Sophos Central Azure AD Sync, Filter by group membership??

john_kenny did you get this figured out again? Any insight? 

Thanks.

No basically, I I managed to do it once but for some reason I deleted the azure application so had to reset it up again but I didn't make note of howi I achieved it. Its been a while since I last tried it so I hope it's now configurable or at least tells you how to sync only certain group members now. All I can remember was I managed to find the manifest string that meant that application would only sync specific users. It wasn't just assigned groups either but as I say that may have changed since. But I ended up and still use jumpcloud ad Saad offering which is free and allows me to set the specific users via that now which net my needs which was to have the single cloud based Ad which was accessible by Sophos Xg and fit in alongside my azure ad without using syncing and also allowed me to set SAM as the default username layout and not upn as aad does which at the time I set this up synchronised user Id was using on sophos xg.

I may take another crack at sophos aad sync now though to see if it's changed the way I needed it too yet. I as even though the solution I put into place a while back still works it would be great to not have a 3rd party directory service if sophos can do it now.

If I do have another crack at it I'll be sure to reply again.

I found one of my old posts which if I remember right does syncing of assigned members to the azure ad app which if I remember right can be users or groups but this wasn't exactly what I was looking for but it might do what you were wanting to do?

Jk