I am transitioning from LDAP to Azure AD for group management and currently provisioning groups using Azure AD. We have disabled the create and delete options in Azure AD. We are syncing groups from Azure AD to ServiceNow by mapping the Azure AD group Object ID to a custom field named "source" in ServiceNow, which was previously used for LDAP.
For one group, I've set the Azure AD Object ID in the ServiceNow "source" field. This group in ServiceNow has 6 members, while the corresponding Azure AD group has 8 members. I need to sync the additional 2 members, but this synchronization is not occurring.
In a test instance, we verified that by removing members in both ServiceNow and Azure AD and then reprovisioning, Azure AD successfully synced the members to ServiceNow. But this approach is not manageable for all the groups cos its a risky thing to remove the members
Can anyone provide a solution or guidance on how to resolve the synchronization issue for the remaining members?
