Domain Migration - Hybrid to AADJ config sanity check

Hybrid to AADJ config sanity check

Printed From: ForensiT
Category: ForensiT Support
Forum Name: Domain Migration
Forum Description: User Profile Wizard questions, suggestions, comments and bug reports
URL: https://forum.ForensiT.com/forum_posts.asp?TID=2580
Printed Date: 27 Mar 2026 at 12:28am
Software Version: Web Wiz Forums 12.03 - http://www.webwizforums.com

Topic: Hybrid to AADJ config sanity check

Posted By: fergusstrachan
Subject: Hybrid to AADJ config sanity check
Date Posted: 03 Feb 2025 at 2:10pm

Hi,

First time using this in anger, and I have limited test laptops so I want to get the config right.

Scenario:

- Hybrid joined devices

- Company migrating to cloud-only

- Migrating HAADJ machines to AADJ

- Users are not changing - they're already synced to AAD

These are the settings I've entered into the Deployment Kit. The package is to be deployed via Intune and will be fully automatic...

Domain info

Migrate to Azure AD

Domain name = company vanity domain

Azure ID file - created with Save-AzureADUser.ps1

Provisioning package - created according to instructions

Migrating from existing domain/tenant - Yes

NetBIOS name entered

User account options

Lookup file - Do I need this when migrating the machine but the user is the same (same user object, same tenant)?

Rename profile folder - I don't need to do this?

Run Options

The package will be deployed by Intune, so will run as SYSTEM. Will this work okay? I assume I'd have to use a domain admin just if I wanted to removed the computer object from AD, which I don't care about.

Does this look right?

Replies:

Posted By: Support
Date Posted: 03 Feb 2025 at 2:18pm

Hi,

I'll answer your questions below, inline;

Lookup file - Do I need this when migrating the machine but the user is the same (same user object, same tenant)?

Yes - you need to map the old AD Account name to the new Azure UPN. Please see Page 77 of the User Guide for more information.

Rename profile folder - I don't need to do this?

It is optional, it is your choice. You can untick the rename profile folder option and the Wizard will not rename the profile folder.

The package will be deployed by Intune, so will run as SYSTEM. Will this work okay?

If you are running the Wizard as SYSTEM, please ensure that you tick the 'Deploy using a Desktop management tool, like SCCM, or a Group Policy' box on Step 11 of the Deployment Kit in order to configure the Wizard to run as SYSTEM.

If you have any further questions, please can you email us at support@ with the migration log, config file, your lookup files and confirmation as to how you ran the Wizard on the computer when the log was generated and we'll be happy to help.

Many thanks,

Support.