Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
21,279 questions
This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
I have a group in Entra with a dynamic membership rule.
I need to remove a user from this group, and although I added them to the Not in for the userPrincipalName the user was not removed.
Please advise.
check for the following:
userPrincipalName
or any other attributes referenced in the rule are correctly updated for the user you wish to remove. also, sometimes, it takes a while for the changes to propagate. You can try to force a manual update of the group's membership by triggering a re-evaluation of the dynamic user or group membership.$user = Get-ADUser -Identity 'INSERTHERE' -Properties 'ObjectGUID'
$immutableID = [System.Convert]::ToBase64String($user.ObjectGUID.ToByteArray())
compare this with the immutable ID in the cloud