• Oct 10, 2022

    Dynamic Active Directory Groups

    One of my favorite features in Azure AD is dynamic groups. We can simply manage members of a group by defining filter rules based on user attributes. We can then go ahead and assign Azure AD resources to those groups, whether that’s apps, licenses or memberships / ownerships for other groups. This comes in very handy if we synchronize employee data from an HR system. The only thing we need to worry about is the sync. Group membership and access to resources is completely automated. Nice! :blush: However, many organizations still use Active Directory to manage their users and resources. Wouldn’t it be great to have the same functionality there? Say no more! :sunglasses:

    Read more
  • Oct 9, 2022

    Nested Active Directory Group Support For Legacy Apps

    Don’t you hate it? You have spent countless hours on setting up a role-based access model in your Active Directory. You created role groups for your users which you assigned to resource groups, but now this one application put’s up a fight - it does not support nested group membership. :rage: No problem you say. Just assign users directly to the resource group. However, next time Sam changes the department you need to manually remove him from that group. Ugh! Can’t we automate that? Sure, PowerShell to the rescue! :sunglasses:

    Read more