Sync AAD group membership -> MEMCM
It would be great if it was possible to sync a static or dynamic security group in Azure AD to a collection in MEMCM. This would be very useful in a Co-Mgmt scenario where the user/device gets the correct CM applications according to AAD group membership.
Today it is only possible to sync collection membership from CM to an AAD group, not the other way around.
This is indeed a missing piece of the puzzle for customers going for native AAD joined devices, but want these devices to be co-managed.
I think another missing piece is actually the ability to discover additional AAD device attributes (like ORDERID, aka autopilot "Group Tag"), so this info could then be used to build AAD based collections accordingly.