![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(192, 60%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESC%3C/text%3E%3C/svg%3E)
2,249 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(195.2, 0%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVM%3C/text%3E%3C/svg%3E)
@scott, chae While we would love to get more information around this to be able to guide you thoroughly, from the description that you have mentioned it seems like you are trying to onboard AAD now.
If you can help us with your need like - if you just want users to synchronize to AAD or you would want to implement Azure AD Domain Services As well.
If you need some information about How Azure AD Domain Service can help you, you can read about it here.
Either way you will have to synchronize the users to AAD, you can follow this guide to see best practices and implementation guidance. If you have any questions related to AAD Connect, you might find is answered here.
Coming to the example that you mentioned :
Onpromise AD: userA@hi.com -> Azure AD: userAA@Hello .com
So lets say, If you own hello.com you can verify that domain under your AAD tenant, so that the users who are getting synchronized from your local AD has that domain.
For that, you also need to add a UPN suffix in your local AD with hello.com and change the UPN of the users to hello.com
As as per current setup, hi.com will result in changing the UPN from hi.com to the default tenant domain, something like abc.onmicrosoft.com unless you change the UPN on prem.
If the user is synchronized from on prem all users attributes are synced to the correspinding AAD account automatically, which can then be used by other services like Sharepoint or office 365. You can also read about how does other SAAS services like Sharepoint uses the user profiles of that user which gets synchronized to AAD here and implement their information
-----------------------------------------------------------------------------------------------------------------
If the suggested response helped you resolve your issue, do click on "Mark as Answer" and "Up-Vote" for the answer that helped you for benefit of the community.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(275.2, 33%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ES%3C/text%3E%3C/svg%3E)