How to add a Group Owner in Azure AD for the Group synced from on-premises active directory

0
votes

I need to add group owners to the groups which are synced from on-prem Active directory. The functionality i am trying to use require that value.

I tried adding in AD (managed by) but it does not sync to Azure and also tried using add-azureadgroupowner PS.

1
azure-active-directory

1 Answers

1
votes

You can't.

Synchronized object are only editable in your on-premises directory. Not in cloud. In that manner, setting group owner of a synchronized group does not bring any value.

The idea of group owner is to enable self-service functionalities in Azure AD. The group owner can, for example manage group memberships for the group one owns. But a synchronized group is locked for editing in cloud. Meaning that group owner will have no special privileges.

A potential solution to your task would be to configure Directory Extensions and synchronize additional group extension properties which you can later read in the cloud.