Entra synchronized Nested security groups

McDonald, Dave 20 Reputation points
2025-01-27T12:01:50.46+00:00

When Entra was branded Azure, on prem AD groups synchronized to Azure could not be nested.

I have done some testing recently and it seems this has changed. I need to get Microsofts offical line on this.

Here is the use case:

On premesis AD has a number of nested security groups. For Example

Group 1

Member - Group 2

Group 2

Mmeber - Group 3

All groups are syncrhonized to Entra through Entra Connect.

On Prem AD to Entra AD One Way Only.

I give Group 1 access to Test SharePoint so that anyone in Group 3 would have access to that SharePoint.

Will this work?

SharePoint
SharePoint
A group of Microsoft Products and technologies used for sharing and managing content, knowledge, and applications.
11,185 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
23,182 questions
0 comments No comments
{count} votes

Accepted answer
  1. Andy David - MVP 152.3K Reputation points MVP
    2025-01-27T12:47:37.9966667+00:00

    Here is the official doc on what is supported and what is not:

    https://learn.microsoft.com/en-us/entra/identity/users/directory-service-limits-restrictions

    User's image

    0 comments No comments

0 additional answers

Sort by: Most helpful

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.