AD Connect Filter not working

%3CLINGO-SUB%20id%3D%22lingo-sub-3098608%22%20slang%3D%22en-US%22%3EAD%20Connect%20Filter%20not%20working%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3098608%22%20slang%3D%22en-US%22%3E%3CP%3EWe're%20testing%20the%20AD%20Connect%20filtering%20before%20using%20it%20in%20production%20environment.%3C%2FP%3E%3CP%3EThe%20goal%20is%20simple%2C%20filtering%20by%20user's%20attribute%20setting%2C%20so%20we%20followed%20this%20article%26nbsp%3B%3CBR%20%2F%3E%3CA%20href%3D%22https%3A%2F%2Fsocial.technet.microsoft.com%2Fwiki%2Fcontents%2Farticles%2F54333.azure-ad-connect-customize-sync-options.aspx%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3Ehttps%3A%2F%2Fsocial.technet.microsoft.com%2Fwiki%2Fcontents%2Farticles%2F54333.azure-ad-connect-customize-sync-options.aspx%3C%2FA%3E%3C%2FP%3E%3CP%3EUsing%20CASE3%3C%2FP%3E%3CP%3ESo%20we%20created%20a%20Catch%20all%20rule%20that%20blocks%20all%20users%20to%20be%20synced%20and%20a%20rule%20with%20higher%20priority%20that%20should%20sync%20only%20users%20with%20specific%20attribute%20set.%3C%2FP%3E%3CP%3EHowever%20it%20simply%20doesn't%20work%2C%20the%20rule%20that%20gets%20applied%20is%20the%20catch%20all%26nbsp%3B%3C%2FP%3E%3CP%3EI%20double%20checked%20the%20rule%20that%20should%20enable%20the%20sync%20of%20some%20user%20and%20looks%20correct%20but%20cannot%20find%20why%20is%20not%20working%3C%2FP%3E%3CP%3Ethanks%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-3098608%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EAD%20Connect%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EAzure%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EAzure%20Backup%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E
Contributor

We're testing the AD Connect filtering before using it in production environment.

The goal is simple, filtering by user's attribute setting, so we followed this article 
https://social.technet.microsoft.com/wiki/contents/articles/54333.azure-ad-connect-customize-sync-op...

Using CASE3

So we created a Catch all rule that blocks all users to be synced and a rule with higher priority that should sync only users with specific attribute set.

However it simply doesn't work, the rule that gets applied is the catch all 

I double checked the rule that should enable the sync of some user and looks correct but cannot find why is not working

thanks

 

0 Replies