Forum Discussion
2 Domains on one Azure, Duplicated Accounts.
Good Morning all, My company has on premise AD and as the security guy, I've been looking at creating a hybrid deployment with Azure so we can start playing with things like MFA and SSO, but I've run...
You can simply add company.com upn suffix into your On premises and re run the Azure AD connect wizard.
1. Go to Onprem Domains and Services mmc and add Company.com as another suffix.
2. Change UPN suffix on each user, run a PS script to change it.
3.Rerun the Azure AD connect wizard.
Changing the UPN suffix will not affect any permission nor changes.
The other option would be simply changing UPN match with Alternative ID option using Azure AD Connect wizard. Set anothet attribute such as email. In this case you need to update this attribute to all users.
https://docs.microsoft.com/en-us/azure/active-directory/hybrid/plan-connect-userprincipalname
1. Go to Onprem Domains and Services mmc and add Company.com as another suffix.
2. Change UPN suffix on each user, run a PS script to change it.
3.Rerun the Azure AD connect wizard.
Changing the UPN suffix will not affect any permission nor changes.
The other option would be simply changing UPN match with Alternative ID option using Azure AD Connect wizard. Set anothet attribute such as email. In this case you need to update this attribute to all users.
https://docs.microsoft.com/en-us/azure/active-directory/hybrid/plan-connect-userprincipalname