AD security group sync to Azure

John Dyson Charles 0

We have 2K+ security groups for SP2013 now migrating to SP online. our naming convention are changed for azure AD, so now we unable to sync across the groups from on-prem AD. What is the best approach ?

John Dyson Charles 0 Reputation points

2023-02-01T10:51:08.35+00:00

identities. External users are created as contacts in the AD but we target to create them as guest users in the AAD and have B2B collaboration in the Roadmap with the partners. So instead renaming the groups and syncing we can create the new AAD with new naming conventions and add the users manually. But this is kind of loads of manual task involved in identifying the groups and member and create them in the AAD. any other suggestions ?
Marilee Turscak-MSFT 33,801 Reputation points Microsoft Employee

2023-02-02T23:36:43.71+00:00

Hi John Dyson Charles,

We noticed your feedback that the answer on this thread was not helpful.

Thank you for taking time to share your feedback. Kindly let us know what we could have done better to improve the answer and make your experience better.

Since we were able to add more details to the response in the latest post and update the solution, I request that you would kindly re-take the survey for your experience on this thread.

We are here to help you and strive to make your experience better and greatly value your feedback.

Looking forward to your reply. Much appreciate your feedback!
Marilee Turscak-MSFT 33,801 Reputation points Microsoft Employee

2023-02-07T00:18:32.22+00:00

Hi John Dyson Charles,

Just checking to see if you were able to review the additional steps for completing this process? We noticed your feedback that the answer on this thread was not helpful.

Since we were able to add more details to the response in the latest post and update the solution, I request that you would kindly re-take the survey for your experience on this thread.

Additionally, I have shared feedback with the product team to provide a way to make this process more straightforward and seamless. You can also leave your own feedback directly in the feedback forum: https://feedback.azure.com/

2 answers

Thameur-BOURBITA 32,496 Reputation points

2023-02-01T10:18:02.55+00:00

Hi @John Dyson Charles

The best approach is implement hybrid environment by installing Azure AD connect if it's not yet installed , to sync all on-prem groups for SharePoint automatically to Azure AD.

If name convention in Azure AD are changed , in this case you can rename on-premise groups to respect the new naming convention in Azure.

Please don't forget to mark helpful answer as accepted
Please sign in to rate this answer.
John Dyson Charles 0 Reputation points

2023-02-01T10:46:47.95+00:00

the problem here is the SG groups have both internal and external identities. External users are created as contacts in the AD but we target to create them as guest users in the AAD and have B2B collaboration in the Roadmap with the partners. So instead renaming the groups and syncing we can create the new AAD with new naming conventions and add the users manually. But this is kind of loads of manual task involved in identifying the groups and member and create them in the AAD. any other suggestions ?

Thameur-BOURBITA 32,496 Reputation points

2023-02-01T14:03:29.12+00:00

@John Dyson Charles

Powershell can help you reduce manual task.

Please don't forget to mark helpful answer as accepted
Sign in to comment
Marilee Turscak-MSFT 33,801 Reputation points Microsoft Employee

2023-02-02T23:35:09.3133333+00:00

Hi @John Dyson Charles ,

You are correct that this is a pretty manual process for now.

There are some very good examples online such as this blog post that details how to copy all of the Azure AD users into a CSV file and import them on-prem. You can follow a similar process for tenant-to-tenant migrations between Azure AD cloud directories. There is an example here that details this process:

See also: Importing data into my directory

-

If the information helped you, please Accept the answer. This will help us as well as others in the community who might be researching similar questions.
Please sign in to rate this answer.

0 comments No comments
Sign in to comment