Jul 07 2020
- last edited on
Jul 24 2020
-- Updating from my previous message --
I managed to get syncing attempts happening by removing the group filter.
As my test group, I made a special OU for the test user and am applying the sync only to this OU.
I am now a bit further, but stumped again.
Both AD accounts and AAD accounts are pre-existing:
AD Account: email@example.com (actually a .local account, but UPN added to AD)
AAD Account: firstname.lastname@example.org
When the sync happens, I am getting "Error: Attribute Value Must Be Unique"
Looking deeper at the error, it is mentioning the error is in relation to the ProxyAddress.
I have already defined the following in AD for the j.smith user:
email (General Tab): email@example.com
Proxy Address (Attribute Editor): SMTP:firstname.lastname@example.org
this does not seem to help though. I have tested also by removing Proxy Address and still no go.
Jul 08 2020 10:48 PM
Fixed this item.
The issue was the test account (my account) was a Global Admin in AzureAD. I needed to demote the account to user account first, make the sync, and then re-enable global admin for my account.