question

JordanAlway-2586 avatar image
JordanAlway-2586 asked ·

Will Active Directory Connect Delete Cloud Accounts?

Hello,

My company is creating a virtual environment within the Azure cloud with two VMs running Active Directory. These are brand new VMs with no Users or Groups, or Computers created (other than the admin account).

We have been using Azure AD to authenticate user's access to applications and email so we already have a good number of users created.


My question is this:
Will the existing user accounts within Azure AD be disrupted when we use Active Directory Connect to synch these two environments? I'm concerned that the blank domain controllers will wipe our existing Azure AD profiles.

Any insight into this concern would be greatly appreciated.

Thanks,

Jordan
System Administrator

azure-active-directorywindows-active-directoryazure-ad-connect
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

michev avatar image
michev answered ·

It will not delete any objects. However, it might "match" existing users objects with On-Prem ones as detailed here: https://support.microsoft.com/en-us/help/2641663/use-smtp-matching-to-match-on-premises-user-accounts-to-office-365

Share
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

JordanAlway-2586 avatar image
JordanAlway-2586 answered ·

Thank you michev for that information.

Can anyone else weigh in on this concern? I simply want to be certain before moving forward. I don't want to disrupt a production environment.

1 comment Share
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Michev is correct. AD Connect does not have user writeback functionality from Azure to on-premises, so user accounts in Azure will not be deleted. As Michev mentioned though, a potential complication could be duplicate Object IDs. If you have one account in Azure and one account on premises with the same user info but different object IDs, then there will be conflicts.

0 Votes 0 · ·