I can log into MS Azure Portal using my Office365 account but cannot view my home tenant
I have Office 365 account with active subscription. I can log in to MS Azure Portal using my Office 365 account. When I click View on 'Manage Microsoft Entra ID', I get the following error: { "sessionId":…
Automatically Provision Azure DevOps Licenses Based on Entra ID Group Membership
I am working with Microsoft Entra ID and Azure DevOps, and I am exploring the possibility of automatically provisioning Azure DevOps licenses to users based on their Entra ID group membership. The Azure DevOps organization is connect with Microsoft…
How to migrate all Entra users from static access to PIM?
I want to implement PIM for all users who are assigned Entra AD roles as permanent assignments. Now I need to implement PIM so that these active role assignments can be converted to PIM eligible. How can I do that? Is there any auto or APIs available for…
Identity Protection-Risky Users error when attempting to dismiss user
Hello, I have a user in my Identity Protection>Risky Users that has been there for several months. This user was deleted a long time ago, and therefore I do not understand why this user is in the Risky user section? When I try to dismiss the user,…
I dont' see UPN in Add optional claim
I'm trying to configure https://docs.oracle.com/en/database/oracle/oracle-database/19/dbseg/authenticating-and-authorizing-microsoft-entra-id-azure-ad-users-oracle-databases.html#GUID-B908CD75-4094-483C-8D93-563013112286 8.2.3 Enabling Microsoft Azure AD…
Call me is blocked for almost 24 hours after more than 10 attempts to specific number
This issue is observed in mobile applications when multiple attempts of call-me (MFA) are performed (roughly 10) to the specific number after sometimes that particular number is locked out for roughly (24 hours), there is no error message displayed on…
Unable to access Azure AD SAML mobile app in android 8.0 mobile device
We have an Azure AD enterprise app which supports SAML protocol for authentication. The app is working fine when accessed from system's browser, mobile device browser or when installed on personal Android /iOS device. However, when the same app is…
Identity Working Locally but not after deploying to Azure
Hello, When I deployed my Razor Pages project using asp.net and EF 8 to Azure, now when I login, the site simply refreshes and does not login. Also, the pages I had listed with [Authorize] are not requiring to be logged in. They seem to be viewable by…
Azure and Entra ID
Erorr Entra ID { "sessionId": "cbb209cb23dc4317b80b952cea59fa49", "errors": [ { "errorMessage": "interaction_required: AADSTS16000: User account '{EUII Hidden}' from identity…
Link Audit logs to Groups or Role or Privilege
I am wondering how can I link the audit logs from Azure AD to Role, Group or Privilege? The logs just have the action and the category. Is there a way by which I can understand using what Role or Group privilege this action was taken?
Is it possible to use conditional access policy with specific logged on Windows user?
Hello, Is it possible to use currently logged user as a signal inside Conditional Access policy evaluation? Scenario is below. Computer is joined to Entra ID and managed by Intune Computer has both Entra ID user configured and local user Is it…
SSO login error
Hi all, I'm configuring SSO from Google Workspace to Entra ID following the documentation below and I'm receiving an error: Error message: AADSTS5000811: Unable to verify token signature. The signing key identifier does not match any valid registered…
Azure users signing in non-interactive to BING app from CH
Hi. Azure signing logs show that we have a user signing in non-interactive from a Chinese IP address that belongs to a middle School in China. In a region the user had visited 4 weeks before. I see a lot of these sign-ins for various users in other…
Edge SSO not working any more
Strangest thing is happening. We assign Edge (Stabile version) to our dedicated android devices with Azure AD. Yesterday version 124.0.2478.50 (247805005) of Edge AI Browser was starting to install on our devices and we ran in to a problem instantly. The…
Workday/Entra ID - Soft delete users without the "Delete" action selected?
We currently have Workday to Entra ID user provisioning enabled with the "Create" and "Update" actions allowed and "Delete" is not enabled. I'm wondering if anyone is able to clarify whether the integration is able to soft…
Setting up Workday/Entra ID integration to handle leave of absence without deleting user
We currently have Workday provisioning users to Entra ID, however there's been an ask to have employee accounts disabled while they're on leave. The integration is set to have the "Create" and "Update" options allowed but not…
cross-tenent application security concern
There is an cross tenant application, which used by customer tenant A and customer tenant B, both A and B grant permission to the Application to their own resources RA, RB. Does It possible tenant A be able access resource RB by the Application? In…
AAD Custom Policies - Password change confirmation email
Context We have configured a journey where the user would be able to change his password if he wishes to do so. We use Sendgrid to have a custom email verification according to the documentation provided here :…
How to fix error "Account already exists" when signing in google users on a customer entra tenant?
Dear Microsoft support team, My name is Javier Ortega, and I am writing to seek assistance with: Authentication from .Net application to Entra tenant, with google users. Currently we have a group of users migrated to a customer (external) entra tenant.…