Forum Discussion
Azure AD unblock users O365
The problem is that it just does not work even after 2 weeks.
Other ideas ?
If you move the user out of scope in syncing on AADC, it will remove their O365 account. Essentially it just unlicenses them.
That will delete everything after 30 days, but it would prevent access while everything was removed. You would just need to make sure you re-license the user to prevent deletion before then.
adam
Thank you Adam for your answer.
Basically, I want to synchronize all my users. But I want to block access to users who do not have licenses. So I wish it stays syncronized but can not connect until it has a license.
Except that when I block users on office 365 it is unlocked automatically after synchronization. I think there's a way to say that you do not consider the connection state on our local Active Directory.
I want to do that :
https://www.granikos.eu/de/justcantgetenough/PostId/310/blocked-office-365-login-is-overwritten
Thank you for your ideas.
You can modify the AAD Connect rules to ensure that this attribute is set correctly for the users in question. Look for the "In from AD - User AccountEnabled" rule as a basis and create your own. If you need help with rules, read here: https://docs.microsoft.com/en-us/azure/active-directory/connect/active-directory-aadconnectsync-change-the-configuration#synchronization-rules-editor
Thanks for your answer.
I need to do that for a lots of users. So i can't modify the rule for each user.
I am looking for a way to modify Azure AD Connect so that it does not change the state in Azure Online.
Thank you for your answers
