[Feature Request]: See Entra ID Connect details

[nateatnology]

Please confirm:

• I have searched existing feature requests (open and closed) and found no duplicates.
• **me or my organization is currently an active sponsor of the product at the $99,- level.

Problem Statement

We need to be able to see which user accounts are synced via Entra ID Connect and which are located only in the cloud. As an MSP, we have to deal with a variety of configurations for different clients, so it's not always obvious which users are only in the cloud and which are Entra ID synced. The Entra ID synced users can't be fully managed through 365, so it's helpful to see that they are synced so my technicians know to go to the domain controller for certain actions (like deleting a user or editing an alias). Ideally, I would like to see this as an available column on the

In addition, being able to see other Entra ID Connect details, such as the last successful sync, current sync agent version, server name, and the service account, would also be helpful.

(I do want to acknowledge a similar request that was closed out due to the requester not being a paid user. As a paying user, I would like to request the same details and expand the request to include user sync status. The original request was #3823 on March 19th).

Benefits for MSPs

If I only dealt with one client, I would quickly memorize if they were using Entra ID Sync. As an MSP, I have to deal with hundreds of clients. Putting this information in a spot that's easy for my technicians to see allows for them to use the correct tools the first time and avoids them wasting time working through the wrong tool

It would also allow me to better report or alert on Entra ID Connect issues without having to log into each client's tenant or server.

Value or Importance

This would put sync status right in front of the technicians so they can see if the user can be edited in 365/CIPP or if they need to make changes from the domain controller. This would prevent technicians from wasting time attempting to edit a user and likely getting errors or at least failed changes.

For the server agent version, and related info, we would be able to better audit across our clients without having to log into servers or the Entra ID admin portal to see those details.

Having the last successful sync in CIPP would make it easier to create an alert to tell us if a sync hasn't occurred recently. This can be critical to catching issues in a timely manner.

PowerShell Commands (Optional)

No response

[kris6673]

The sync status of the user is already available via the Users page. The following 4 properties can be shown as columns:

AD sync being enabled is on the dashboard of each tenant, and the last sync time and other things can be seen from the extended tenant info:

As for the sync version, it's to my knowledge not something we can get via the Graph API yet, but that very well might change in the future :)

[nateatnology]

Ok, yep. I definitely overlooked all of that. That covers pretty much everything I needed. My only remaining minor request would be, is it possible to put the last sync date and time on the main tenant dashboard with the AD Sync Enabled status? It would make that a little more visible and make it easier to notice if something is wrong and it hasn't synced in a long time. Not a big deal, but it would be nice.

Thanks for your help.

[kris6673]

You're welcome!

I think getting an alert for that would be more ideal, instead of risking cluttering up the dashboard. It also helps you fix the issue when it arises, instead of hoping the tech notices there is an issue.

[kris6673]

I would like to work on this please!

[github-actions]

Great! I assigned you (@kris6673) to the issue. Have fun working on it!

[kris6673]

Alert has been added and merged into dev. Will be available next release :)