Office 365 + AD Connect: Manage Groups

How to manage groups in Office 365 from On-Premise Active Directory

If you are using Office 365 with AD Connect your groups are probably in your on-premise Active Directory. If your groups are being synced from your own premises Active Directory, you won’t be able to manage them from the office 365.

You may run into the following error:

The action ‘Set-DistributionGroup’, can’t be performed on the object because the object is being synchronized from your on-premises organization. This action should be performed on the object in your on-premises organization.

This error occurs because Office 365 objects have a source of authority. in short, If Microsoft allows you to edit the attributes in Office 365, they would be quickly overwritten during the next AD connect sync. Instead of using the Office 365 administrative centers will need to edit the attributes in Active Directory.

Below is a list of Active Directory attributes that are synced to Office 365. use this list to help find the attributes that need to be edited.