Hybrid to AADJ config sanity check

Message Topic Search Topic Options Post Reply Create New Topic Printable Version Translate Topic

   Hi,
First time using this in anger, and I have limited test laptops so I want to get the config right.

Scenario:
- Hybrid joined devices
- Company migrating to cloud-only
- Migrating HAADJ machines to AADJ
- Users are not changing - they're already synced to AAD

These are the settings I've entered into the Deployment Kit. The package is to be deployed via Intune and will be fully automatic...

Domain info
	Migrate to Azure AD
	Domain name = company vanity domain
	Azure ID file - created with Save-AzureADUser.ps1
	Provisioning package - created according to instructions
Migrating from existing domain/tenant - Yes
	NetBIOS name entered
User account options
	Lookup file - Do I need this when migrating the machine but the user is the same (same user object, same tenant)?
	Rename profile folder - I don't need to do this?
Run Options
	The package will be deployed by Intune, so will run as SYSTEM. Will this work okay? I assume I'd have to use a domain admin just if I wanted to removed the computer object from AD, which I don't care about.
Does this look right?

Author	Message Topic Search Topic Options Post Reply Create New Topic Printable Version Translate Topic
fergusstrachan Members Profile Send Private Message Find Members Posts Add to Buddy List Newbie Joined: 03 Feb 2025 Status: Offline Points: 4	Post Options Post Reply Quote fergusstrachan Report Post Thanks(0) Quote Reply Topic: Hybrid to AADJ config sanity check Posted: 03 Feb 2025 at 2:10pm
	Hi, First time using this in anger, and I have limited test laptops so I want to get the config right. Scenario: - Hybrid joined devices - Company migrating to cloud-only - Migrating HAADJ machines to AADJ - Users are not changing - they're already synced to AAD These are the settings I've entered into the Deployment Kit. The package is to be deployed via Intune and will be fully automatic... Domain info Migrate to Azure AD Domain name = company vanity domain Azure ID file - created with Save-AzureADUser.ps1 Provisioning package - created according to instructions Migrating from existing domain/tenant - Yes NetBIOS name entered User account options Lookup file - Do I need this when migrating the machine but the user is the same (same user object, same tenant)? Rename profile folder - I don't need to do this? Run Options The package will be deployed by Intune, so will run as SYSTEM. Will this work okay? I assume I'd have to use a domain admin just if I wanted to removed the computer object from AD, which I don't care about. Does this look right?

Support Members Profile Send Private Message Find Members Posts Add to Buddy List Moderator Group Joined: 09 Nov 2006 Location: United Kingdom Status: Offline Points: 1941	Post Options Post Reply Quote Support Report Post Thanks(1) Quote Reply Posted: 03 Feb 2025 at 2:18pm
	Hi, I'll answer your questions below, inline; Lookup file - Do I need this when migrating the machine but the user is the same (same user object, same tenant)? Yes - you need to map the old AD Account name to the new Azure UPN. Please see Page 77 of the User Guide for more information. Rename profile folder - I don't need to do this? It is optional, it is your choice. You can untick the rename profile folder option and the Wizard will not rename the profile folder. The package will be deployed by Intune, so will run as SYSTEM. Will this work okay? If you are running the Wizard as SYSTEM, please ensure that you tick the 'Deploy using a Desktop management tool, like SCCM, or a Group Policy' box on Step 11 of the Deployment Kit in order to configure the Wizard to run as SYSTEM. If you have any further questions, please can you email us at support@ with the migration log, config file, your lookup files and confirmation as to how you ran the Wizard on the computer when the log was generated and we'll be happy to help. Many thanks, Support.