Computers not syncing from ConfigMgr collection to Azure AD Group

Stewart Pollock 11 Reputation points


I'm having an issue with some computers in our ConfigMgr 2103 environment not syncing to Azure AD groups from collections. This is working for the majority of devices, but a subset of machines will not sync to any Azure AD groups and I cannot figure out what is different about these machines that's causing the issue.

All devices are Windows 10 Enterprise 1909, Hybrid-Joined and co-managed. The affected devices display the correct Azure AD Tenant and Device ID in the console. I just created a collection with 800 members and 50 are missing from the Azure AD group to which it's configured to sync. When I monitor CollectionAADGroupSyncWorker.log on the site server, the Device ID and Object ID for the missing devices don't appear at all, so ConfigMgr is not attempting to sync the devices even though they are in the collection and meet the pre-requisites.

Thanks in advance

Microsoft Configuration Manager
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. AllenLiu-MSFT 40,076 Reputation points Microsoft Vendor

    Hi, @Stewart Pollock
    Thank you for posting in Microsoft Q&A forum.

    We may double check the following areas:

    1. Validate Cloud Management configured successfully
    2. Validate devices are (Hybrid) Azure AD registered (Azure Active Directory user discovery)
    3. Validate SSL communication (Enhanced HTTP)

    For the details:
    (Please note: Information posted in the given link is hosted by a third party. Microsoft does not guarantee the accuracy and effectiveness of information.)

    If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.