I recently disabled AD Connect because we're transitioning to a cloud-only setup. While all our groups now appear to be cloud-only, I'm stuck when it comes to adding or removing members and even deleting groups altogether. Is there a delay in these changes taking effect, or am I missing something?
3 Answers
If you're using Microsoft Graph, try running the update command to set the isCloudManaged attribute to true. That might help you manage the groups better.
Did you follow the Microsoft guide to properly disable AD Connect and switch everything to cloud-only? This documentation is really helpful: learn.microsoft.com/en-us/microsoft-365/enterprise/turn-off-directory-synchronization?view=o365-worldwide.
Make sure that everything appears as cloud identities in the portal instead of synced ones. That could be part of the issue.
It does show as cloud identities.
Yes, I did, and everything shows up as cloud now. The issue is mainly with the email-enabled security groups.