Azure AD Connect sync: Prevent accidental deletes

This topic describes the prevent accidental deletes (preventing accidental deletions) feature in Azure AD Connect.

f this was unexpected, then investigate and take corrective actions. To see which objects are about to be deleted, do the following:

Start Synchronization Service from the Start Menu.
Go to Connectors.
Select the Connector type Azure Active Directory.
Under Actions to the right, select Search Connector Space.
In the pop-up under Scope, select Disconnected Since and pick a time in the past. Click Search. This page provides a view of all objects about to be deleted. By clicking each item, you can get additional information about the object. You can also click Column Setting to add additional attributes to be visible in the grid.

The following command:

First, run the following command just to make sure

Get-ADSyncExportDeletionThreshold | FT

Then disable it

Disable-ADSyncExportDeletionThreshold

If all the deletes are desired, then do the following:

To temporarily disable this protection and let those deletes go through, run the PowerShell cmdlet:

Disable-ADSyncExportDeletionThreshold. Provide an Azure AD Global Administrator account and password.

1. With the Azure Active Directory Connector still selected, select the action Run and select Export.
2. To re-enable the protection, run the PowerShell cmdlet: Enable-ADSyncExportDeletionThreshold.

Enter your comment here...

Fill in your details below or click an icon to log in:

Email (Address never made public)

Name

Website

You are commenting using your WordPress.com account. ( Log Out / Change )

You are commenting using your Google account. ( Log Out / Change )

You are commenting using your Twitter account. ( Log Out / Change )

You are commenting using your Facebook account. ( Log Out / Change )

Connecting to %s