Skip to main content

Notifications

Announcements

Join us in the Community for an AMA: December 12th Register Today
News and Announcements icon
Dynamics 365 Community / Forums / Microsoft Dynamics 365 | Integration, Dataverse... / AD group synchonises o...
Microsoft Dynamics 365 | Integration, Dataverse...
Answered

AD group synchonises only partly with Dynamics team

(0) ShareShare
ReportReport
Posted on by JDG 108

Hi all,

We're experiencing something strange:

- An AD group was created and was visible in Dynamics as a Team.

- We added over 60 users to the AD group (this was done in the Microsoft admin environment)

- After a few days, we deleted all but 4 users from the AD group, again this was done in admin.microsoft.com

- Even though the AD group now has 4 users, the corresponding Team in Dynamics still has 34 users. So only about half of the users were removed from the Team.

When adding a user to the AD group, it appears in the Team. When adding a user that is already present in the Team and removing it again, this user stays in the Team.

As you may guess we're kind of confused. How is this sync supposed to work?

  • JDG Profile Picture
    JDG 108 on at
    RE: AD group synchonises only partly with Dynamics team

    Thanks. Also on that page: "When a user is removed from the Azure AD groups by an administrator, the user is removed from the group team, and they lose their access rights the next time they access the environment."

    These descriptions could be clearer and less ambiguous in my opinion. But for now I'll assume the users are removed when they login.

  • Suggested answer
    PerezAguiar Profile Picture
    PerezAguiar on at
    RE: AD group synchonises only partly with Dynamics team

    Hey!

    on https://learn.microsoft.com/en-us/power-platform/admin/manage-group-teams#edit-a-group-team, you have some interesting information:

    The list of team members listed in each group team only displays the user members who have accessed the environment. This list doesn't show all the group members of the Azure AD group. When an Azure AD group member accesses the environment, the group member is added to the group team

    Team members are maintained in each group team at run-time and the operation is done at the database level; therefore, the update to group team event is not available for plugin

    From this,  I would say that modifying membership on the AAD Team is not automatically reflected/Sycned into the team in Dynamics, but instead upon user attempt to connect (or impersonating call), they're disabled and then removed from the team.

    Regards,

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

News and Announcements

Join us in the Community for an AMA: December 12th Register Today

Quick Links

December Spotlight Star - Muhammad Affan

Congratulations to a top community star!

Top 10 leaders for November!

Congratulations to our November super stars!

Community AMA December 12th

Join us as we continue to demystify the Dynamics 365 Contact Center

Leaderboard

#1
André Arnaud de Calavon Profile Picture

André Arnaud de Cal... 291,240 Super User 2024 Season 2

#2
Martin Dráb Profile Picture

Martin Dráb 230,149 Most Valuable Professional

#3
nmaenpaa Profile Picture

nmaenpaa 101,156

Leaderboard

Featured topics

Get batch job history log from D365 FO to Power Automate

Product updates

Dynamics 365 release plans