Problem:
When syncing a user through Office 365 AD sync, duplicate users are created
Solution:
(h/t DUO support)
- In Duo Single Sign-On settings, set Username Normalization to None.
- In Directory Sync settings, ensure that Normalize Usernames Before Importing is unchecked. This setting was already confirmed to be unchecked.
Note:
Since users imported with only their usernames (without the full email format) do not have complete information, Duo Support advised deleting these users. All users were already enrolled with their full email (UPN), and their phone numbers and Duo Mobile had already been activated.