How to fix - MsalClaimsChallengeException: AADSTS53003: Access has been blocked by Conditional Access policies. The access policy does not allow token issuance.
Working on azure web app and it was working fine , suddenly i am getting below error MsalClaimsChallengeException: AADSTS53003: Access has been blocked by Conditional Access policies. The access policy does not allow token issuance. The same app is…
I can't see Resource Group.
I got a role but I can't see AI_SERVICE resource group. I tried to login again and clear cache and login again & tried with other browsers. But nothing worked. How can I solve this issue?
Assign RBAC "Key Vault Administrator" role to Azure App via C# (.NET SDK)
I use below C# code create KeyVault with RBAC permission model. using KeyVaultModels = Microsoft.Azure.Management.KeyVault.Models; KeyVaultModels.VaultProperties vaultProperties = new KeyVaultModels.VaultProperties() { EnableRbacAuthorization = true, …
How to assign Azure Policy to a role or restrict user access to resource groups they did not create?
In our Azure subscription, each member has "Contributor" role at the subscription level. However, some people are creating high-cost resources, which we want to restrict. I found Azure Policy and denied the creation of those resources, but…
need to remove RBAC role when try to delete resource group before
In azure, i want to delete resource group. It is need to remove RBAC role that has been assignment to this resource group first? And then i can delete resource group. And it will release that RBAC role what has assignment on this resource group?
How to delete all Azure Active Directory or Microsoft Entra ID
Hello I`m newbie in microsoft administration so I got one test account related with my workplace and other accounts directly related with me. I dont need that account so to avoid a dead end I want to delete it. Could you delete my Azure Active Directory…
Can I assign Azure built in roles (RBAC) to security groups when setting up GDAP?
When setting up granular delegated admin privileges, as the partner, can I assign Azure built-in roles (RBAC) to our security groups, such as contributor roles, to enable my added users to work/manage with an Azure resource? or are we limited to only…
AuthorizationPermissionMismatch error when accessing blob file with indirect permission in RBAC
Hi, I'm using BlobContainerClient for accessing blobs from code (C#) private async Task<BlobClient> GetBlobClientAsync(string blobName, string container, CancellationToken cancellationToken) { var containerClient = await…
All of our Azure pipelines are failing - Datastore connection issue
Our pipelines have been running in the Azure sandbox environment for years - about a week ago all of the pipelines began failing with the following error: Error Code: ScriptExecution.DatastoreResolution.Authentication Failed Step:…
How to I change the email address from my Azure account?
My provider is deleting the Domain for my current email address so I need to create a new email address for a different domain and then change it in Azure. HOW do I do this?
I am uanble to upgrade my account because my billing access was changed automatically by Azure
Recently my account was disabled. I would like to find out how to enable it and upgrade it. Its not letting me upgrade.
"Storage account - Container - Directory permissions for viewing for a single folder user."
Good morning community, I'm seeking assistance. I want to grant permissions in a storage account so that an external user can only view a specific folder that I have hosted in a container. But so far, I haven't been able to achieve it, as I've tried in…
Default role instead of Classic Administrator
Azure classic Administrator roles are retiring. What will be the default role for identity, visual studio subscription?
“Azure AD joined device local administrator” role to grant an Azure AD user with local admin rights
Hello, can I use the “Azure AD joined device local administrator” role to grant an Azure AD user with local admin rights? would this work if the device "Join type" is either Azure AD joined / Azure AD registered? The purpose is to allow the…
How to assign Reader role to a member within my subscription when only Owner role populates?
How to assign Reader role to a member within my subscription when only Owner role populates? I am trying to assign the Reader role to a member that populates within my subscription. No options show other than Owner, which is not appropriate for this…
How to create custom scopes using custom policies in Azure AD B2C .
We have a use case to create custom scope in Azure AD B2C Using Custom policies alone. Please let us know steps if it is possible using Custom policies only.
role based access control in azure using cosmosdb
Hi i need to create role based access using json file of my company employees data which is stored as items in a container in azure cosmos db. All employees data stored in Json format. i am still confused how achieve this in azure. i am creating this…
How to assign Reader role to a member within my subscription when only Owner role populates?
I am trying to assign the "Reader" in Azure to a member that successfully populates, but no roles are available to assign except the "Owner" role. Am I doing something wrong here? I feel like more roles than just "Owner"…
Restricting read and run access to Azure Data Factory individual pipeline
Hello, Our data team support multiple research teams. We create ADF pipelines for researchers under one resource group (because it all falls under one research purpose). Since researchers aren't well-versed with Azure, we want to make sure they don't…
Error during POD deployment for configuring Workload identity
I follow this document, https://learn.microsoft.com/en-us/azure/aks/learn/tutorial-kubernetes-workload-identity#create-an-aks-cluster And seeing this error on running logs command for the pod kubectl logs pods/mypod I am learning this topic, not sure…