How to synch deleted Computer objects to Entra ID?

Question

I am using Azure AD Connect to synch both User and Computers objects from the On-premise AD DS to Entra ID licensed with Entra ID Premium P2.

I can see when the user is deleted or moved into the OU to be secluded from the Azure AD synch, the user will no longer appear in the Entra ID. However, when the computer object is deleted, the objects still exist in Entra ID, even if there are multiple duplicates of one single AD object, despite the name is already unique on-premise AD DS.

How can I make sure when I delete the OnPremise AD DS, the Entra ID computer object is also deleted?

This is for both Registered devices and Hybrid Azure AD Joined devices.

Answer 1

@EnterpriseArchitect

Thank you for posting this in Microsoft Q&A.

Usually, removing the device from sync scope for Windows 10 or newer /Server 2016 devices will delete the Microsoft Entra device. Adding it back to sync scope will place a new object in "Pending" state. A re-registration of the device is required.

Disable or delete Windows 7/8 devices in your on-premises AD first. You can't use Microsoft Entra Connect to disable or delete Windows 7/8 devices in Microsoft Entra ID. Instead, when you make the change in your on-premises, you must disable/delete in Microsoft Entra ID.

You can refer to below article for the same,

https://learn.microsoft.com/en-us/entra/identity/devices/manage-stale-devices#microsoft-entra-hybrid-joined-devices

If you are seeing multiple entries for same device in Entra ID then it is called as the stale device.

You can follow below article to remove the stale entry of the device,

https://learn.microsoft.com/en-us/entra/identity/devices/manage-stale-devices

Let me know if you have any further questions.

Please "Accept the answer" if the information helped you. This will help us and others in the community as well.