Filter AD Objects from Synchronizing to O365 in AD Connect
Tutorial on how to filter AD objects from synchronizing to O365 in AD Connect with AD Attribute Filtering
Custom Attribute in AD Object
Enabled Advanced Features in Active Directory Users and Computers
Click on the User’s Object which will be excluded from synchronizing to O365 by adding a value called NoSync in extensionAttribute10
Steps to Filter AD Objects from Synchronizing to O365
Refer to the steps below on how to exclude some of the AD Objects in the Organization Unit (OU), like users from synchronizing from Local AD Domain to Office 365
Open Synchronization Rules Editor
Click Add New Rule with the default settings
Create a new inbound Synchronization rules
- Connected System – Select xxx.onmicrosoft.com – AAD
- Connected System Object Type – Select User
- Metaverse Object Type – Select Person
- Link Type – Select Join
- Precedence – Lower precedence number (higher priority) wins when there are conflicts in attribute
Click Add Group – Add Clause to add the scope filter
- Attribute = extendsionAttribute10
- Operator = EQUAL
- Value = NoSync
Click Next to continue
Click Add transformation and enter the following
- FlowType = Constant
- Target Attribute = cloudFiltered
- Source = True
The filtering rule created will take affected on next synchronization cycle
Users’ object with extensionAttribute10 = NoSync will not be synchronized to Office 365 now.
Reference Links