Azure AD Group Writeback to On-Premises AD

Exploring the Group Writeback V2 feature (currently in Public Preview). This feature allows Azure AD Connect to sync Azure-based groups to AD on-premises.

High-Level Overview

Individual Microsoft 365 groups may transformed to either a new Security, Mail-Enabled Security or Distribution Group.

Example

Enabling the below Security group for writeback will provision it to the nominated on-premises OU.

Microsoft 365 groups may also have their writeback type changed. In the example below the target group is changed from Distribution writeback to Security.

Further information

https://docs.microsoft.com/en-us/azure/active-directory/hybrid/how-to-connect-group-writeback-v2

Twitter Facebook LinkedIn

Scoping Azure AD Roles with Administrative Units

less than 1 minute read

In Azure AD, an Administrative Unit is a collection of Users, Groups and Devices. These groupings provide a means to apply granular control in the assignment...

Granting Background App Services, Daemons and Scripts Delegated Permissions for Microsoft Graph

less than 1 minute read

Background services, daemons and scripts interacting with Microsoft Graph are commonly configured to acquire Application level permissions. Application admin...

B2C Federating to a Single Azure AD Tenant

less than 1 minute read

A B2C tenant that federates back to single Azure AD tenant supporting Members, Guests (B2B) and Customers (or Consumers).

Azure AD On-Premises Application Identity Provisioning

less than 1 minute read

Azure AD Application Identity Provisioning to On-Premise Applications that lack SCIM support.

Azure AD Group Writeback to On-Premises AD

Chris Dymond

High-Level Overview

Example

Further information

You May Also Enjoy

Scoping Azure AD Roles with Administrative Units

Granting Background App Services, Daemons and Scripts Delegated Permissions for Microsoft Graph

B2C Federating to a Single Azure AD Tenant

Azure AD On-Premises Application Identity Provisioning