Dynamic Groups: Member of group
Would be good to have the possibility to use membership in other groups as a condition in a dynamic group membership rule.
(user.objectId -memberOf group.objectId)
(user.objectId -notMemberOf group.ObjectId)
Use case 1 - Group Based Licensing.
If the user is member of a group that gives them a E5 license, don't let them be member of a group that gives them E3.
Use case 2 - Exceptions
All users should have a MDM policy applied, accept those of a specific group.
Thank you for your feedback! The feature team is aware of this suggestion and will keep it under consideration. There are technical challenges to overcome in order to make this happen. Please keep the votes coming if this feature matters to you.
Chad Hensley commented
We need this for provisioning to 3rd party SaaS like Zendesk from Azure. Automatic provisioning is useless without it, as you have to constantly update the "non-admin" group as employees are hired.
Roman Kaleln commented
Any Update? How is the current status?
any update I would like this
Tamlin Stryk commented
It's really frustrating that this feature is not yet in place, please make this feature a priority.
Travis Lingenfelder commented
It would be great to have dynamic rules that can include both being a member or being an owner of a group.
Hugues Vandenbroucke commented
MemberOf should also take indirect members, so it should support nested groups too.
Today there is no way to assign licenses to members of nested groups, neither directly through groups nor through dynamic groups.
Any updates on this? It's honestly the most frustrating thing I have to deal with when it comes to Azure AD since we're a hybrid org right now. I can't believe this topic was posted almost three years ago.
HELLO MS???? Where is this feature????? Its 2020 FFS.
Stephan G commented
If you have a local AD with AD Sync you can use my script (and change it for your needs)
Robert Moir commented
This would be so useful right now to sequence things like App rollouts in Intune, e.g. make a *device* a member of group A, add members of group A to group B would be a way of prioritization for app deployments for large phone deployments.
John Hamilton commented
+1. This would solve lots of issues around dynamic membership.
How is this still not a feature??
Omilian, Mike commented
+1. Isn't this just item level targeting?
Kristo T commented
Hi. Needed also, for Teams purposes.
Jörg Wiesemann commented
Hi, need this.
When will it be released
Madina Gotova commented
yes this feature is much needed, please update on the status
any word on this request?
Justin Horne commented
Any update on this? I need to be able to make a group that is an "All users" group, but NOT a member of another group. This is common with AAD app provisioning.
Maria Monita Martin commented
Any Update from the Azure AD Team on this?
This is much needed.