question

ArronPatton-3649 avatar image
0 Votes"
ArronPatton-3649 asked ArronPatton-3649 edited

Hybrid AAD - Setting a user's email address different than the User Principal Name

I'm using Azure AD Connect to sync my on prem AD users to AAD. I am using a synchronization rule that maps the mail field from AD to AAD's mail field. In the metaverse, the object is showing to have the correct email address however in the AAD portal, it is incorrect on active users. Oddly enough, disabled users have the correct email address.

How do I get the email address for active users to be what is showing in the metaverse? What log could I log at to see why it is not getting imported to AAD?


Thank you.

azure-ad-hybrid-identity
· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Hi @ArronPatton-3649 • I would suggest you to start with generating a Preview for one of the problematic accounts and check Export Attribute Flow, as highlighted below. Check which rule is syncing the mail attribute and inspect that rule.

Read more: https://docs.microsoft.com/en-us/azure/active-directory/hybrid/tshoot-connect-object-not-syncing

136138-image.png

0 Votes 0 ·
image.png (75.7 KiB)

1 Answer

ArronPatton-3649 avatar image
0 Votes"
ArronPatton-3649 answered ArronPatton-3649 edited

@amanpreetsingh-msft,

Thank you for your response. In the preview the rule is the only applying to the mail attribute and the email is showing as it should. Additionally, the metaverse is showing the correct email for the object as well as the two connector spaces. It seems that for some reason Azure AD is not getting the correct email or refuses to import it but there is no log as to why that I have been able to find.

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.