Azure AD – You can now validate your dynamic group membership

As you know you can create dynamic group membership in Azure Active Directory to automatically add/remove group members (either users or devices) based on rules.

Sometime you may not be totally sure about the result and it is frustrating to have to wait before being able to validate it.

Well, good news, you can now validate and verify your dynamic group membership rule directly from the portal without wait

To start using it, logon to either your Azure portal ( or your Azure AD portal ( and reach the Azure Active DirectoryGroupsAll groups blade


Then either create a new dynamic group or edit an existing one; you will find the Validate Rules option on top of the rule section


From there you can add either one or more user or device (depending if this is a user group or device group) to validate your rule

image_thumb[2]  image_thumb[3]

After the rule is validated against the selected user or device, you can access the details to find why the user or device are (or are not) added as member of this group