Share via

Entra Cloud Sync Not Updating Group Names

Anon4343 541 Reputation points
2025-02-28T15:55:21.87+00:00

We've made changes to an on-premises Active Directory group and not all of the changes are synchronizing.

  1. Renamed Display Name and pre-2000 name - Did not synchronize
  2. Added Group Members - Synchronized
  3. Updated description - Synchronized

We're using the Entra Cloud Sync Azure AD Connect Provisioning Agent version 1.1.1586.0 . This is the latest version.

In the Cloud Sync provisioning logs, we can see that it's referencing the new on-premises Active Directory group name. How do we rename the Entra ID group name to match?

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
23,796 questions
Accepted answer
  1. Venkata Jagadeep 650 Reputation points Microsoft External Staff
    2025-03-17T18:18:47.9133333+00:00

    Hello Anon4343,

    Thank you for the information.

    Few groups from on-prem AD are not syncing to azure.

    This is due to empty information on "Display Name" attribute. By filling the field "Display Name" these groups are syncing to Entra ID.

    1 person found this answer helpful.
    0 comments

3 additional answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Venkata Jagadeep 650 Reputation points Microsoft External Staff
    2025-03-03T23:11:20.41+00:00

    Hello Anon4343,

    Thank you for posting the query in Microsoft Q&A.

    Renaming on-premises Active Directory group name not syncing to Entra ID while using cloud sync tool.

    This issue occurs for one of the following reasons:

    • The domain value that's used by AD DS attributes hasn't been verified.
    • One or more object attributes that require a unique value have a duplicate attribute value (such as the proxyAddresses attribute or the U serPrincipalName attribute) in an existing user account.
    • One or more object attributes violate formatting requirements that restrict the characters and the character length of attribute values.
    • One or more object attributes match exclusion rules for directory synchronization.

    We suggest you to use the IdFix DirSync Error Remediation Tool to find objects and errors that prevent synchronization to Microsoft Entra ID. It displays object attribute values that would be reported as errors by the supported directory synchronization tool.

    Please follow the steps mentioned in the below document to run IdFix tool.

    https://microsoft.github.io/idfix/Step%203%20-%20Query%20and%20fix%20invalid%20attributes/

    Please refer the below document

    https://learn.microsoft.com/en-us/troubleshoot/entra/entra-id/user-prov-sync/objects-dont-sync-ad-sync-tool

  2. Josh Villagomez 85 Reputation points Microsoft Employee
    2025-03-12T18:48:13.3966667+00:00

    Entra Cloud Sync contains a default attribute mapping for DisplayName. The attribute mapping is an Expression such as: 

    IIF(IsPresent([displayName]), [displayName], [cn])

    Take a look at the "Apply this mapping" setting and make sure it is set to Always, not Only During Object Creation.

    Also, what happens when you do a Provision on Demand against that object?

  3. Anon4343 541 Reputation points
    2025-03-14T15:45:46.9233333+00:00

    We opened a ticket with Microsoft support and found that filling in the DisplayName attribute of the group resolved the issue.

    0 comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.