Questions
When synchronizing user information between HENNGE Access Control and Microsoft Entra ID, the users targeted for deletion could not be deleted.
What could be the possible cause?
Answer
It is possible that you are attempting to delete users that exceed the [Max Allowed Deletions] set for each domain.
In user synchronization, if the user deletion process attempts to delete a percentage of users exceeding the set [Max Allowed Deletions] of the total number of users, the process is canceled to prevent unintended mass deletion of users.
Please check the sync log results with the following steps, and if it corresponds to exceeding the set [Max Allowed Deletions], adjust the [Max Allowed Deletions] and try user synchronization again.
1. Refer to the following article to check the sync logs.
Check the Sync Logs
2. If the following log is displayed in the target sync log, the user deletion process cannot be executed because it exceeds the [Max Allowed Deletions].
<Example of Sync Log Result>
Synchronization was canceled because the deletion percentage reached the threshold.
3. Refer to the following article to set a higher value for [Max Allowed Deletions] and execute user synchronization again.
※ You can change the [Max Allowed Deletions] in step 6 of the following article.
Access Control User Sync Settings with Microsoft Entra ID
If periodic synchronization of user information is enabled, please refer to the following article.
※ You can change the [Max Allowed Deletions] in step 9 of the following article.
Add Domains for Periodic User Sync in Access Control (Access Control → Microsoft 365)