What should you do?

Posted by: Pdfprep Category: AZ-303 Tags: , ,

You manage an Active Directory domain named contoso.local.

You install Azure AD Connect and connect to an Azure Active Directory (Azure AD) tenant named contoso.com without syncing any accounts.

You need to ensure that only users who have a UPN suffix of contoso.com in the contoso.local domain sync to Azure AD.

What should you do?
A . Use the Synchronization Service Manager to modify the Metaverse Designer tab.
B . Use Azure AD Connect to customize the synchronization options.
C . Use the Synchronization Rules Editor to create a synchronization rule.
D . Use Synchronization Service Manager to modify the Active Directory Domain Services (AD DS) Connector.

Answer: C

Explanation:

Filtering what objects are synced to Azure AD is a common request and there are many instances where filtering by OU just doesn’t cut it. One option is to filter users by their UPN suffix so that only users with the public FQDN as their UPN suffix are synced to Azure AD (e.g., [email protected] would be synced while [email protected] would not).

Filtering can be configured using either the GUI or PowerShell.

Through GUI:

Using The Synchronization Rules Editor

Leave a Reply

Your email address will not be published.