882 questions
Group membership sync using MIM
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(243.2, 33%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKK%3C/text%3E%3C/svg%3E)
Khushboo Kumari
20
Reputation points
Hi,
Group membership is not working. We have configured join and projection rule in MIM.
configured join rule taken cn as cn in source domain management agent
and in target I have configured projection rule for groups in target domain management agent.
Groups are created with the prefix "DNU-" in the display name. The sAMAccountName and cn are the same as in RemainCo, with only extensionAttribute15 updated with the cn value.
What I did to resolve this:
- I ran the sync manually. - Searched for the group in the metaverse and found groups with only the projection rule. - Checked both domains to ensure the OUs are selected to sync membership.
It seems like the join rule is not working. Can you please help me figure this out as soon as possible? It is an urgent requirement.
Thanks!
Microsoft Security | Microsoft Identity Manager
Sign in to answer