Azure B2C Session timeout is not working as expected on password reset page
I applied below session settings in password reset journey as well as default user journey. But the session is not getting expired if browser is let idle for more then 15 min (Even tried after 2 hours). Session is only getting timeout after refreshing…
Microsoft Entra SSO integration with FortiGate SSL VPN connectivity issue
Scenario: Microsoft Entra SSO integration with FortiGate SSL VPN I am unable to connect via FortiClient vpn version 7.2.x.x. But when i use FortiClient vpn client version 7.0.x.x.x to connect SSL VPN via Azure ID with SAML Authentication. its connect in…
How do I connect Azure to my PC, it opens freely on my mobile phone but not on my PC and its giving me concerns
I have Azure on my phone but when I want to connect it to my laptop it does not recognize my email again. Please I need urgent help
I missed the option " join this device to Azure Active Directory" in my laptop
I'm trying to add a device to my AAD but i dont have the option to do that.
Can't sign in to my authenticator app because the sign in process get a loop and wants authenticator to authenticate the sign in! And I am also the admin of my tenant...
When I try to sign in to my account it request the authenticator code or accept and I have no authenticator app installed after install it wants the same process to sign in…also I am the admin of the tenant and there is no other users.
We have a password expiration policy set in Entra ID that forces users to change password every 90 days, but we have a subset of users with expired passwords that are not being prompted to update.
It seems that there is some commonality in the successful authentications which is that they are signing into application title: Apple Internet Accounts per sign in logs. Client app is Mobile Apps and Desktop Clients in same log. Curious if there is…
Unable to test run custom policy in AD B2C, No applications listed to run the policy
Hi, I have done all the configurations and registered required the web applications to create user flows and custom policies in Azure Active Directory B2C by following this documentation…
Azure AD: Best Practices on session timeout / token invalidation
Dear all, we are working together with a software provider that provides a password manager solution, based on a classic client-server architecture. The users authenticate via the client through Azure AD in order to access the server. We do have a…
Domain should match the passive sign in uri
I am trying to configure an external identity provider in Entra. When I try to do it I get the error "domain should match the passive sign in uri" I tried editing in the DNS of the domain exactly as its shown in the error: TXT…
The portal is having issues getting an authentication token. The experience rendered may be degraded.
When I login to the Azure Portal I keep getting a popup with the following text: The portal is having issues getting an authentication token. The experience rendered may be degraded. Additional information from the call to get a token: Extension:…
M365 hosting Tenant A and Azure AD for AAD Device on Tenant B and On prem
I have a scenario where "M365 is hosted on Tenant A with domain.com" and Azure AD for AAD Joined devices on "Tenant B with onmicrosoft.com" and on premises with "Domain.local" . Problem-User need to login using different…
The portal is having issues getting an authentication token. The experience rendered may be degraded.
An Invoice of 109 USD was generated for my new azure account for Azure support. i was unable to view or login to the portal with my azure account. The portal is having issues getting an authentication token. The experience rendered may be…
How can I setup an Azure SSO web application such that users can access the application by providing their User ID and Password instead of using the SSO login flow?
We have a web application that is configured for single sign-on with SAML in Azure. There are users (employees) setup in the Active Directory however there are other users (contractors) who are not in the Active Directory and we need to give them the…
How to fix The portal is having issues getting an authentication token
I have this when I am trying to go to Azure AD and got this The portal is having issues getting an authentication token. The experience rendered may be degraded. Additional information from the call to get a token: Extension:…
How to create a Teams meeting for all to join with their personal accounts?
In a personal Teams meeting, the login option isn't displayed. However, personal accounts face restrictions when attempting to join business Teams meetings via browser or desktop. Is there a workaround? Can the Graph API facilitate this process? And can…
MFA in Users vs Group in Entra ID
I have created a user and added the same user in a group, and enabled MFA in both user and group, In user I have enabled SMS OTP, and in group I have enabled Microsoft authenticator. Now if I have to login to the user what Authentication will work since…
How to remove an unknown tenant?
My Azure account and applications are not affiliated with a company, just my own. I somehow managed to get an active directory attached to my login that shows up in the "switch directory" option (and also "Manage tenants") that's from…
Entra Enterprise Applications Users and Groups - adding roles
When adding a role to a user or group in the Enterprise Application the role is not saved, the user or group is saved but clicking edit assignment for the user or group shows "none selected" under roles. Selecting a role and then saving…
Can we authenticate Translator service with Microsoft Entra ID
Hi Team, Currently we are using translator text endpoint and key for accessing the azure translator service. We wanted to change this method to RBAC to increase the security. We have referred the below document and in the steps it has mentioned…
Why doesn't app registration federated credentials support wildcards for branch entity type?
According to this, Azure doesn't support pattern matching for the branch entity type when adding a federated credential to an app registration. Why is this the case and will this be supported in the future. As mentioned by this, I could just use an…