Mar 18 2020 08:18 AM
I am setting up my company's SharePoint sites. Our Office 365 account is synchronized with Active Directory.
I am working on configuring SharePoint security. When I configure a SharePoint group (Site Settings > Site Permissions > select a group > New), I can add a user account. I know this works because when I start typing a user name, autocomplete lists user names from our Active Directory. I cannot do the same for Active Directory groups. When I type the first few characters of a group name, autocomplete does not list the group I'm looking for. If I type the entire group name and then click the Share button, nothing happens.
Can anyone give some clues about what might be configured incorrectly?
Cam
Mar 18 2020 10:41 AM
Mar 18 2020 10:50 AM
Mar 18 2020 10:55 AM
Mar 18 2020 12:54 PM
In the Microsoft 365 admin center home screen, in the "Search users, groups, settings or tasks" text box, when I type something, autocomplete displays users and distribution groups, but not security groups. So that seems to confirm that the security groups are not being synchronized.
In the Synchronization Service Manager, under Connectors > Properties > Select Object Types, the "group" checkbox IS checked. Where else could I look for something misconfigured?
Mar 25 2020 01:07 PM
SolutionI found the solution. Our sync to Azure was not configured to sync the OU where the groups were located.
To fix, go to Azure AD Connect > Configure > Customize synchronizations options > Domain & OU filtering. Make sure the OU is selected, and save.
Mar 25 2020 01:07 PM
SolutionI found the solution. Our sync to Azure was not configured to sync the OU where the groups were located.
To fix, go to Azure AD Connect > Configure > Customize synchronizations options > Domain & OU filtering. Make sure the OU is selected, and save.