![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(262.40000000000003, 83%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EFU%3C/text%3E%3C/svg%3E)
Active Directory
A set of directory-based technologies included in Windows Server.
6,821 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(44.800000000000004, 78%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESG%3C/text%3E%3C/svg%3E)
@Fazal Ur Rehman Shah | فضل الرحمن شاة
Thank you for your time on the call today.
As per our troubleshooting you had an account in on-premises which was synced to Azure with new identity. Old account in Azure was still present and it was orphan.
We had to merge your on-premises account with your orphan account in Azure.
We moved the user to non-sync OU in on-premises so that Entra sync deletes the account from Azure AD.
Post that we removed all the admin role that were assigned to your orphan account in Azure.
Now we moved back your on-premises account to synced scope OU. We ran sync and now your on-premises account got linked with your orphan account in Azure AD.
Now you are able to login to Azure portal with your on-premises account which is federated with ADFS.
Please "Accept the answer" if the information helped you. This will help us and others in the community as well.