Say you have AD groups and / or AD users that need to be synchronized to Azure AD. This can be from an existing AD on premises or a new forest that was added to your AD tenant.

Migrating those new AD Identity mailboxes to Azure AD would start with AD Connect.

Some challenges you might face:

Name Collision for AAD Groups

The new AD forest may have identical group names to the groups in the new forest you are trying to sync.

Solution: Apply a Transformation using AD Connect

ad connect sync transformation
ad connect sync transformation

Summary

AD Connect has several built in functions that can be applied as part of declarative transformations. These are all done via a UI (see screenshot above).

Syncing new users and groups to an existing AAD tenant is simplified thanks to these AD Connect features.




Need an experienced AWS/GCP/Azure Professional to help out with your Public Cloud Strategy? Set up a time with Anuj Varma.