Forum Discussion

Ollie's avatar
Ollie
Brass Contributor
Dec 05, 2019

SharePoint permissions/group for Azure AD account removed the re activated.

Hi,

 

We sync users from our on-prem AD to Azure AD.

We moved a user from the OU on-prem that is synced. The sync happened and the Azure AD account disappeared (or was deactivated?)

 

When the user was moved back and the next sync happened they reappeared on Azure AD, but had lost their previous SharePoint permissions and were not in the groups that they previously belonged to in SharePoint Online.

 

Do the permissions have to be manually reinstated?

 

Thank you for your time,

Ollie

 

  • Joe Stocker's avatar
    Joe Stocker
    Bronze Contributor
    one solution is to assign SharePoint permissions using AD group memberships rather than direct assignment as that should resolve this problem when user objects are undeleted.

Resources