SOLVED

Group Writeback two way Sync?

Iron Contributor

We noticed that if we off-board a user and remove their groups through AD, the user will be added back to the O365 groups that have Group Write-Back enabled. The only way to remove them is to also go into admin portal and remove the user from those groups there. Should writeback feature also sync changes back to Azure AD when updated in AD?

2 Replies
best response confirmed by NThoman (Iron Contributor)
Solution
That makes sense since M365 groups are managed in Azure AD, and you are writing them back onprem to consume them. So if you remove the user onprem, it will come right back on the next sync. One of the benefits of group writeback is that you can now look to manage groups centrally in Azure AD and only need to write back the ones you need to consume onprem.
Got it... So it's one way... AZ to AD.
1 best response

Accepted Solutions
best response confirmed by NThoman (Iron Contributor)
Solution
That makes sense since M365 groups are managed in Azure AD, and you are writing them back onprem to consume them. So if you remove the user onprem, it will come right back on the next sync. One of the benefits of group writeback is that you can now look to manage groups centrally in Azure AD and only need to write back the ones you need to consume onprem.

View solution in original post