Force object based AD sync for automation
From a sourcing perspective we often have to deal with hybrid cloud environments. For the User Workspace (webbased) we make use of both Active Directory systems (LocalAD and AzureAD) for access control to multiple applications.
To optimize End User Experience it is neccessary to sync both Active Directory systems as fast as possible (realtime is preferred).
Antoher possible workaround is object based (specific user or group) synchronization from command line to integrate with automation tools.
Paul Rarey commented
I see the Azure AD Team stated the Single-Object-Sync feature would be available in a future AAD-Connect release - back in August 2019.
Some status on its progress in AAD-Connect's release roadmap would be great to know.
Current thinking on how the "sync-object" can/will be triggered would also be great to know. The ability to pass an array of objects (e.g. UPNs) to execute the "sync-now" action would be easier than iterating the UPNs through the action statement one at a time.
For example, maybe a PowerShell cmdlet or -option in the AzureAD module. Maybe an AAD-Connect module (saw a couple of Asks on that topic)?
We are currently working on a single object sync function that will be available in a future release of Azure AD Connect