This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(6.4, 28.000000000000004%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENB%3C/text%3E%3C/svg%3E)
What is the limitation on creation of number of AAD groups on Azure Tenant?
I just wanted to check in and see if you had any other questions or if you were able to resolve this issue? Thank you for your time and patience throughout this.
If the information helped address your question, please Accept the answer. This will help us and also improve searchability for others in the community who might be researching similar information.
A maximum of 50,000 Azure AD resources can be created in a single tenant
The limit depends on "edition" of your Azure AD instance. Refer to the official documentation: https://learn.microsoft.com/en-us/azure/active-directory/enterprise-users/directory-service-limits-restrictions
Thank you for your post!
I understand you're looking for the Azure AD service limits and restrictions on how many Azure AD Groups can be created within a single Azure tenant. Referencing the documentation shared by @Vasil Michev - the usage constraints and other service limits for the creation of Azure AD Groups can be found below.
Note: By default, a maximum of 50,000 Azure AD resources can be created in a single tenant by users of the Azure Active Directory Free edition. If you have at least one verified domain, the default Azure AD service quota for your organization is extended to 300,000 Azure AD resources.
Azure AD service limits and restrictions:
- A non-admin user can create a maximum of 250 groups in an Azure AD organization. Any Azure AD admin who can manage groups in the organization can also create an unlimited number of groups (up to the Azure AD object limit). If you assign a role to a user to remove the limit for that user, assign a less privileged, built-in role such as User Administrator or Groups Administrator.
- An Azure AD organization can have a maximum of 5,000 dynamic groups and dynamic administrative units combined.
- A maximum of 500 role-assignable groups can be created in a single Azure AD organization (tenant).
- A maximum of 100 users can be owners of a single group.
- Any number of Azure AD resources can be members of a single group.
- A user can be a member of any number of groups. When security groups are being used in combination with SharePoint Online, a user can be a part of 2,049 security groups in total. This includes both direct and indirect group memberships. When this limit is exceeded, authentication and search results become unpredictable.
- By default, the number of members in a group that you can synchronize from your on-premises Active Directory to Azure Active Directory by using Azure AD Connect is limited to 50,000 members. If you need to sync a group membership that's over this limit, you must onboard the Azure AD Connect Sync V2 endpoint API.
- When you select a list of groups, you can assign a group expiration policy to a maximum of 500 Microsoft 365 groups. There is no limit when the policy is applied to all Microsoft 365 groups.
Additional Link:
I hope this helps! If you have any other questions, please let me know.
If the information helped address your question, please Accept the answer. This will help us and also improve searchability for others in the community who might be researching similar information.
I just wanted to check in and see if you had any other questions or if you were able to resolve this issue? Thank you for your time and patience throughout this.
If the information helped address your question, please Accept the answer. This will help us and also improve searchability for others in the community who might be researching similar information.
I just wanted to check in and see if you had any other questions or if you were able to resolve this issue? Thank you for your time and patience throughout this.