< Blog

Azure AD Sync Identity Synchronization Error

By Garth Jones

After setting up Azure Active Directory (Azure AD), I started to receive emails from the Microsoft Online Services Team about a synchronization error with two of my test accounts:

· Morgan Jones

· Morgan G Jones

The email looked something like this:

Hello Garth,
You can troubleshoot this issue by running the
Directory Synchronization troubleshooter on the server that has Azure Active Directory identity synchronization tools installed.

The Identity synchronization tool batch run was completed on Sunday, 02 August 2015 13:35:58 GMT for directory Enhansoft.
The following errors occurred during synchronization:

Identity

Error Description

sourceAnchor

Morganj@enhansoft.com

Unable to update this object because the following attributes associated with this object have values that may already be associated with another object in your local directory services: [UserPrincipalName Morganj@enhansoft.com;]. Correct or remove the duplicate values in your local directory. Please refer to http://support.microsoft.com/kb/2647098 for more information on identifying objects with duplicate attribute values.

<string>

morgan@enhansoft.com

Unable to update this object because the following attributes associated with this object have values that may already be associated with another object in your local directory services: [ProxyAddresses SMTP: morganj@enhansoft.com;]. Correct or remove the duplicate values in your local directory. Please refer to http://support.microsoft.com/kb/2647098 for more information on identifying objects with duplicate attribute values.

<string>

Tracking ID: c8244bed-79b0-4b4c-952f-9eff7bc8d2b3

Thank you,
The Azure Active Directory Team

It seems that since both account names were similar, despite having different email addresses, Azure AD thought they were sharing the same email address.

To solve this problem, I set the proxyAddresses attribute for both accounts to their respective email addresses.

These are the steps that I took:

Azure AD Error - Advanced Features

Open Active Directory Users and Computers (ADUC). In the View menu, select Advanced Features.

Azure AD Error - proxyAddresses

Locate the user account and view the properties. Next, in the Attribute Editor tab, locate and select the proxyAddresses attribute. Click Edit.

Azure AD Error - Correct Email Address 

Enter the correct email address and click OK twice to return to ADUC. Repeat these steps for each affected user account. In my case, I had two accounts.

With that last step competed, at the next Azure AD sync, you will stop receiving emails about any synchronizing issues.