This article has moved to our new Syncro Documentation Center. To view it, click here:
Alternatively, you may navigate to docs.syncromsp.com and use the search bar to find the article that way.
Is there any way to scope the users synced to Syncro to users who are members of a specific Azure AD security group rather than automatically pull in all tenant users?
1 Like
Lots of questions about this.
- How are office 365 users that are either disabled or deleted handled? Clearly this needs to be reflected in Syncro. In many of our clients we do not delete their users. Instead, they are converted to shared mailboxes. How is the status going to be handled?
- How are all the other license types handled? This doesn’t seem well implemented. We have a lot of clients with E5 licenses for instance.
7 Likes
Hello,
I don’t have the Azure AD app card in Syncro App Center
Where can I find?
regards
Eric
You need to subscribe to the Syncro advanced plan.
Yes, when you are setting up the sync you can specify fields to include or exclude. We use the Department field in our situation.
Are you saying that a Syncro admin with can choose the AzureAD field that is used by Syncro to filter users that get synchronized into Syncro? I set the Azure AD integration up in our Syncro portal and we only have the Department field to use for filtering (Ignoring/Including) which users are synchronized.
Sorry for the confusion. For clarification we choose the departments from the Department field. I do not believe there is currently the ability to include/exclude by other fields.
It appears the instructions and video are outdated.
There is no longer a “Run Job” option when modifying a connection. How do you manually run a sync?
The instructions above do not mention the Include or Exclude Departments fields. If I leave include blank and populate exclude, will it include every field not added to exclude?
If I populate the include field and leave exclude blank, will it exclude all departments not listed in the include field?
I am also wondering how other license types are handled. Were the licenses above set as examples?
I wish I knew. Not really looked at this feature much lately as it is mostly useless to us without having other license types that our clients frequently use. Best I can tell it only picks up three licensed types including M E5, business premium, and business standard. It does not pick up F licenses of any kind nor the office versions of E3 and E5.
It also does not seem to update some of the other fields like mfa status either.
This also Maps UPIN to email address. So if your client does not login to 365 with their Email address, then when they email in a ticket it will not match the contact in syncro. Also if you have multiple email addresses it will create multiple Contacts under the client. Even if everything else matches. So it appears to match UPIN to Email address only. Since email is apparently the primary key in Syncro if you have multiple email addresses in 365, it will create multiple “Contacts” in syncro. They need to have a mapping per client in this feature, or at least give you some control over how they match and map “Contacts”. We enabled this feature and on our 320 users ended up with over 850 “Contacts” which also did not match to email address when tickets came in. Also There is no way to bulk delete contacts in Syncro, not even support can apparently. This feature is not ready!
Did you ever got an answer for this question? I found out if an user had a licensed and you remove it from O365, it doesn’t seem to change it in Syncro. Causing issues with license counts.
At this point we only use it to bring users in automatically to Syncro to make it easy for connecting them to tickets but we do not use it for anything else. It is just not usable.
On my task list that is about 1000 deep now I have an idea to write a script that will properly synchronize this for us. I already have a framework for it but just not time in the day.