Error 8344 Insufficient Access Rights

azureadlogo

An Export Error within Azure AD Sync/Connect/DirSync/FIM/MIM when configured with Exchange Hybrid:

8344insufficientaccess

Error Code: 8344
Error: Insufficient access rights to perform the operation.

Exchange Hybrid configuration tests writeback from Azure AD, and needs the necessary permissions set by the Installation on the Active Directory Connector System Account to allow this writeback.

Solution: If you can’t turn on heritage, than move the users to another OU or Container in order to have them inherit permissions.

Or you can use  Joseph @joepalarchio or the extended version with support for Distinguished Names in a CSV file by Lucian @LucianFrango.

Joseph:

Lucian:

 

Leave a Comment