Share via

some machines are not syncing from SCCM to AAD group

haZ 31 Reputation points
2021-05-18T09:14:17.477+00:00

i have an SCCM collection synched with Azure AD group .. just some of the machines are not being synched to the Azure AD group while they exist in SCCM collection .
any idea where to start troubleshooting ? all logs on Site server seems ok ( SMS_AZUREAD_DISCOVERY_AGENT.log) .

Microsoft Security | Intune | Configuration Manager | Other
0 comments

2 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Jason Sandys 31,411 Reputation points Microsoft Employee Moderator
    2021-05-18T13:44:52.047+00:00

    This generally happens when the resource in ConfigMgr doesn't have an AAD ID populated.

    The log for this AAD group sync, starting in 2002, is CollectionAADGroupSyncWorker.log.

    0 comments
  2. Amandayou-MSFT 11,156 Reputation points
    2021-05-19T06:08:27.373+00:00

    Hi @haZ ,

    When Azure AD Group sync is not working as expected please double check the following areas:

    ->Validate Cloud Management configured successfully
    ->Validate devices are (Hybrid) Azure AD registered (Azure Active Directory user discovery)
    ->Validate SSL communication (Enhanced HTTP)

    And detailed information about checking areas, please refer to the following link:
    https://ronnydejong.com/2020/02/27/troubleshooting-device-collection-membership-azure-ad-group-sync/
    Note: This is non-official Microsoft article just for your reference.

    If the response is helpful, please click "Accept Answer" and upvote it.
    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.