|
Hi,
What does whoami report when you are logged on as the target account?
I expect it will also be ADDOMAIN\user ?
Was there previously a sync in place between AD and Azure?
This isn't related to the Wizard, you will see the same situation if this user logs on to a computer that was not migrated by the Wizard.
When logging on to the new Azure AD account, you would expect the user name to be azuread\username, not ADdomain\username. If it is ADdomain\username there are known Microsoft issues around this, see https://github.com/MicrosoftDocs/azure-docs/issues/38048" rel="nofollow - https://github.com/MicrosoftDocs/azure-docs/issues/38048
“After migrating a user from an Active Directory Synced user to a Azure AD cloud user; then Azure AD Joining a device; then signing in with that user and running the command whoami in cmd, I get domain/user. When I create a new user (cloud native) in Azure AD and preform the same azure ad join process as above, I run the whoami in cmd, and I get AzureAD/user.”
“This a known gap, that we're reviewing. Even though you have migrated the user from AD to Azure AD, the onprem SamAccountName is still intact on the user object, among other on-prem AD attributes. As a result, Azure AD picks those details and shows domain/user instead of AzureAD/user. This attribute cannot be modified or cleared through Graph APIs at this point, so there's no way to change the behavior”
We have seen a couple of customers report this, and their feedback from their investigations was that it occurs when AD Connect is being used to sync a user. Their resolution was that they didn't sync users that had AAD/Intune only machines. Information on the post also shows that some people have contacted Microsoft to arrange for the SAM account attributes to be removed from the Azure user objects.
I hope this helps and answers your questions, if you have any further questions, please email us at support@
Many thanks,
Support.
|