Re-Synchronization with Azure

Yoandi Jimenez 0 Reputation points
2024-08-29T19:21:22.8333333+00:00

I currently have an Active Directory server that is synchronized with Azure AD. I need to switch to a new Active Directory server and migrate all users from the old server to the new one. Afterward, I plan to re-establish synchronization with Azure AD on the new server. However, I'm concerned that the new synchronization might cause conflicts since the users on the new server will likely have different ObjectGUIDs.

Can you recommend any tools for migrating users or suggest an alternative approach?

Will there be any issues when re-synchronizing from a new server?

Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
6,766 questions
Windows Server Migration
Windows Server Migration
Windows Server: A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.Migration: The process of making existing applications and data work on a different computer or operating system.
437 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. Marcin Policht 30,265 Reputation points MVP
    2024-08-29T21:32:02.4266667+00:00

    Assuming that you're referring to an AD forest migration, then use the following approach:

    • prior to the migration, set the value of the ms-DS-ConsistencyGuid attribute of every security principal you intend to migrate to the value of the objectGuid attribute
    • migrate
    • re-establish Entra Connect but set the source anchor attribute to ms-DS-ConsistencyGuid

    More at https://zcusa.951200.xyz/en-us/entra/identity/hybrid/connect/plan-connect-design-concepts#using-ms-ds-consistencyguid-as-sourceanchor


    If the above response helps answer your question, remember to "Accept Answer" so that others in the community facing similar issues can easily find the solution. Your contribution is highly appreciated.

    hth

    Marcin


Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.