Sync Azure Active Directory Down to On-Premises AD
It would be great to be able to sync Azure AD down to On-premise AD. I want to centrally manage my users, passwords, and groups from Azure AD. That way the on-premise server just acts as a medium for the local environment.
It says "coming soon" for cloud to on premise sync. It was last updated on September 5th 2014. I cant find any new information on if this is out.
This would be really useful. We also want our prem AD as secondary to Azure Online. A sync back tool would be ideal.
Adeel Aleem commented
When will this feature be available?
Need this now! When can we get it?
This would be a great if it was part of AAD/AADc AD integration... i would give us a lot more confidence...
Any updates on this?
Looking for an update on this as well as would really streamline onboarding. Moderators please gives us an update.
When will this feature be available?
it's been months / years we're promised that.
In your Azure documentation, this is possible in Premium 1. How to do it when we bought the Preminum 1 just for the UserWriteBack?
Device objects two-way synchronization between on-premises directories and Azure AD (Device write-back)
any information will be welcome
Eric Campbell commented
It's been three months! The suspense is killing me. ...seriously though, it would be great to have this available. Any news (even if it's news of a setback) would be welcome.
Hassan Almanasrah commented
Can we know this could be available?
Surprised this isn’t possible yet!
It's been a couple of months, @RobDeJong. Is there anything in the pipeline? We're still having to provision Users on-premise, would be great to be able to at least have a service in Azure that enables a basic user creation form that then has the rights to create a user in AD, and then continues the provisioning tasks once that user has been pushed up the AAD. Anything!
Rob de Jong (Azure AD IAM) commented
Hi folks - we're currently designing a new service that will write back users and groups from AAD to various different targets - AAD, other directories, applications - and we're not planning on implementing this in the AADConnect sync stack. We hope to be able to tell you more about this in a couple of months. Any specific input you may have on this topic is welcome!
Jeremy Bradshaw commented
I've noticed the AAD Connect AdPrep PowerShell module still includes the Initialize-UserWriteback, but other pieces that used to be present seem to be missing from other places.
PS C:\Users\Administrator> Import-Module 'C:\Program Files\Microsoft Azure Active Directory Connect\AdPrep\AdSyncPrep.psm1'
PS C:\Users\Administrator> Get-Command -Module AdSyncPrep -Verb Initialize
CommandType Name Version Source
----------- ---- ------- ------
Function Initialize-ADSyncDeviceWriteBack 0.0 AdSyncPrep
Function Initialize-ADSyncDomainJoinedComputerSync 0.0 AdSyncPrep
Function Initialize-ADSyncGroupWriteBack 0.0 AdSyncPrep
Function Initialize-ADSyncNGCKeysWriteBack 0.0 AdSyncPrep
Function Initialize-ADSyncUserWriteBack 0.0 AdSyncPrep
Since Microsoft isn't responding I'll put my two cents in. It appears that this already is working, however it's part of the premium Azure AD service.
One of the bullet points down the list - Self-Service Password Reset/Change/Unlock with on-premises writeback.
It's available in Premium P1 or Premium P2.
Any update on that matter would be greatly appreciated. It would seriously reduce the workload of our helpdesk if they could create Users in O365 and have them synced back to active directory.
As a 3rd party software developer we have customers that want our info written back to their Azure AD cloud. Any updates?
Any update about user writeback?
We want to sync Guest Users from AzureAD to On-Prem AD.
Leif Lagebrand commented
When? It's been a long time ...
Including Exchange Online, with synced accounts aswell.