What the Required MFA announcement means?
What does it impact and what does not?
Azure Container Apps - built-in OIDC for SPA?
From Azure Container Apps Docs, it claims to support codeless authentication for apps through configuration (easy auth). I deployed 2 apps to ACA, one Angular SPA, one API used by SPA, both without any code to support authentication as I want to utilize…
Managed Identity Roles Needed for Azure Functions
I cannot figure out how to give my APIMS instance authorization to execute my Azure Function. When I try to test the Azure Function I get a 403 unauthorized error. I have an instance of Azure API Management Service (APIMS) Development Tier. I also have…
Entra Connect cloudsync (entra ID -> AD sync)
Dear, I am trying to do cloud syncronization from Entra ID to Active Directory via entra website. However this is not working. In the opposite direction it does (AD -> entra ID). Does anyone have any idea how I can solve this? I can press the…
Application proxy: different on-premises and cloud identities
Hello, perhaps someone can give examples of what you mean by these settings? Unfortunately I didn't find…
AD is not syncing with Entra
Whenever my users change their password, they are locked out of their email account.
How to create/ delete user via API using grant type as client_credentials
We are able to create token but unable to create and delete user. { "error": { "code": "AuthorizationFailed", "message": "The client 'f04c77f3-530e-416d-a165-42304fb90583' with object id…
How to create/ delete user via API using grant type as client_credentials
How to create / delete user via API using grant type as client_credentials. We are able generate token but not able to perform create and delete user. { "error": { "code": "AuthorizationFailed", …
Azure B2C Password does not match error bad behaviour
We have developed a project with Azure B2C and by testing we have detected that when registering, when the passwords do not match, the browser does not go up directly to show you the error message, it remains at the bottom of the page screen, with other…
Some users which belongs to another teenant are not able to login using our app with SingelSignOn
How can another user login using our app using Singel Sign On. When User login then admin need to give permission. Question: What is needed for admin to give permission to our "app" and how to do that? The app is registered and works for some…
Some users which belongs to another teenant are not able to login using our app with SingelSignOn
How can another user login using our app using Singel Sign On. When User login then admin need to give permission. Question: What is needed for admin to give permission to our "app" and how to do that? The app is registered and works for some…
AAD Sync errors 8344 on export for a small number of accounts
Good morning hive mind! I am struggling to find what is causing error 8344 on just 8 accounts on Export sync with AAD, getting error 8344 "Insufficient access rights to perform the operation" we have enabled inheritance on the MSOL account,…
exporting query output report to csv
I have executed below query and it worked and i want to export report to csv, what parameters I should add? 'az graph query -q "Resources | where type =~ ''Microsoft.Compute/virtualMachines'' | project name, properties.storageProfile.osDisk.osType…
How to implement Register and login in Azure AD B2C using Custom UI and APIs
How to implement Register and Login in Azure AD B2C using Custom UI and APIs and without using User flows. Instead of redirecting to the Microsoft domain and authenticating the user on the custom UI defined in Azure, we want to call the the Azure AD B2C…
Entra hybrid join
All devices in my tenant are Azure ad registered + on premises ad joined when i enable entra hybrid join in entra connect it will automatically convert to entra hybrid join or I have to manually unenroll this devices from azure ad registered and then…
An Internal problem has occured
I have tried to upgrade Azure AD but was reporting error and i decided to uninstall it and install the new installation file that i download from Microsoft AzureAD. After the installation and when AzureAD starts i am getting the below error: It appears…
Failed to Activate Intune Admin role (Additional verification required)
Today when I was trying to activate Intune Administrator role, it asked me for Additional Verification. Once verification is done it still asks for Additional Verification and then it continues like a Loop and Intune Admin role is never activated. Issue…
How to emit some data field on azure AD JWT token
We have integrated a web client with OAuth to authenticate using Azure AD and are storing the token for later use. However, we need to exclude certain sensitive data, such as email, IP address, and name, which are not necessary for the application. Could…
Conditional access policy in reporting mode shows unknownFutureValue
Hi There, I have a conditional access policy configured in report-only mode to enforce MFA for device registration. The report-only data shows no hits for report-only success or interrupted state; rather it shows some hits with status as…
How do I configure IP Restriction in Entra P1
We setup Entra P1 and activated an IP restriction on one user as a test. The user reports they can still access outlook email on their phone even though it’s not the whitelisted IP address - Any other configuration to do? I also checked my home PC…