TFS & Visual Studio ALM – by Neno Loje

(formerly Team System, VSTS)

Force TFS to sync with Active Directory

February 17th, 2011 · 5 Comments · TFS 2010, TFS Administration, Tools and Utilities, Troubleshooting TFS

Changes you make to local or Active Directory groups do not get reflected in TFS immediately. Instead, TFS will synchronize those groups regularly (by default every hour).

In TFS, new users don't show up immediately.

Known workarounds:

  • You can re-add the security group in TFS, this will trigger a identity synchronization. 
  • In TFS 2005/2008: you could restart IIS or the TFS App Pool to force an identity synchronization (does not work for TFS 2010).
  • Using the JobService webservice, you can queue the identity synchronization job.
  • Or use this tool to trigger the web service:

This tool will refresh your security groups in TFS within seconds.

(Note: The user needs to have the ‘Queue background jobs‘ permission on TFS)

Download the tool from here:


  • You can specify "/status" to only query the time of the last identity synchronization.
    (only requires ‘View background job information‘ permission on TFS)



5 Comments so far ↓

Leave a Comment