Inquiry Regarding Multiple 4624 Event ID Logs for Single User Login
Hello Team, I am reaching out to inquire about a matter related to our Windows Security logs. Specifically, we have observed multiple instances of Event ID 4624 being logged for a single user login event in the Security Events table. As part of our…
Correct way to convert 365 tenant from AAD Connect Sync to cloud-only
Hi, about a year ago, one of my customers has enabled AAD Connect Sync to synchronize all users, security groups from their existing on-premise Active Directory to a freshly setup Microsoft 365 tenant. This past year all applications and services have…
B2c: "userPrincipalName already exists" even though the user can't be found via the Graph API
Since yesterday 10AM UTC+2 where having some issues with creating new users via the Graph API in one of our B2c tenants. Some requests time out and retries end up with userPrincipalName already exists and HTTP 400. The problem is: the actual user cannot…
PKI - Certification Authority (CA): IssuingCA, certificate with "unknown error"
Hi everyone, I have a couple of CAs that I manage, they are Enterprice CA with Root Server in workgroup (not in domain). I have an error in the IssuingCA regarding the certificate and I think it happens when the Root CRL expires, if I copy the Root…
Unable to Read/Write B2C Custom Domain Settings in Entra Admin Center
I'm following along the Azure Add your custom domain name steps and trying to navigate to the Settings>Domain name. I have global admin for the tenant which is also linked to an active subscription But there is no Setting under Identity.
Setup MFA for Account
Hi All i have an Azure AD account and i want to set up MFA for it. This account is a global admin account. i have logged in with this account. Microsoft Entra ID-->users--> i have selected this account. Under Authentication methods, i see two…
Token validation
Laravel issue in token signature validation In which error of JWT validation error
PDC AND BDC IN DIFFERNET LOCATION
Is it possible to configure PDC and BDC in different location? if possible then how does it will work?
Can we downgrade DFL/FFL?
Hello everyone, I am wanting to upgrade DFL and FFL in my organization's AD environment. As part of the rollback plan, is the downgrade of DFL/FFL possible? What would be the steps to perform the same? Also, I looked over and couldn't find any Microsoft…
Is there a way sign into OneDrive app on desktop
We manage our own classical active directory (not Azure AD), and use the user IDs from it for logging onto computers. On the other hand, we use Microsoft Office 365 as SaaS. We want all users to save all their data to OneDrive which is part of our Office…
How to get list of all attribute in AD
Hello, How To get list of all attribute in AD(default and custom attribute ) in csv file. Thanks Rich
audit public folders
Hello Please i need your help on this issue. When trying to run audits, results are not showing. I would like to know how to audit public folders. Also i am not getting the desire results when i try to search for audit logs for compliance…
What are the benefits of the existing single forest AD Domain to convert or upgrade the AD Domain Controllers from FRS to DFSR?
What are the benefits of the existing single forest AD Domain to convert or upgrade the AD Domain Controllers from FRS to DFSR? https://learn.microsoft.com/en-us/windows-server/storage/dfs-replication/migrate-sysvol-to-dfsr FFL & DFL: Windows Server…
How to add users to power platform environment that have been already been added to a group in Azure AD?
Hi, I want to automate a process where the users that are added to a group in the Azure portal are automatically added to an environment in Power platform as well. Thanks in advance
Add exact upns
Hi All i have userprincipalnames in a csv file in the below format. usernames user1@contoso.com user2@contoso.com i want to add these users to AD group from powershell. if there are any other user with user1.a@contoso.com or user2.a@contoso.com. i…
I would like to pull a report from AD that lists all user's cn and imrPID from the Attribute Editor tab.
In our domain, People is the name of the OU housing all of our users. Each user has a unique ID assigned other than their User logon name. That unique ID is listed on the Attribute Editor tab as the imrPID. I want to pull a report from the People OU…
Best Practices for Restricting Domain Administrator Access in Active Directory
Hello everyone, I’m seeking insights on the best practices for securing Domain and Active Directory environments, specifically regarding limiting of Domain Administrator access privileges. The goal is to ensure that individuals with Domain Admin account…
Active Directory Cross-forest authentication & EventID 4776 "The specified account does not exist"
Let's say we have forestA and forestB. There is 2-way transitive trust between these forests. A service tries to authenticate a user residing in forestB against a DC in forestA. This results in an authentication failure: EventID 4776 "The specified…
What is the purpose of enabling Windows Server internal firewall for internal AD Domain servers?
People, I wonder if enabling the internal Windows Server firewall feature is going to be very helpful or not ? Because I must also create the firewall rule to allow RDP on port 3389 and ICMP ping and also the WMI for the PowerShell remoting feature for…
What is the cost of adding / removing the same user from AD B2C?
I have a question about billing around adding / removing the same user in AD B2C. In particular "Azure Active Directory B2C (Azure AD B2C) pricing is based on monthly active users (MAU), which is the count of unique users with authentication…