There may be some cases where you would like to filter the Azure AD records for Users and Groups. Some example cases can be listed as follows:
You have a large User database but actually, you don’t need all of them.
You don’t want to synchronize inactive users.
You are using your user AD for multiple departments or companies, you would like to specify which of them needs to be synchronized.
You have a new naming convention for Azure AD groups and you want to sync only the new and nicely organized groups.
… you may have many more reasons to filter the data from your Azure AD.
Now, you have the chance to add a filter for your Users and Groups under the Admin tab.
 |
|---|
The filters need to be formatted according to Microsoft Graph API requirements. You may find some examples below. Please refer to Microsoft Graph API documentation for more details.
Description | Filter Name | Filter |
|---|---|---|
To list only Microsoft 365 groups (aka unified groups), apply a filter on groupTypes: | Group | groupTypes/any(c:c+eq+'Unified') |
Only import Groups starting with “corp”. | Group | startswith(displayName, 'corp') |
Only the active users. | Users | accountEnabled eq true |
Only the users having the organization's email address. | Users | endsWith(mail,'@organization.com') |
Import only if the users have a company name that is not Microsoft. | Users | companyName ne null and NOT(companyName eq 'Microsoft') |
Do not import the users starting with Conf. | Users | NOT startsWith(displayName, 'Conf') |