Whilst trying to setup the Dirsync/AAD Connect group licensing, I came across this the link below:
Great read, outlining the following limitations of AAD Connect replication:
- Group nesting.
- Group licensing being only available to security groups.
- Impacts of removing a user from a group.
- Performance implications.
- Logging and auditing.