Azure AD Dynamic Security Group - Rules

Austin Lai | March 13th, 2022

---

A collection of Azure AD Dynamic Security Group - Rules for your reference.

Table of Contents

• Azure AD Dynamic Security Group - Rules
  • Table of Contents
  • Dynamic Security Group - Rules
    • Account Activate or Enabled
    • Include user base on location
    • Example of a dynamic security group - rules

Dynamic Security Group - Rules

Account Activate or Enabled

(user.accountEnabled -eq True)

Include user base on location

(user.usageLocation -eq "US")

OR

(user.usageLocation -eq "Japan")

Example of a dynamic security group - rules

user.accountEnabled -eq True and ( user.usageLocation -eq "US" or user.companyName -contains "XXXYYYZZZ" ) and ( user.mail -contains "XXXYYYZZZ.com" and user.mail -notIn ["user1@XXXYYYZZZ.com","user2@XXXYYYZZZ.com"] and user.mail -notIn ["notifications@XXXYYYZZZ.com"])

---

Do let me know any command or step can be improve or you have any question you can contact me via THM message or write down comment below or via FB