I was recently prompted about a Directory Sync error witting Microsoft 365 Admin Center. The user account had the message “We detected a duplicate UserPrincipalName conflict on the value user@domain.com. All attribute values need to be unique across objects. To resolve this conflict, first determine which object should be using the conflicting value. Then, update or remove the conflicting value from the other object(s).” A little research revealed the account had been created, deleted, and then recreated in a short period of time. I suspect directory synchronization may have occurred at some point between the creation and deletion resulting in the error.
The solution wasn’t straight forward. Some resources indicated recreating the user would resolve the issue but this wasn’t an option. I ended up modifying the UserPrincipalName, performing an Azure Active Directory Sync, changing the UserPrincialName back to it’s original value, and then performing another sync to resolve the Sync conflict.
Start-ADSyncSyncCycle -PolicyType Delta
View Comments
So i have tried this and it does take the sync error away but when i change it back the sync issue comes back again
Thank you! After trying various complicated but frustrating solutions, none of it worked till I read your article. So simple!
No problem. Thanks for stopping by. :)