Workday to Active Directory User Provisioning - Management Level Attribute
Hi All! I’m trying to add a workday attribute : Management Level (senior manager, manager etc). I’m trying to use the below XPath, but it is not bringing anything…
Dont have acces to the Microsoft Authenticator app and not able to login with the email id and password also.
I have logout from the Microsoft Authenticator application by mistake, and when i try to open the Azure portal it sends the request on the app but i don't have the access to the Microsoft Authenticator application. And i have sign-in with the QR code…
Authenticator App - can't remove greyed out account
Hello all, I'm stuck in a strange loop using the MS Authenticator App. I'm one of the admins at my school and I've registered my phone via https://account.activedirectory.windowsazure.com/securityInfo using the MS Authenticator App. I wanted to…
Cross Tenant Synchronization -User Mappings
Is it possible in "cross functional tenant sync" to map source user to target tenant for trust, if so how to map the users in source tenant to target tenant by user id or UPN. user1@domain.onmicrosoft.com in source tenant used for Azure AD…
I was hacked by hacker
I check my authenticator history and a lot of request was try to access. Can we had my location to add one more layer of security to use authenticator sign in. If they try 1 time per hour I will really lost my connection one day. Maybe today or…
Unable to edit subscription roles
I seem to have to concierge subscriptions, but am unable to edit roles. I am unable to cancel subscriptions either. I cannot add any role assignments either. This is blocking my labs... I am unable to create VMs using Azure CLI or even the portal. …
Azure SAML App TEST
Hello I defined External ID and was testing it, after some time I cannot any longer start log in page and I am getting error: Mind that 6 hours ago everything was working fine.
how to fix "The experience rendered may be degraded. Additional information from the call to get a token"? I cannot access my directory or services portal.
Experiencing authentication issues The portal is having issues getting an authentication token. The experience rendered may be degraded. Additional information from the call to get a token: Extension: Microsoft_Azure_Support Resource: self The service…
Query on Access
Hi All This might be a stupid question, but I would still like to ask: Is there any recommendation from Microsoft to restrict the number of Global Admins and Domain Admins? Specifically, in an organization, how many Domain Admins or Global Admins should…
Why is Entra ID sending 'Add' Operations instead of 'Replace' Operations in PATCH request for multi-value attributes?
I'm working on updating my application's SCIM endpoints to support Microsoft Entra ID, and I just noticed some strange behavior when a User is being updated, which seems specific to multi-value attributes. In my Entra ID testing environment, I've set up…
[Azure Load Testing] - Authenticating - Auth with certificate
I am trying to run a load test for my service, and I need to obtain an AAD bearer token to communicate with my service. Until now, I used secret-based authentication and use the GetSecret() method for the client_secret in my jmx test script and then…
SCIM validator: What is the `DELETE /Groups/Id` validation looking for to pass?
I'm using Microsoft's SCIM validator, and I've gotten most of it passing now, but I'm down to one test that fails and without explaining why exactly. The test is DELETE /Groups/Id on the substep GET filter on deleted Group should not return any Groups.…
Disablement of Symmetric keys for Microsoft Entra first-party applications Service Principals
Can anyone explain the remediation path for this process step by step?
How to fix Signature validation failed when trying to validate an access token of Microsoft Entra ID
Hi, I'm trying to validate my access token signature from Microsoft Entra ID, as you can see in the below image, the "kid" attribute is different from the keys retrieved in the second image below that were retrieved from…
Why has my long running 90 day inactive Guest Access Review suddenly start using non-interactive sign-in instead of interactive sign in timestamps?
Hello, I have been running the above mentioned access review for probably 2 years without major issues. Recently it seems that the reviews have switched to looking at non-interactive sign-ins as well as interactive sign ins. There is really two issues…
How to create an Azure AD B2C Tenant from GitHub actions
Hi I'm trying to understand if it is possible to create an Azure AD B2C tenant itself through GitHub actions. The attached Bicep file (azure-ad-b2c-tenant-bicep.txt) creates a B2C tenant when invoked from Powershell but fails when invoked from GitHub…
Azure AD B2C - how to shorten the "state" parameter in the signout url to avoid query string is too long error?
Hi, we are getting a unique query string too long error upon adding one of the standard context parameters. Somehow it is getting added to the "state" property while user logging out. I have no idea why the "state" property is…
Azure AD B2C Custom policy email validation
I have a custom policy where I am trying to just confirm that the email exists in the azure application. I access to this screen via link where I have placed the email, which is correctly settled in the readOnly textBox, but when clicking on…
New account not valid from identity provider
I was testing settings with a new account I had quickly set up. Upon trying to log in i have an error of "We did not receive a valid email address from your identity provider". Is there a step I am missing? Or does simply creating an account…
Authenticator not linked to Admin Account
I am trying to log into my very small business admin account, but the 2FA keeps sending me to Authenticator, which doesn't seemed to be synced for the Microsoft admin account. I am in a vicious circle of trying to fix it, but can't because everywhere I…