Not able to update multiple attributes using Entra connect v2

Ashish Gupta 0 Reputation points
2024-01-15T09:34:24.2366667+00:00

Hi Team, I have updated following fields in AD for User as well as Groups..

AuthOrig
DLMemRejectPerms
DLMemSubmitPerms
UnauthOrig

I used powershell to update these attributes using Set-ADObject "CN=ashish_user_3,CN=Users,DC=ag,DC=com" -replace @{unAuthOrig="CN=ashish_user_3,CN=Users,DC=ag,DC=com"}
I am able to see updated attribute values in AD. When I synced them to AAD using Entra Connect v2, these attributes are not getting synced. all other changed attributes get synced to AAD. Can you please help on this.

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
23,152 questions
{count} votes

2 answers

Sort by: Most helpful
  1. Michael Smith 2,926 Reputation points Microsoft Employee
    2024-01-15T15:09:48.14+00:00

    Thank you for reaching out to the QnA community.

    If you would like to sync any attribute which does not supports direct sync, you would need to use Directory Extension Attribute Sync: https://docs.microsoft.com/en-us/azure/active-directory/hybrid/reference-connect-sync-attributes-synchronized.

    When you use "Directory Extension Attributes" in AD Connect Server these new attributes are synced to AAD. However, these new Attributes would not be visible on GUI.

    • When you setup Directory Extension Attribute Sync there is no downtime or impact on users, however Azure AD connect wizard may prompt to perform full sync, which can be unchecked if needed.
    • In below screenshot is an example of Employee Type and Division Attribute and Nationality which are sync'd to Azure AD as an Directory extension attribute.
    • Attributes sync'd using Directory Extension Attribute Sync would not be visible on user profile on Azure AD Portal/GUI.
    • You would need to use Graph to query and view these attributes on the users in AAD.
    • Below is the screenshot which confirm the successful sync to Azure AD.

    User's image

    User's image

    User's image

    I hope this helps to resolve your query. Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

    0 comments No comments

  2. Thameur-BOURBITA 35,436 Reputation points
    2024-01-15T22:17:17.17+00:00

    Hi @Ashish Gupta

    You should add custom attributes to be synced in Entra Connect configuration in order to sync them automatically to Entra ID (Azure AD). I invite your to read this article to get more details:

    Customize which attributes to synchronize with Microsoft Entra ID Schema extension wizard


    Please don't forget to accept helpful answer

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.