Azure AD b2C SSO with Custom Policy
My Requirement - Establish an SSO between two applications utilizing Azure AD b2C I have a website call abc.com for which all employees login through their Azure AD B2C Once Logged in successfully, they will see a link called…
Can you change a user's Azure AD UPN without changing your Active Directory UPN?
Hi, We would like to make a change to the Azure AD UPN for our staff so that it matches staff email addresses. For example, a user in our company called Jane Smith has: Email: jane.smith@company.com UPN: jsmith@company.com We would like their UPN to also…
Authentication issues with my azure account
The portal is having issues getting an authentication token. The experience rendered may be degraded. Additional information from the call to get a token: Extension: Microsoft_Azure_Support Resource: self Details: The logged in user is not authorized to…
Trying to utilise "Mailsuite" with outlook but I get the "Error AADSTS50011" + App not in Entra
Good afternoon All, I'm currently a novice that has been given the keys to our Microsoft 365 Business account. I have very light knowledge and have researched the current problem. My issue is... CEO wishes to use "Mailsuite - Formerly…
Assistance with Azure MFA Enforcement and PowerShell Errors
Hello, I recently received a notification about the upcoming enforcement of multifactor authentication (MFA) for accessing the Azure portal, which begins on October 16, 2024. While I have already enabled MFA for my users, I’m unsure if any further steps…
Failing custom domain verification
Hi, I am trying to register a custom domain with Microsoft Entra ID and the verification keeps failing. I ran the console and nslookup shows that the TXT record is found and is correct. My domain is registered and its DNS records are set on Azure. I…
Cross Tenant sync GAL not working as expected on both side
Hi there, I have setup a cross tenant synchronization between Tenant A with exchange Online and Tenant B with exchange On-premise Hybrid. I have set the ShowinAddresslist" attribute to true on both side, but for some reason I can see in Tenant A…
Cannot sign into my Army Azure account
Request Id: 4e022492-c714-4c2d-966d-8a3ebeee8500 Correlation Id: e36b8686-6efb-48f4-a4eb-230ceb3407fe Timestamp: 2024-10-09T16:34:03Z Message: AADSTS900561: The endpoint only accepts POST requests. Received a GET request.
"Domain already has federation configuration set", but it doesn't show it
Hi, I am trying to create a configuration for a domain I want to federate. The New-MgDomainFederationConfiguration failed. However, the domain now show as federated. I can't delete it, because I don't have the InternalDomainFederationId. I use the…
Sign-in event through malicious IP was successful
A user was able to sign in from a malicious source IP successfully. Why was this allowed and not blocked when 365 has a logon 'IdsLocked' error that should block a malicious IP login? ** Details:** event.action: SignInEvent event.outcome:…
Implementing Passwordless Sign-In for Student Devices in Intune-Azure AD Environment
I’m exploring the implementation of passwordless sign-in for student devices that are already Intune-managed and Azure AD-joined, with existing passwords and Azure AD usernames. Here’s what I’d like to achieve: Best Approach: What would be the most…
Unable to Access Microsoft Work Account due to Lost Authentication Code
How can login to a Microsoft work account be resolved if it requires an authentication code from the Microsoft Authenticator app? Authentication access was lost after a phone restart that impacted the app.
User's properties could not be updated after invitation Invitations blocked due to suspicious activity
Dear Community, yesterday we made a mistake. Of course, unfortunately, I did not know that copy/paste 100 "guest users" in order to share a link to a resource inside our Ondrive4Business (MS Business Standard) may create a "suspicious…
Getting "00000003-0000-0000-c000-000000000000" Audience in Access token which was expected to be "https://graph.microsoft.com"
I am encountering an issue while trying to acquire an access token using the SharePoint Online API. The expected audience for the token is 'https://graph.microsoft.com', but I am receiving token '00000003-0000-0000-c000-000000000000' instead. Request…
Need admin approval error with users from another organization.
I'm configuring an app in my organization to allow users to log in through external accounts (both personal and organizational) to access their data through the Microsoft Graph API. Additionally, the "other organization" refers to another…
Confused about MFA requirement for azure portal for my microsoft live account
I have security defaults enabled and created a test user in entra and he did get popped for the MFA. The user couldn't do anything, but that's besides the point. I do not use entra (AD) users for anything. I only login to the azure portal with my…
Error while setting up AAD Sync
While trying to setup Azure Active Directory Connect, I keep getting the following error. "An error occurred executing Configure AAD Sync task: An error occurred while sending the request." Any ideas on what to look for to fix this issue? I…
Impact of Mandatory MFA on API Calls in Microsoft Entra ID App Registrations
Is mandatory multifactor authentication (MFA) for my tenant, effective October 15, 2024, going to affect the authentication and API calls through the App Registration created using Microsoft Entra ID? Will existing API calls fail if MFA is set up for the…
How to do MFA for RDP to Windows Servers joined to Entra Domain Services
Hi there, I have a cloud only setup in my infrastructure with 25 Windows VMs. I use Entra Domain Services to manage policies on all Windows Server VMs using GPOs. Authentication to RDP is through Entra IDs that flow down to the domain from Azure. I have…