Forum Discussion

bfry2461's avatar
bfry2461
Brass Contributor
Oct 20, 2023

Can you Sync O365 Account to AD

We had to rebuild our domain controllers after an incident. We have AAD Sync working.  Can we pull the accounts from Office 365 back into Active Directory?

  • LainRobertson's avatar
    LainRobertson
    Silver Contributor

    bfry2461 

     

    No, neither Connect Sync nor Cloud Sync will do this for you.

     

    While some attributes are written back in the direction of Azure Active Directory to Active Directory, account creation is not a provided outcome.

     

    You would need to look to another approach such as scripting to obtain the data from Azure Active Directory and use that data as the basis for creating the on-premise Active Directory accounts.

     

    Assuming you do this properly and the on-premise anchor attribute matches the Azure Active Directory immutableid of the relevant users, Connect/Cloud Sync will join them together again, but it's important to note that choosing this path then means that for any joined accounts, Active Directory (not Azure Active Directory) becomes the "master account".

     

    Cheers,

    Lain

Resources