Duplicate user accounts after connecting Entra domain and on-prem domain.

I connected my local AD domain as well as my Entra domain in Adaxes, however I am now seeing duplicate user accounts, one under our local AD and the other from Entra. There is only 1 unique domain.

Is there a way to combine these users on a specific attribute? Email, Employee ID, etc? These accounts are already being synchronized via Azure AD Connect, and it's confusing determining which user is in which location when making updates.

by (50 points)

1 Answer

by (309k points)
Best answer
0 votes

Hello,

They are not duplicate accounts. It is just that synchronized user accounts have the same property values in on-premises AD and Microsoft Entra. The behavior is by design. It is not related to Adaxes and comes from Microsoft. As an option, you can disable displaying synchronized accounts. In this case, you will not see the Entra accounts synchronized with on-premises AD. To do so:

  1. Launch Adaxes Administration console.
  2. In the Console Tree, expand the Adaxes service node.
  3. Expand Managed Domains.
  4. Right-click your Microsoft Entra domain, and in the context menu click Properties.
  5. Activate the Synchronized Objects tab.
  6. Clear the Display objects synchronized with on-prem domains managed by Adaxes checkbox. image.png
  7. Click OK.
by (50 points)
0

Thanks for the quick answer! I went through the steps above and I have verified only the originating account (either on-prem or Entra) is visible, and the synchronized account is no longer appearing in search results or user counts.

I still have access to any M365 groups, and Entra users that have written back to on-prem still appear under the Entra domain as expected. Everything appears to be working properly now.

Thanks again!

Related questions

Adaxes support removing on-prem exchange while still having on-prem AD and Entra Id Connect Sync

I am trying to get a better understanding of how all this works, so forgive me if some of these questions don't make sense. We are trying to remove our final Exchange On ... to the cloud, then I would need to keep our last on-prem exchange server running?

asked Jan 9, 2025 by emeisner (210 points)
0 votes
1 answer
Is it on-prem? And is there a default report to see all changes and after-hour changes.

Topic question, we are looking into AD Auditing and I would like to know if this solution is on-prem. And I would like to know if there is a built in report to see ... to access folders they do not have permissions to, is this something I can do with Adaxes?

asked Jun 10, 2021 by anthonysmills (20 points)
0 votes
1 answer
Add value to custom attribute to both an on prem AD object as well as their entra object

Can you let me know how to simultaneously add a value to a custom attribute to both the AD and Entra user objects? The graphical interface update only does it to the AD user object. Thanks.

asked Mar 25, 2025 by msheppard (880 points)
0 votes
1 answer
Entra domain top-level nodes show as N/A after restoring from a backup

This issue can be encountered when restoring configuration from backups created in Adaxes 2025.1 Update 5 (build 3.17.24628) or earlier. Symptoms After restoring the configuration, ... top-level node. If any do, replace it with the appropriate Entra domain.

asked Apr 21 by Adaxes (660 points)
0 votes
0 answers
Entra ID Only Accounts, Creating New User, Set Delay for Custom Attributes

Hello, We are using Adaxes to manage our Cloud Only infrastructure, and one of the problems we have run into is when creating a NEW user, we need to fill out some ... and then write the data meant for the Custom Attributes field when the mailbox is ready?

asked Jan 29, 2025 by AvenuesRecovery (110 points)
0 votes
1 answer