under our local AD and the other from Entra. There is only 1 unique domain.

Is there a way to combine these users on a specific attribute? Email, Employee ID, etc? These accounts are already being synchronized via Azure AD Connect, and it's confusing determining which user is in which location when making updates.

by (50 points)

1 Answer

0 votes
by (288k points)
selected by
Best answer

Hello,

They are not duplicate accounts. It is just that synchronized user accounts have the same property values in on-premises AD and Microsoft Entra. The behavior is by design. It is not related to Adaxes and comes from Microsoft. As an option, you can disable displaying synchronized accounts. In this case, you will not see the Entra accounts synchronized with on-premises AD. To do so:

  1. Launch Adaxes Administration console.
  2. In the Console Tree, expand the Adaxes service node.
  3. Expand Managed Domains.
  4. Right-click your Microsoft Entra domain, and in the context menu click Properties.
  5. Activate the Synchronized Objects tab.
  6. Clear the Display objects synchronized with on-prem domains managed by Adaxes checkbox. image.png
  7. Click OK.
0

Thanks for the quick answer! I went through the steps above and I have verified only the originating account (either on-prem or Entra) is visible, and the synchronized account is no longer appearing in search results or user counts.

I still have access to any M365 groups, and Entra users that have written back to on-prem still appear under the Entra domain as expected. Everything appears to be working properly now.

Thanks again!

by (50 points)

Related questions

0 votes
1 answer
Is it on-prem? And is there a default report to see all changes and after-hour changes.

Topic question, we are looking into AD Auditing and I would like to know if this solution is on-prem. And I would like to know if there is a built in report to see ... to access folders they do not have permissions to, is this something I can do with Adaxes?

asked Jun 10, 2021 by anthonysmills (20 points)
0 votes
1 answer
Using Powershell Module for Cloud and On-Prem

Hi all, I got a script that works, but is kinda finicky: $memberListProperty = "adm-CustomAttributeTextMultiValue1" try { $records = $Context.TargetObject.GetEx($memberListProperty) } ... = "fraisalan.ch" } Thank you for your help! Best regards Benjamin

asked Oct 17 by basshunter98 (20 points)
0 votes
1 answer
Exchange Online and On-Prem mailboxes

Hi team, we see sometimes the following behavior: Changing a user mailbox to shared, is just moving on-prem mailbox of this user to shared. Online mailbox seems not to ... . What will happen with online mailbox? Will Adaxes generate a remote mailbox at all?

asked Oct 13, 2023 by wintec01 (1.5k points)
0 votes
1 answer
Script create remote mailbox and on prem mailbox

Hello, I have a sheduled task running. This task checks if a user is a member of a Licensed Office 365 Group with exchange online. If the user does not have an ... the on prem exchange mailbox and the exchange online mailbox? Thanks if you have an idea!

asked Feb 24, 2023 by fabian.p (380 points)
0 votes
1 answer
How it works if I have multiple accounts in one domain, and other accounts in others domains managed by Adaxes ?

Hello, How it works if I have multiple accounts in one domain, and other accounts in others domains managed by Adaxes ? Thank you. Regards. Pierre

asked Jun 9, 2021 by pierre.saucourt (40 points)
3,542 questions
3,233 answers
8,227 comments
547,808 users