Set correction for set...
Hi, after an upgrade from FIM2010 to MIM 2016SP2 (4.6.641.0) I realized that there is a strange issue about sets membership. There is a simple set filtered by an integer value ( isdisabled=0). Problem is about membership recalculation when a user change…
How to Authenticate Azure service using managed Identity
Hi Team, I am trying to authenticate azure service with managed identity but it shows below error however all required accesses are given to identity. Code - string userAssignedClientId = "AAABBBBCCCC"; var defaultAzureCredentialOptions…
Workday-OnPrem AD- Azure AD Integration issue
Workday-OnPrem AD- Azure AD Integration issue Here is our setup, ill describe the issue later in the post. We onboard the employee in workday and an employee id is generated with E000XXXXXX. This employee id is manually copied and entered into a manually…
How to authenticate with Federated identity credential using Data factory user managed identity
I am trying to access a azure protected resource (Data lake) of another azure tenant from my azure tenant using data factory linked service. It works using client secret. However, when using Federated identity credential in the app registration and user…
How to configure security monitoring and alerting for user management
I am trying to create the following alerts: User addedTriggered when a new user has been added.User removedTriggered when a any user has been removed.User privilege changesTriggered by any configuration change of any user.I already tried to do this via…
Azure ADB2C callback url is giving bad request of redirect from OpenID connect
Hi, I have a single sign-on solution using Azure ADB2C. I use custom policies. We have different IDPs and one of them is Auth0. We are connecting to Auth0 using OpenID Connect, but looks like we are having an issue in redirection after user…
Where do I find the Tenant ID for a particular account
What would be the Tenant ID for UK based Coca Cola European Partners (CCEP) now known as Coca Cola Europacific Partners (CCEP)?
CoreHttpProvider[sendRequestInternal] - 423 Error during http request Throwable com.microsoft.graph.core.ClientException: Error
Hi, I am working on the MSAL SSO and using graph API for fetching the user and groups from the Azure AD. Previously it was working fine but suddenly it was giving me below issue: CoreHttpProvider[sendRequestInternal] - 423 Error during http request…
Granting permission to managed identity for PIM approvals
I am building a logic app that will send adaptive cards in teams to PIM role approvers when a user requests to activate it. However, I am unable to find a way to allow a managed identity within the logic app to authenticate via the graph API to approve…
Not able to get access token using MSAL.Net in VSTO application
I have created a VSTO Excel Add-in project (with C#, Target .Net Framework version 4.8, Visual Studio 2022, working on Windows 10 Enterprise (version 21H2)). With this Microsoft Excel add-in, I want to do authentication for my APIs by getting the…
Managed Service Identity | Azure Function APP
Hi Team, Now as per Microsoft recommendation we need connect storage account or any other resources by managed identity. Here while creating function app or provisioning new function app, it is having two default app settings as mentioned below like …
How to tune Initial access incident to not trigger if there was no successful login
I am getting a significant amount of alerts from detection source AAD Identity Protection on my MS Defender Incident page, that are called "Initial access incident involving one user" and "Multi-stage incident involving Initial access…
Blocking Personal Devices While Allowing MFA for Specific Applications
Hello team, Could you please send me steps on how I can block personal devices but allow MFA access for specific applications like Citrix. Thank you for your help
Missing Cosmos DB Built-in Data Reader and Cosmos DB Built-in Data Contributor roles in Access Control (IAM)
I'm trying to assign roles to managed identity in Cosmos DB, through browser using Access Control (IAM). Unfortunately two build in roles Cosmos DB Built-in Data Reader and Cosmos DB Built-in Data Contributor are not there. How can I add managed…
How can I use different table in asp dot net identity rather that identityUser table, what configuration need to be done in the dbconxtext, controller and program.cs file?
I am beginner in Asp dot net core and I want to use make login functionality in my project but don't have an idea on how to do it, so if you can help me it would be great.
how to identify the admin that dismiss the user risk in Identity Protection?
I need to be able to verify who is acting upon notification on the Identity Protection Azure service. I'm not able to find the logs to identify the Admin that "Dismiss user(s) Risk" for "Risky Users", nor that "Confirm…
IDX40001: Issuer: does not match any of the valid issuers provided for this application
My Azure AD B2C application has suddenly stopped authenticating requests due to "IDX40001: Issuer: 'https://<tenant>.b2clogin.com/<tenantId>/v2.0/', does not match any of the valid issuers provided for this application" Looking at…
How to disable MFA for all non-admin users
I manage an org that has many shared user accounts due to our many volunteers. For example, our Facilities team volunteers all login to M365 using the same facilitiesuser@mydomain.com user. I do not want these users to be required to use multifactor…
CS0246: The type or namespace name 'ApplicationUserManager' could not be found
My Visual Studio 2022 ASP.NET C# program was working fine. After installing the latest updates for Visual Studio 2022 and Dependencies (Assemblies and Packages). I started to get the error in the title. I have the Microsoft.AspNet.Identity.Core and…
SFSafariViewController is not returning to iOS app
Hi, I am working on the MSAL SSO login when I set the .safariViewController in webViewParameters and try to login then it is not returning to the iOS App, it just show DONE button on SafariViewController. I have also checked the other thread and everyone…