I work for a non-profit and after hours of research I'm still confused as to the Azure AD connection options.
Currently we are synced, but only from our AD on premise to the cloud. Not all users need on-premise computer access, so to help with time and complexity, I was going to start adding our seasonal employees as a cloud only user. That way they dont need to set their PW on a local computer & wait for sync. However, we have a 'staff' distribution group on-premise, so I ran into a snag with my plan when I couldn't add the cloud only account to the group.
I realize I could re-create the group in cloud then re-add everyone to it, however this opens up more issues down the line. I want to be able to do write back with groups, or ideally, write back with anything I want, it'd be great if I could just select which things write back and which don't.
Can you let me know what kind of license I would need for that? We have the option to apply some of these credits "includes up to $1,500 of Azure Active Directory Premium available via donated Enterprise Mobility + Security E3 subscriptions (up to 50 seats)."
I don't understand how that would work if I had the E3 license on certain users, seems they could writeback on PWs, but that doesn't help my group issue.
@PJGMark- what are your current license? I know once you get into Azure AD, you'll need at least P1 to do useful things.
You should be able to pick and choose which groups to sync by creating specific OU's. Another workaround is possibly just creating a separate distribution group i.e. 'Seasonal Staff', either set a rule to copy whenever an email get sent to Staff or keep it separate.
It might be also beneficial to create them on-prem so everything is in unison... plus you can take advantage of using dynamic membership rules, check out the use case here with airline industry. This is al based in Azure AD, so ignore the Teams part (that can be useful too for communication and check out Teams Shifts)
Not exactly what you are asking, but Microsoft is working on some plans to make it easier to add/manage seasonal workers (Firstline Workers) the details and schedule are still be determined. are you using Office 365 or just other apps?