Azure AD Groups with more than 50,000 Users
Hello O365 Team
Is it possible to increase the Azure AD group membership limits to more than 50,000 Users. We have scenarios were we would like to have groups with well over 100,000. For example could the limit be increased to support 500,000 to 1,000,000.
We opened a case with MS Support and they mentioned the following:
Unfortunately there is no way we can currently add more than 50k users to a group and as informed Nesting is the only available workaround. We at Microsoft are not aware of any Powershell scripts available to increase the limit as we do not support scripting but you can try getting in touch with scripters on Powershell forums and check with them if they have something that can increase the limit. Do let me know if you actually find one through one of these forums.
As discussed I am sending you the link for our Product Group team. Kindly send in your feedbacks on the link provided. You can share your feedback related to any feature of O365 you think needs to be improved, This team reviews all the feedbacks and tries to implement the best of suggestions.
Azure AD service limits and restrictions
Andrew Chandler commented
For those curious about updates, it's now in public preview. AAD Connect 1.5.30 and manually enabling the v2 endpoint API is required.
This increase would allow us to use Azure group based licensing, so a new ETA (even if rough) would be very much appreciated for our planning purposes
Is there a new ETA?
We are currently fixing some issues that we discovered in the first wave of the private preview. We'll deploy these fixes to the private preview wave 2 to verify that we can safely deploy this feature for public preview.
Yet another update...we're coming closer to the Public Preview of this feature. We are now targeting March 15th as the release date for the public preview. We decided to start the public preview with a new limit on group size of 250K members.
So be on the lookout for public announcements for the public preview and documentation that shows how to enable it!
Please post any questins you may have here.
Update: we will likely start the public preview for syncing groups with up to 200K members in the first quarter of 2020.We will monitor the behavior of our new back end service that we have deployed for the higher limits in the months after that and may be able to increase the limits further.
Rob, any estimates on how many months? Obviously I won't hold you guys to anything not on the roadmap, but I'm curious if we're talking end of 2019, or around this time next year or beyond.
This is incorrect. There is no technical limitation to the number of members in a group in Azure AD. Obviously, large groups take longer to process, but we know of groups with close to a million members.
The reference mentioned in the below is for the synchronization of on premises AD groups to Azure AD, which currently has a limit of 50K members. We’re working to increase that number somewhere in the coming months.
You are talking about groups synched from AD to AAD : we are also around 100k users and we simply split all our users into few AD groups below 50k each, that are synched with AAD, and apply these AAD groups to apps or Intune policies.
This setup works fine since months.
It is good if this limitation is removed. We have scenarios wherein the Group Limitation is a blockage in assigning the group to an Azure AD Enterprise Applications. Also Nesting does not work with Enterprise applications.
Dawesh Chand commented
With group-based licencing now in place, this increase would be very useful; especially for tertiary education environments where student numbers are greater than 50,000.