Forum Discussion

StefanKi's avatar
StefanKi
Iron Contributor
Dec 15, 2024

AD connect not sync device objects

Hello,

I have a challenge. I installed AD connect the user objects are synchronized. Only the device objects are not synchronized. AD connect for device sync is configured correctly. As soon as I create a new device object in AD (in the same OU as the existing device objects / same group membership) it is synchronized. Only the existing device objects are not synchronized. 

I think it may be due to the security permissions of the device objects. How can I check it? Which security permissions the sync user needs on the device objects? 

What can I do to ensure that the device objects are synchronized? 

Thank you for your support? 

Regards

Stefan

azure active directory

9 Replies

  • Ankido's avatar
    Ankido
    Iron Contributor
    Dec 20, 2024


    Hi Stefan,

    Based on what you’ve written, I suspect the issue might be:

    1. Existing objects have incorrect or incomplete attributes
      Azure AD Connect only synchronizes objects that meet certain requirements. If the existing objects are missing necessary attributes, such as:

    msDS-DeviceID (the unique ID of the device).
    OperatingSystem and OperatingSystemVersion.

    You can check these attributes for the existing device objects in Active Directory using the following PowerShell command:

     

    Get-ADComputer -Filter * -SearchBase "OU=YourDevicesOU,DC=yourdomain,DC=com" -Property msDS-DeviceID, OperatingSystem, OperatingSystemVersion.

     

    If any attributes are missing, make sure to populate them and then test the synchronization again.

     

    Let me know of this is helpful

  • rahuljindal's avatar
    rahuljindal
    Bronze Contributor
    Dec 15, 2024

    Have you checked if the objects have synced to the metaverse? Anything in the sync logs?

  • GuidoImpe's avatar
    GuidoImpe
    Brass Contributor
    Dec 15, 2024

    Hello, check at this link Entra Connect permission https://learn.microsoft.com/en-us/entra/identity/hybrid/connect/reference-connect-accounts-permissions

    Tell me uf you need more support,

    Regards,

    Guido

  • GuidoImpe's avatar
    GuidoImpe
    Brass Contributor
    Dec 15, 2024

    Hello StefanKi , permsission are in the following Microsoft link https://learn.microsoft.com/en-us/entra/identity/hybrid/connect/reference-connect-accounts-permissions, if all is configured correctly see the link permission.

    Tell me if you need more support,

    Regards,

    Guido

    • StefanKi's avatar
      StefanKi
      Iron Contributor
      Dec 18, 2024

      I checket the permissions and find no problem. 

Resources