How can I create GraphServiceClient using AccessToken from AuthenticationResult
In my code I already used AcquireTokenSilent and AcquireTokenInteractive; they provided an AuthenticationResult (with AccessToken) which I would like to use to create a GraphServiceClient. I could not find a suitable constructor so I hacked a solution…
Outlook on Mac, getting Error 50089 - Flow token expired - Authentication Failed multiple times daily
Referred to this forum to post this question from answers.microsoft.com post Hello, We have a Mac OS user at our company that has been getting repeated prompts for their password daily from Outlook. These issues started a few weeks ago. When looking in…
Authenticate the Azure App Services with the Microsoft Entra ID in UWP app
Hi, We are utilizing Azure App Services for our Azure Mobile Apps table in the UWP apps. Our mobile apps currently access the Mobile Apps table with anonymous access level via Azure App Services. However, we have decided to enhance the security of our…
Changing Entra Domain Services SKU from Standard to Enterprise
I am attempting to upgrade the SKU for my Entra Domain Service from standard to enterprise. The documentation says that this change should take only a few minutes. After several hours (13) it is still stuck on saving SKU. Does anyone have any suggestions…
How to fix a users identity from "mail" to "ExternalAzureAD"?
I invited 3 users to our tenant, 2 of the users have been assigned "ExternalAzureAD" while the other is showing "mail". This is causing blocks as that user also needs to have the identity of "ExternalAzureAD".
How to check if objectId is null or empty?
For my sign up and sign in flow with Azure AD B2C I try to check, if the user already exists in the Azure B2C database with the specific signInName. If he already exists (objectId is not null) he should be redirected to signIn - if the user doesn't…
FIDO2 NFC Security key vs Android phone
Hello, I have configured FIDO2 as the only sign-in method for my tenant. It is also enforced through CA policies as phishing resistant MFA. Our FIDO2 keys are NFC compatible. The NFC experience from an Iphone is similar to the browser and works great:…
How to clean up "Sign-in with your passkey" options
Hello, I have enabled FIDO2 as sign-in method and enforced it with CA policies for a pilot group. One of the users is seeing his phone as device with a saved passkey. Where did this option come from and how to disable it? The desired option is ONLY…
Entra Seamless SSO - Office 365 unlicensed and SSO not working - non persistent VDI
I have an issue with SSO failing for Office 365 rendering the product unlicensed, as well as any other hosted Office apps in a non-persistent VDI. I've validated the following: SSO configuration: autologon.microsoftazuread-sso.com URL is configured as…
Renewed Azure Multifactor Auth Client Certificate still showing expired in Enterprise Applications
Yesterday, a certificate for VPN MFA expired. As stated in the accepted answer in this question: https://learn.microsoft.com/en-us/answers/questions/195259/tenantid-certificate-for-vpn-mfa-expired-how-renew And going through the documentation:…
Xamarin MSAL Azure AD ADFS AcquireTokenInteractive error
Hi I just seen this error in our app , ERROR Web page not Available The web page at https://adfs.srm.com/adfs/ls/wia?client-request-id=########## Could not be loaded because : net::ERR_HTTP_RESPONSE_CODE_FAILURE Normally the user enter their email…
Prevent standard users from creating subscriptions in Azure
Hello, Looking in our Azure portal, a few standard users have created subscriptions. I need to be able to prevent this. I have already set the AllowAdHocSubscriptions tag to false using MSOL, but users are still able to make subscriptions. Is there…
Question regarding notification about being required to create all applications inside of a directory
Hi, I noticed a banner coming up in my "App Registrations" page saying: These applications are associated with the account but are not contained within any directory. Starting June 2024, you will be required to create all applications inside of…
B2C Microsoft identity provider with msal-browser 2.x login error code challenge require
Please see my issue in MSAL Github: B2C Microsoft identity provider with msal-browser 2.x login error code challenge require I got a suggestion to ask in the community maybe someone has an answer or has the same issue, Why does B2C not forward some…
Hi, I need to migrate/move my Entra Domain Services to new Subscriptions.
Hello, I need to migrate/move my Entra Domain Services to new subscriptions. What could be the possible steps and also any documentations would be greatly appreciated. Thank you! Kind Regards, Majid.
How do I connect Azure to my PC, it opens freely on my mobile phone but not on my PC and its giving me concerns
I have Azure on my phone but when I want to connect it to my laptop it does not recognize my email again. Please I need urgent help
Onedrive Silent Configuration Expectation and Troubleshooting
I'm using OneDrive for Business and the Sync app (latest and on production ring) on Windows 10 22H2 Enterprise machines. They are all HAADJ (Hybird AzureAD Joined). As part of our Pilot group users have been giving us feedback on their experience and one…
Unable to connect to my account in Azure from Azure cli.
PS C:\Users\femia> az login Please select the account you want to log in with. Failed to authenticate bbcfc176-9067-42c4-baac-90fe62adaa58 'Default Directory' due to error '(pii). Status: Response_Status.Status_InteractionRequired, Error code:…
Upgrade "Access to Azure Active Directory" subscriptions request via email
Hoping for some help (as a MS Partner) received the following email "Your subscription offer, Access to Azure Active Directory, will be disabled on May xx, 2024..." "If you currently have active resources in your Access to Azure Active…
Disabling PIM for Groups Assignment Expiry Emails
Hi, we have a requirement to disable the emails that assignees to a PIM group membership receive before expiry. These are the emails that contain text like this: "Your Member role in the <group> Security will expire in 14 day(s)" I…