question

AndreMarsaioli-5104 avatar image
0 Votes"
AndreMarsaioli-5104 asked AndreMarsaioli-5104 answered

Ad Connect sync group type security onprem with existing group AAD

Hi,

it is possible do it with rule editor?
Which attributes my i choice and how do it?

Regrads

azure-active-directoryazure-ad-connect
5 |1600 characters needed characters left characters exceeded
Toggle Comment visibility. Current Visibility: Visible to all users

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

2 Answers

michev avatar image
0 Votes"
michev answered

If the group is mail-enabled, you should be able to soft-match it against the primary SMTP address value. Otherwise it's not possible afaik.

https://docs.microsoft.com/en-us/azure/active-directory/hybrid/how-to-connect-install-existing-tenant#other-objects-than-users

5 |1600 characters needed characters left characters exceeded
Toggle Comment visibility. Current Visibility: Visible to all users

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

AndreMarsaioli-5104 avatar image
0 Votes"
AndreMarsaioli-5104 answered AndreMarsaioli-5104 edited

Hi Michev thanks for reply.

But in Azure Portal i don't have this option "email-enable" only in admin center ms365.


6671-aadgroup.png



aadgroup.png (15.1 KiB)
· 3
5 |1600 characters needed characters left characters exceeded
Toggle Comment visibility. Current Visibility: Visible to all users

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

michev avatar image michev ·

Nobody said that's an option :) What I meant was if the group was created as mail-enabled one, sorry if I was being unclear. And no, there isn't any way to mail-enable a group in O365.

1 Vote 1 ·
AndreMarsaioli-5104 avatar image AndreMarsaioli-5104 michev ·

No problem, my apologies, my questions weren't clear as well

I guess to control my security groups only in Portal Azure, to automate i'll need a script on my local server ad connect with create a group in AD on-prem, move to the UO sync and delete the group was created on Azure.

0 Votes 0 ·
AndreMarsaioli-5104 avatar image AndreMarsaioli-5104 michev ·

With support of same sample codes in websites, and Docs Microsoft.

Script




0 Votes 0 ·