AAD Connect: Configure filtering based on Domain, Organizational Unit and Attribute

With Azure AD Connect Services we can configure which Users, Mail-Enabled Groups,

Computers and Mail enabled contacts are synchronized to Office 365. This can be done in

three ways (Domain, OU, and Attribute based filtering).

Organizational Unit Based Filtering

Log on to the computer that is running AAD Connect by using an account that is a member of the ADSyncAdmins security group.

Click Start, then click Synchronization Service to open the Synchronization Service Manager.

To open the connectors view, click Connectors in the Tools menu.

In the Connectors list, select the connector that has Active Directory Domain Service as

Type.

Click Configure Directory Partitions, select the domain you want to configure, and then click Containers.

When prompted, enter your domain credentials for the on-premises Active Directory forest.

In the Select Containers dialog box, clear the OU's that you don’t want to sync with the cloud directory, and then click OK.

Click OK on the SourceAD Properties page

Run a full import and a delta sync by completing the following steps:

In the connectors list, select SourceAD
To open the Run Connector dialog, select Run from the Actions menu.
In the Run profiles list, select Full Import, and then wait for the run profile to complete.
To open the Run Connector dialog, select Run from the Actions menu.
In the Run profiles list, select Delta Synchronization, and then wait for the run profile to complete.