Custom attributes for Azure Active Directory Domain Services now in Public Preview

Howdy folks!  

   

Today I’m excited to share a new enhancement for your Azure Active Directory Domain Services (Azure AD DS) instances.  

 

 This new capability provides you with the ability to use Custom Attributes in your managed domains.  

 

Custom Attributes (Public Preview) 

For various reasons, companies often will not or cannot modify code for legacy apps. These legacy apps may have utilized custom attributes, such as a custom employee id in their directory and leveraged these attributes in their app LDAP calls. Azure Active Directory (Azure AD) stores these extended user attributes (when configured via Azure AD Connect) in a set of attributes called onPremisesExtensionAttributes and stores extended app attributes in a feature called Directory Extensions. Neither of these two extension sets were synced before to Azure AD Domain Services.  

 

By enabling Azure AD DS to sync custom attributes/extensions from Azure AD, we allow more customers to use Azure AD DS as now they will be able to move all their previously blocked apps, which are dependent on custom attributes/extensions.   

 

 

Custom attributes blade.

 

  

To learn more Custom Attributes, visit our documentation here: Create and manage custom attributes for Azure AD Domain Services | Microsoft Learn 

 

Stay Tuned! 

Azure AD DS has many more announcements coming soon! Stay tuned and check back for the latest updates as we continue to make it simpler to manage all your apps with Azure AD. 

  

As always, we’d love to hear any feedback or suggestions you may have. Please let us know what you think in the comments below or on Twitter (@AzureAD).  

 

 

Learn more about Microsoft identity: 

• Get to know Microsoft Entra – a comprehensive identity and access product family 
• Return to the Microsoft Entra (Azure AD) blog home  
• Join the conversation on Twitter and LinkedIn 
• Share product suggestions on the Entra (Azure AD) forum