Feb 14 2024 12:06 PM
I added email addresses on accounts in AD. These were privileged accounts with no O365 licenses. Their non-privileged email was added. Azure does not like this as MFA couldn't be setup. I removed it from the privileged accounts, but I notice it is still showing up in Entra. Even a GA could not modify the property (email). Is this locked because it is being sync'd from on premise but clearing the on-premise mail attribute failed to sync?
Feb 14 2024 12:19 PM
I would try a delta sync to ensure that the changes synced on both sides, also be sure that the email attribute is not excluded in AD Connect configuration.
Feb 14 2024 12:27 PM
Feb 20 2024 06:54 AM