How to delegate permissions to Service desk team for managing MFA in Azure Active Directory
How to delegate permissions to Service desk team for managing MFA in Azure Active Directory. just MFA reset (revoke and re-register) rights. please suggest
Navigation is unreachable in Chrome Custom Tabs when redirecting from B2C login screen back to Android Custom URI scheme
We have an Android app we are building in Flutter, that uses Azure B2C for authentication. We previously had our authentication flow running in a WebView, we got the authorisation grant, opened the login url, entered the credentials then were redirected…
how to fix "The computer did not resync because no time data was available"
i want to configure timesyncronization with my ntp server which is come from dc1.valuercm.com, i could configure it anyway from Local CMOS Clock to my NTP server, find the below details to figure out this. C:\Users\Administrator>w32tm /resync Sending…
Cannot get SSO to work in bot framework
I'm adding SSO for a multi-purpose bot. I followed the SSO example from microsoft to setup an initial POC. In my development environment I managed to make all SSO work and get the user token like this: var userTokenClient =…
I want to renew my access token whenever there is a change in the permission of the user
I have a .net core mvc and web api application where user can access api according to role assign to them. It is working perfect once user login and authenticate can access according to their role but when there is change in the role access token is not…
Microsoft Entra Delegated Permissions - Allow user to modify only their own custom security attributes
My javascript client application needs to read/modify custom security attributes via the Graph API using delegated permissions. This works if I assign the "Attribute Assignment Administrator" and "Attribute Assignment Reader" role to…
Requesting access to a customers app registration for an app you provide
I provide an app for customers to buy. Each customer has their own app. The only method to login is through azureAD via an app registration registered on the customers tenant for that app. This app registration is limited to only the customers tenancy.…
Automate sending email notifications for client secret expiration of App Registration under Microsoft Entra ID
Is there any way to set up email notifications or alerts for the expiration of any client secret in an app registration on Microsoft Entra ID ?
SCIM validation tool (https://scimvalidator.microsoft.com) PATCH tests are failing because data is submitted in a different format
Hello, I'm working on implementing SCIM endpoints with Microsoft Entra ID, and am trying to use the validation tool at https://scimvalidator.microsoft.comto test the implementation. I noticed that all of the test cases which submit requests to the PATCH…
Customize guest user invitation experience
I have a verified domain in my Entra instance and can invite external users. When they accept the invitation, they see something like the following: How can I change the mycompany.onmicrosoft.com bit? I want it to display the verified domain.
Teams Login. How to fix AADSTS50020 user account "user email" does not exist in tennant when the user does exist.
User is enrolled in inTune and everything configure via inTune works properly. Her device shows compliant. We tried deleting all apps and enrolling again. Removing cache. Nothing works. When she enrolled her personal phone, she was able to log into Teams…
Use Okta MFA claim with Security Defaults (not Microsoft Authenticator)
We have multiple tenants, one of which is licensed and is configured to provision users from Okta. Our other tenants are free-tier and have Security Defaults enabled to enforce MFA. We invite employees at their Okta user email to become B2B Collaboration…
how to configure conditional access countries for travellers
I have a conditional access rule blocking access to all countries except USA. I have a few travelers visiting other countries, but not all the same countries. How can I setup additional conditional access rules to allow access by specific travelers…
Sharepoint scopes not working throught a GDAP application consent
Hi, we have a problem when getting SharePoint settings through a GDAP relationship consent. Here's the flow we are using: Partner consent to an app with the scope https://api.partnercenter.microsoft.com/user_impersonation and offline_access Using the…
Failed to Activate Intune Admin role (Additional verification required)
Today when I was trying to activate Intune Administrator role, it asked me for Additional Verification. Once verification is done it still asks for Additional Verification and then it continues like a Loop and Intune Admin role is never activated. Issue…
Tenant and Subscription migration
Afternoon to all, I'm hoping I can some advise and read points on the following. I'll try and be concise and include all relevant details, but if you have questions about each environment, then let me know. We are a smallish company about 50 employees,…
unable to reset password 'due temporary issues'
when i try to reset password for users in my domain i getting this error"we're sorry, we're not able to reset this user's password right now. this may be due to temporary issues on our end. please wait a few minutes and try again" kindly…
Intune policies not applying on end user PC's
Hello I just took over for one of our engineers who left the firm, he did our initial intune onboarding. I was asked to build out the rest of intune, I have 100 end points joined to entra id via work or school account with the intune MDM installed from…
How to put email/Azure AD account on expiry at the certain date in Azure AD or in M365?
How to put email/Azure AD account on expiry at the certain date in Azure AD or in M365?
Application proxy: different on-premises and cloud identities
Hello, perhaps someone can give examples of what you mean by these settings? Unfortunately I didn't find…