Email address in Entra

Copper Contributor

I added email addresses on accounts in AD. These were privileged accounts with no O365 licenses. Their non-privileged email was added. Azure does not like this as MFA couldn't be setup. I removed it from the privileged accounts, but I notice it is still showing up in Entra. Even a GA could not modify the property (email). Is this locked because it is being sync'd from on premise but clearing the on-premise mail attribute failed to sync?

3 Replies


I would try a delta sync to ensure that the changes synced on both sides, also be sure that the email attribute is not excluded in AD Connect configuration.

It replicated up when it was added on-premises. I will kick off a delta sync.



That didn't work. Apparently, it won't sync a null value.