This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(112.00000000000001, 48%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EML%3C/text%3E%3C/svg%3E)
I am taking our organization fully online and eliminating on-prem servers. Everything I could find on the subject (on and off Microsoft) said just to disabled Synchronization using this command: Set-ADSyncScheduler -SyncCycleEnabled $false then uninstall Entra Connect from the server (like it could be that simple)
This resulted in a slew of connection errors and notifications about the server being offline and not available. Entra Connect still has errors on the seamless single sign-on (SSSO) for the domain. I found a command that should disable SSSO but no info on whether this might have consequences: Call Enable-AzureADSSO -Enable $false
What should be my next steps to finalize this migration?
The changes you have done thus far only affect the "client" side, you need to also disable synchronization from Entra side as well. This is done via PowerShell: https://learn.microsoft.com/en-us/microsoft-365/enterprise/turn-off-directory-synchronization?view=o365-worldwide
Once you do this, any synced object will be "converted" to cloud one and you will be able to manage them directly and fully in Entra. Keep in mind it might take a while for the backend update to complete, depending on the number of objects you are syncing.
I ran the script from that page yesterday afternoon with this response:
OnPremisesSyncEnabled
False
still received two error emails today. One about synchronization errors and the other about "[servername]: Connection to Microsoft Entra ID failed due to authentication failure."
The agent has been uninstall from [servername] and the machine is off.
The Connect Sync page still shows this: