Microsoft hardened the Entra ID synchronization feature last year: restricted permissions on Directory Synchronization Accounts role, and new dedicated sync app.
Let’s find out how sync still works 🔍 Some old tricks persist—and new ones have emerged 💥
➡️ Find this article on Tenable’s blog: Despite Recent Security Hardening, Entra ID Synchronization Feature Remains Open for Abuse