How can we improve Azure Active Directory?

Sync Azure Active Directory Down to On-Premises AD

It would be great to be able to sync Azure AD down to On-premise AD. I want to centrally manage my users, passwords, and groups from Azure AD. That way the on-premise server just acts as a medium for the local environment.

Here: http://msdn.microsoft.com/en-us/library/azure/dn798669.aspx

It says "coming soon" for cloud to on premise sync. It was last updated on September 5th 2014. I cant find any new information on if this is out.

210 votes
Sign in
Check!
(thinking…)
Reset
or sign in with
  • facebook
  • google
    Password icon
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Kolbe Stevenson shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →

    48 comments

    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • facebook
    • google
      Password icon
      Signed in as (Sign out)
      Submitting...
      • Anonymous commented  ·   ·  Flag as inappropriate

        This would be really useful. We also want our prem AD as secondary to Azure Online. A sync back tool would be ideal.

      • Anonymous commented  ·   ·  Flag as inappropriate

        This would be a great if it was part of AAD/AADc AD integration... i would give us a lot more confidence...

      • Anonymous commented  ·   ·  Flag as inappropriate

        Looking for an update on this as well as would really streamline onboarding. Moderators please gives us an update.

      • Christophe commented  ·   ·  Flag as inappropriate

        When will this feature be available?
        it's been months / years we're promised that.

        In your Azure documentation, this is possible in Premium 1. How to do it when we bought the Preminum 1 just for the UserWriteBack?
        Device objects two-way synchronization between on-premises directories and Azure AD (Device write-back)

        any information will be welcome

      • Eric Campbell commented  ·   ·  Flag as inappropriate

        It's been three months! The suspense is killing me. ...seriously though, it would be great to have this available. Any news (even if it's news of a setback) would be welcome.

      • Neil commented  ·   ·  Flag as inappropriate

        It's been a couple of months, @RobDeJong. Is there anything in the pipeline? We're still having to provision Users on-premise, would be great to be able to at least have a service in Azure that enables a basic user creation form that then has the rights to create a user in AD, and then continues the provisioning tasks once that user has been pushed up the AAD. Anything!

      • Rob de Jong (Azure AD IAM) commented  ·   ·  Flag as inappropriate

        Hi folks - we're currently designing a new service that will write back users and groups from AAD to various different targets - AAD, other directories, applications - and we're not planning on implementing this in the AADConnect sync stack. We hope to be able to tell you more about this in a couple of months. Any specific input you may have on this topic is welcome!

      • Jeremy Bradshaw commented  ·   ·  Flag as inappropriate

        I've noticed the AAD Connect AdPrep PowerShell module still includes the Initialize-UserWriteback, but other pieces that used to be present seem to be missing from other places.

        PS C:\Users\Administrator> Import-Module 'C:\Program Files\Microsoft Azure Active Directory Connect\AdPrep\AdSyncPrep.psm1'
        PS C:\Users\Administrator> Get-Command -Module AdSyncPrep -Verb Initialize

        CommandType Name Version Source
        ----------- ---- ------- ------
        Function Initialize-ADSyncDeviceWriteBack 0.0 AdSyncPrep
        Function Initialize-ADSyncDomainJoinedComputerSync 0.0 AdSyncPrep
        Function Initialize-ADSyncGroupWriteBack 0.0 AdSyncPrep
        Function Initialize-ADSyncNGCKeysWriteBack 0.0 AdSyncPrep
        Function Initialize-ADSyncUserWriteBack 0.0 AdSyncPrep

      • CS commented  ·   ·  Flag as inappropriate

        Any update on that matter would be greatly appreciated. It would seriously reduce the workload of our helpdesk if they could create Users in O365 and have them synced back to active directory.

      • Alger commented  ·   ·  Flag as inappropriate

        As a 3rd party software developer we have customers that want our info written back to their Azure AD cloud. Any updates?

      • Gerrit commented  ·   ·  Flag as inappropriate

        Any update about user writeback?
        We want to sync Guest Users from AzureAD to On-Prem AD.

      ← Previous 1 3

      Feedback and Knowledge Base