Trending on MSDN: Is it possible to write back users from Azure AD to an on-premises Active Directory?

Question

question

MarileeTurscak-MSFT asked Oct 29, '19 JimmySthl-2346 edited Aug 30, '20

Trending on MSDN: Is it possible to write back users from Azure AD to an on-premises Active Directory?

Is there a way to write-back users from Azure Active Directory to Active Directory on-premises?

Sourced from MSDN

azure-active-directory azure-ad-connect azure-ad-hybrid-identity

5 |1600 characters needed characters left characters exceeded

Attachments: Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Answer 1 · 2019-10-29T23:14:34Z

ryanchill answered Oct 29, '19 Grmacjon-MSFT edited Oct 30, '19

User writeback is not currently supported. The product group is working on adding this capability in the future. Right now it is possible to write back passwords and groups, but not users.

Source from MSDN

5 |1600 characters needed characters left characters exceeded

Attachments: Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Answer 2 · 2020-08-30T01:28:51.97Z

JimmySthl-2346 answered Aug 30, '20 JimmySthl-2346 edited Aug 30, '20

However you build around it with a topology like this if you need to provision user in azure for hybrid env

Azure AD -> Azure AD Domain Services -> forest trust -> On prem ADDS -> Azure AD connect -> Azure AD

That would solve your problem if I understand you correct

https://docs.microsoft.com/en-us/azure/architecture/reference-architectures/identity/adds-forest
https://docs.microsoft.com/en-us/azure/active-directory-domain-services/synchronization

5 |1600 characters needed characters left characters exceeded

Attachments: Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

question