Migrate User and Computer to Azure AD
Microsoft needs to provide a command-line option or built-in feature that allows the ability to migrate existing AD user and computer objects to Azure AD.
- Hybrid join does not stay AAD joined if you remove from AD.
- Bulk enrollment only works for OOBE (new device0 and not existing devices.
- USMT does not support AAD accounts, requires profile to be manually logged on first to create Windows Profile. There is no way to get the AAD user SID to try and pre-create profile for USMT.
There either needs to be a tool or built-in mechanism to "switch" from AD to AAD while converting the Windows Profiles so user can simply logon with thier password (still says John Doe, but now it is firstname.lastname@example.org instead of CORP\jdoe) and thier profile is intact.
Currently the only way to accomplish this is a purely manual proccess of backing up the user profile, removing from domain, logging on with local admin, joining to workplace with user account. Logging on as that user, then performing a user profile restore. Most organizations want a hands free way of performing this kind of migration, where users show up the next day and simply logon, none the wiser.