Skip to content
English
Manage and Create Tickets
  • There are no suggestions because the search field is empty.

FileCloud AD Group Sync: Users Not Removed, Duplicate Groups Created, and “Everyone” Group Behavior Explained

Original Question or Issue:

Users synchronized from Active Directory (AD) groups are not being removed from FileCloud even after they are no longer part of the AD group. Additionally, duplicate groups appear after re-importing the same AD group, and users remain part of the “Everyone” group.

Environment:

  • Product - FileCloud Server
  • Version - Any
  • Platform - Any

Steps to Reproduce:

  • Import an Active Directory group into FileCloud without enabling the “remove users not in group” option.

  • Allow users to sync into FileCloud.

  • Later, enable the “remove users not in group” option.

  • Remove some users from the AD group.

  • Re-import or sync the same AD group again.

Error or Log Message:

  • No specific error messages observed

  • Behavior observed:

    • Users remain in FileCloud even after being removed from AD group

    • Duplicate AD group appears after re-import

    • “Everyone” group membership does not decrease

Defect or Enhancement Number:

No JIRA assigned

Cause:

  • The “remove users not in group” option is not retroactive. Users synced before enabling this setting will not be automatically removed.

  • The “Everyone” group includes all FileCloud users and is not tied to AD group membership.

  • Re-importing an AD group creates a new group mapping, resulting in duplicate groups instead of updating the existing one.

Resolution or Workaround:

  • Retain the newly synced AD group (status: Synced) and remove the older duplicate group after confirming it is not used in shares or permissions.

  • Manually remove or disable users who were previously synced but are no longer part of the AD group.

  • Ensure the following settings are enabled for future syncs:

    • “Remove users not in group”

    • (Recommended) Disable users instead of deleting for safer lifecycle management

  • Verify group assignments in shares and permissions after cleanup.

Notes:

  • Changes to AD group membership will only be reflected correctly in FileCloud after the setting is enabled and during subsequent syncs.

  • Always configure group sync options correctly before initial import to avoid manual cleanup later.

  • Review group usage in shares before deleting any duplicate groups to prevent unintended access issues.