Changing Entra Domain Services SKU from Standard to Enterprise
I am attempting to upgrade the SKU for my Entra Domain Service from standard to enterprise. The documentation says that this change should take only a few minutes. After several hours (13) it is still stuck on saving SKU. Does anyone have any suggestions…
Correct way to convert 365 tenant from AAD Connect Sync to cloud-only
Hi, about a year ago, one of my customers has enabled AAD Connect Sync to synchronize all users, security groups from their existing on-premise Active Directory to a freshly setup Microsoft 365 tenant. This past year all applications and services have…
ASP.NET Core web app with Microsoft SSO via Azure Microsoft Entra ID and not manage secrets - is it possible?
In the Azure Portal, I create a resource Microsoft Entra ID and then add an app registration. In the app registration I can specify redirect URIs for Microsoft logins (SSO) via "Authentication" for my .NET web app: Authentication button on side…
Using Cloud sync with and Exchange Hybrid environment, changes after writeback are not visible.
According to the article about Exchange Writeback using cloud sync: "This scenario is now supported in cloud sync. Cloud sync detects the Exchange on-premises schema attributes and then "writes back" the exchange on-line attributes to…
How do we find the orphaned managed identities which are not assigned to any azure service
From a list of managed identities present in azure subscription for my account, how can I identify the managed identities which are created but does not have any roles or resources attached to it. I want to find the list of all the managed identities…
Authenticator App Being Forced
Last week I was made aware of this message some accounts were receiving upon login. We have MFA enabled for majority of accounts, but there are some that are not enrolled for various reasons. Now, even though MFA is disabled for the account, this message…
Adding Entra ID authentication to a web app that utilizes Web PubSub in Azure
I'm trying to simply add Microsoft Entra ID for authentication to an Azure web app. I have a javascript chat-app using Web PubSub that worked perfectly using this…
Adb2c password reset custom policy -Reset password using username
Hi, I am working on Adb2c custom policies and am stuck in the password reset policy where I need to reset the password using a username instead of the email address. The below screenshot is for User flows where it is provided that we can create a reset…
Azure users signing in non-interactive to BING app from CH
Hi. Azure signing logs show that we have a user signing in non-interactive from a Chinese IP address that belongs to a middle School in China. In a region the user had visited 4 weeks before. I see a lot of these sign-ins for various users in other…
How can we perform azure devops migration from one tenant to another ( not using third party tool , using Microsoft tool ) .
Our organization is trying to move from one tenant to another and for that we are trying to adopt the best practice. ( in Azure devops known as ADO ) Have googled few of the tools which were third party , but going to stay with the Microsoft tool , if…
Powershell Script to temporarily activate PIM with MFA?
Hello Everyone I am trying to write a script that temporarily activated a PIM Role to my account...the issue is, that my account is secured with MFA, so this does not work: $roleDisplayName = "License Administrator" $roleDefinitionID =…
i can't enable device from azure portal
I was disabled all my device in device section because i wanna kick some one away my account. But my device was disconnected too and i try to enable with admin account but enable button is hide. So what can i do now?
no subscription found for function during azure cli login
hi there, trying to login to an azure function using the azure cli command: az login --service-principal --username 76cd0572-51eb-45cd-b10f-714ae9244565 --tenant a7be93f8-3acb-4d50-bf93-8d3b2a96d86b --password "password" giving: …
Unable to Read/Write B2C Custom Domain Settings in Entra Admin Center
I'm following along the Azure Add your custom domain name steps and trying to navigate to the Settings>Domain name. I have global admin for the tenant which is also linked to an active subscription But there is no Setting under Identity.
Moving users across on-prem
Please help!!!! We have 3 on-prem domains abc.com.au 123.com and cab.com. They all sync back to single azure ad tenancy and gets assigned same domain for their email address (cab.com). I am trying to move selected users from the first 2 domain to the…
Unable to upgrade to Entra ID P2 Tier from my Azure Free Account.
Hello There, I am currently studying for my AZ-104 exam. So I had a free Azure account registered with an email id, say user1@outlook.com. I was accessing it for a month until I wanted to create & manage tenants and explore Entra ID. Now, I…
How to create a Teams meeting for all to join with their personal accounts?
In a personal Teams meeting, the login option isn't displayed. However, personal accounts face restrictions when attempting to join business Teams meetings via browser or desktop. Is there a workaround? Can the Graph API facilitate this process? And can…
I would like to add an Entra Tenant to Entra for Customers
I would like my the users in my Entra tenant to access my published application via the Entra for customers directory, but it looks like only Facebook and google are supported. In a future use case I will likely need all work/personal accounts to be…
I have asp.net mvc 5 integrated with Azure Single SignOn but I'm facing an error reply url AADSTS500112 error
{"error":"invalid_client","error_description":"AADSTS500112: The reply address 'http://test.edunet.bh/account/testredirect' does not match the reply address 'https://test.edunet.bh/account/testredirect' provided when…
Setup MFA for Account
Hi All i have an Azure AD account and i want to set up MFA for it. This account is a global admin account. i have logged in with this account. Microsoft Entra ID-->users--> i have selected this account. Under Authentication methods, i see two…