Azure AD Connect sync: Prevent accidental deletes
This topic describes the prevent accidental deletes (preventing accidental deletions) feature in Azure AD Connect.
f this was unexpected, then investigate and take corrective actions. To see which objects are about to be deleted, do the following:
-
Start Synchronization Service from the Start Menu.
-
Go to Connectors.
-
Select the Connector with type Azure Active Directory.
-
Under Actions to the right, select Search Connector Space.
-
In the pop-up under Scope, select Disconnected Since and pick a time in the past. Click Search. This page provides a view of all objects about to be deleted. By clicking each item, you can get additional information about the object. You can also click Column Setting to add additional attributes to be visible in the grid.
The following command:
First run the following command just to make sure
Get-ADSyncExportDeletionThreshold | FT
Then disable it
Disable-ADSyncExportDeletionThreshold
If all the deletes are desired, then do the following:
To temporarily disable this protection and let those deletes go through, run the PowerShell cmdlet:
Disable-ADSyncExportDeletionThreshold. Provide an Azure AD Global Administrator account and password.
-
-
With the Azure Active Directory Connector still selected, select the action Run and select Export.
-
To re-enable the protection, run the PowerShell cmdlet: Enable-ADSyncExportDeletionThreshold.
-
Advertisements
kazaki82
Leave a Reply