An Azure Active Directory group has been deleted and then restored using On Demand Recovery, the restored group has a different Object ID than the original group and now no longer has same access it had prior to the restore.
If a user is Hard Deleted (no longer in the Recycle Bin), when it is restored using On Demand Recovery, the user is recreated with a different Object ID than the original user and now no longer has same access it had prior to the restore.
WORKAROUND:
Currently when restoring Users and Groups that were Hard Deleted, ODR will restore the following rights/permissions:
Any other applications where permissions are granted explicitly with the Object ID will be impacted when the User or Group is restored. For example, OneDrive permissions and SharePoint direct permissions on files, folders, lists and sites are not restored.
Enhancement ID RMAZ-127, RMAZ-1011 and RMAZ-1427 have been submitted to the Product Team to investigate restoring additional permissions for hard deleted objects. This will be investigated for a future release.
© 2024 Quest Software Inc. ALL RIGHTS RESERVED. Feedback 使用条款 隐私 Cookie Preference Center