Smooth Google migration

Migrate from Google Drive to M365 the right way

Learn more
Search
Follow us
9
 min read
Migration

Entra ID migration re-runs: What they cost and what to look for in an identity migration tool

By 
ShareGate Team
Published on 
June 17, 2016
No items found.

Master Hacks: Migrate like a pro

Check out our video series to help you turn migration projects into masterpieces!

Watch now

Table of contents

Text Link

TL;DR: Not all Entra ID migration tools handle re-runs the same way. Some charge per user, so adding new users to scope or re-adding a removed user costs more. Others include unlimited re-runs under a flat annual license. Knowing the difference before you commit matters more the longer and more complex your project is.

Most identity migration projects don't run once. The org keeps changing while the migration is in progress. New users get onboarded. Security groups get restructured. A cutover slips. Compliance asks for another validation pass. Re-runs aren't edge cases. They're how real tenant-to-tenant migrations work.

The question is what they cost you.

What a re-run actually is

A re-run (also called a delta pass or incremental migration) copies only what changed since the last migration run. New users provisioned after the initial pass. Updated group memberships. License changes. Users who joined the org the week before cutover.

Without delta support, every re-run reprocesses everything from scratch. With it, the tool compares source and destination, identifies what's new or changed, and copies only that delta.

Why migrations always need more than one pass

Org changes mid-project. An acquisition can take months. During that time, HR keeps onboarding, departments restructure, security groups change, and so on. Every change after the first identity migration pass is a user or group that could land incorrectly in the destination—or not at all.

Phased rollout. Most migrations run in waves. Finance in week three, engineering in week six, IT last. Each wave needs its own identity preparation pass to make sure the right users and groups exist before content migration starts.

Validation and compliance. Compliance teams want to check identity mapping before cutover. Each review cycle often surfaces something that needs correcting and that could mean another run.

Cutover slips. When the timeline moves, the identity migration has to stay current with the source tenant. Another pass.

What safe re-runs need

Not all re-runs are equal. A re-run is only safe if the tool recognizes objects it already created and updates them rather than recreating them. If a re-run creates duplicate users, you now have two accounts for the same person—one with the mailbox, one with the group memberships, neither of which is complete.

Safe re-runs need two things:

  1. Matching on a stable identifier. The tool uses UPN for users and mail nickname for groups to find what already exists and update it. Same result whether you run once or ten times.
  2. Persistent mapping decisions. If you've manually overridden an automatic match, that decision should survive the next run. Re-doing mapping work every delta pass isn't safe re-run support.

How the pricing model affects what you can do

Pricing models for identity migration tools vary. The main ones to understand when evaluating re-run costs:

  • Per user—licensing is tied to the number of users migrated. For BitTitan, removing and re-adding a user to a project consumes a new license.
  • Per migrated source account—each user account that moves consumes a license. For Quest, one license covers re-migration of the same user, but new users added to scope consume an additional license.
  • Flat annual pricing—one price covers unlimited users, unlimited data, and unlimited migration passes for the full term. For ShareGate, re-runs don't add to the cost.

The model you choose determines whether scope changes mid-project add to your bill or not. A small, clean migration that runs once might not feel the difference. A large project with multiple waves and an org that keeps changing will.

How ShareGate, BitTitan, and Quest handle re-runs

The following is drawn from publicly available information as of June 2026. Features and pricing change—confirm current details directly with each vendor before making a purchasing decision.

ShareGate Migrate ProBitTitan MigrationWiz Active DirectoryQuest On Demand Migration Active Directory
Re-runs and delta passesUnlimited re-runs at no extra cost. Run as many migration waves as your project requires, across all users and all workloads, all covered under one flat annual license.Per-user licensing. Removing and re-adding a user to a project consumes a new license.One license covers re-migration of the same user. New users added to scope consume an additional license.
Pricing modelFlat annual fee of $9,995/yr. Unlimited users, unlimited data, unlimited migration passes. Mailbox and content migration included.$6.25/user for SMB edition (up to 1,000 users). Above 1,000 users, Enterprise edition (PowerSyncPro Directory Sync) at $8.00/user or contact sales.Per migrated source account. Quote-based. No prices published on quest.com. Only user accounts consume a license—groups and contacts don't.
Pre-migration conflict detectionConflicts between source and destination identities are surfaced before execution. Review and resolve before anything moves.No dedicated pre-migration conflict review. Matching is resolved during the migration pass. Simulate Change isn't supported when Entra ID is the destination.A pre-migration Matching step pairs source and target objects and produces a matched/unmatched list to review before anything moves.

For the full comparison on scope, provisioning, workflow, and conflict detection, check out our Entra ID migration tool comparison.

What to ask before you choose

When evaluating identity migration tools on re-run support, these are the questions that matter:

  • Does re-running create duplicates? A second pass should recognize objects already created and update them, not recreate them. Ask how the tool handles matching on re-run before you commit.
  • Are mapping decisions saved between runs? Manual overrides should persist across sessions. If they don't, every delta pass means re-doing mapping work.
  • Does the tool surface conflicts before execution or during the run? Finding conflicts in a pre-migration report is different from finding them mid-migration. Know which one you're getting.
  • Is identity migration part of the core workflow or a separate product? Some tools call for a separate license and a separate project for identity. That affects both cost and how much you're coordinating between tools.

Learn more about what ShareGate's Entra ID migration can do for you.

Migration
Articles

Consolidating Entra ID tenants after an acquisition: What IT admins need to know

By 
ShareGate Team
Published 
June 18, 2026
Watch now
Migration
Articles

Comparing Entra ID migration tools for your tenant-to-tenant project

By 
ShareGate Team
Published 
June 16, 2026
Watch now
Migration
Articles

Two identity migration mistakes that derail M365 tenant-to-tenant cutovers

By 
ShareGate Team
Published 
June 16, 2026
Watch now
No items found.