Share via

azure ad connect sync attribute

roy lee 51 Reputation points
2022-07-11T08:48:13.3+00:00

We have upgraded the AAD connect recently to 2.1.15.
According to 2.0.3 release notes:
"We added the following new user properties to sync from on-premises Active Directory to Azure AD:
employeeType
employeeHireDate "

We really need to sync employee hire date to Azure AD for a 3rd party app.
However I can only find the employeetype in the Directory Extension page of the AAD connect Sync option.

Is there any schema update need to perform in on-prem AD?

Thanks.

Microsoft Security Microsoft Entra Microsoft Entra ID
0 comments
Accepted answer
  1. Yugandhar Munagala 341 Reputation points Microsoft Employee Moderator
    2022-07-14T23:41:22.01+00:00

    Hello @roy lee ,

    EmployeeHireDate is an AzureAD attribute. It is present at AADConnect cloud connector schema.
    These attributes aren't present in an Active Directory Domain Services (ADDS) schema.

    Here's the article which lists the available attributes in ADDS,
    https://learn.microsoft.com/en-us/windows/win32/adschema/attributes-all

    I will work with an engineering team to get the document updated to avoid confusion.
    Hope this helps.

    Let us know if this answer was helpful to you or if you need additional assistance. If it was helpful, please remember to accept it and complete the quality survey so that others in the community with similar questions can more easily find a rated solution.

3 additional answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. T. Kujala 8,761 Reputation points
    2022-07-11T09:09:51.857+00:00

    Hi @roy lee ,

    Unfortunately, the following attributes are not currently supported by AADConnect.

    employeeType
    employeeHireDate

    I think you should use extensionAttributes instead.

    219388-attributes.jpg

    https://learn.microsoft.com/en-us/azure/active-directory/hybrid/how-to-connect-sync-feature-directory-extensions#customize-which-attributes-to-synchronize-with-azure-ad

  2. Jason Woerner 1 Reputation point
    2022-10-17T18:15:54.76+00:00

    Another related issue here is that EmployeeHireDate in Azure AD cannot be set using any method whatsoever if you are syncing from on-premises with AD Connect. No direct edit in the portal. No PowerShell commands from either Az.Resources or Microsoft Graph can do it. So this field is left unusable in this situation.

    Using an extensionattribute would get the data to Azure AD, but for those who might want this data to get to a SharePoint User Profile you have another problem because you can't use an extension attribute in their sync engine.

    0 comments
  3. Greene, Jeff 1 Reputation point
    2022-11-15T22:45:37.943+00:00

    You can flow an AD extension attribute to the MV attribute employeeHireDate which will export successfully to AAD.

    Make sure your extension attribute uses Generalized-Time syntax. These dates are strings in the format "YYYYMMDDhhmmss.0Z".
    Then create an inbound sync rule to populate employeeHireDate from your AD extension attribute.
    260550-inbound-rule.jpg

    This will flow to AAD. This was completed with AAD Connect Version: 2.1.16.0

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.