Function App error : No User Assigned or Delegated Managed Identity found for specified ClientId/ResourceId/PrincipalId.
I have followed this tutorial https://review.learn.microsoft.com/en-us/identity/microsoft-identity-platform/federated-identity-credentials?branch=main&tabs=dotnet#more-resources And added the user assigned managed identity as federated identity…
What is the best way to migrate an Offline Root CA to Azure?
I have an offline root CA in my on-premises environment. I also have an Issuing CA. I want to move this infrastructure to the cloud and have an IPSec tunnel connecting back to on-prem infrastructure. I plan to rebuild the Issuing CA in Azure rather than…
Entra on-premise password protection, without deploying Azure, hybrid environment
We have an on prem AD, with one way AD sync to M365 on E3 level. We are looking for clarification to the following question, want to know if it is possible to deploy Entra on-premise password protection, without deploying Azure/Entra AD?
Hi, I need to migrate/move my Entra Domain Services to new Subscriptions.
Hello, I need to migrate/move my Entra Domain Services to new subscriptions. What could be the possible steps and also any documentations would be greatly appreciated. Thank you! Kind Regards, Majid.
Domain should match the passive sign in uri
I am trying to configure an external identity provider in Entra. When I try to do it I get the error "domain should match the passive sign in uri" I tried editing in the DNS of the domain exactly as its shown in the error: TXT…
Unable to receive the weekly digest for PIM
Right now we're using PIM with just-in-time access for the Global Admins. Before we received that PIM weekly digest every Sunday. What I want to confirm is if we need to have a Global Admin active when the weekly digest is sent or if there's a way to…
Azure Adb2c External IDP Authentication Browser Back Button Click redirects to External IDP Again
We have AD B2C Authentication with .NET 8 MVC Web Application. We configured Open Id Provider with Custom Policy in Adb2c. The authentication is working successfully. But the problem is, after the External IDP successful authentication, the provider…
The provided value for the input parameter 'redirect_uri' is not valid. Using Authentication/Authorization AAD
I'm using Authentication/Authorization from the App Service Settings. I already inputted my clientID which I created from App registration in Azure Active Directory and Issuer url as https://login.microsoft.com/Tenant_ID/v2.0 Under my App…
B2C Sign Up Issue in Azure API Management Developer Portal
Hello, I'm encountering an issue with my API Management developer portal. Currently, the portal only permits sign-ins and sign-ups via B2C. Previously, I successfully tested the sign-up and sign-in system. However, after updating the gateways for both…
ERROR: The user, group or application does not have secrets get permission on key vault
Azure Pipeline throws the below error but I am unable to find the correct appid. Is there a way to back trace and figure out the correct "appid" using the "oid" printed? and what is oid (object id ?) ERROR: The user, group or…
FIDO2 NFC Security key vs Android phone
Hello, I have configured FIDO2 as the only sign-in method for my tenant. It is also enforced through CA policies as phishing resistant MFA. Our FIDO2 keys are NFC compatible. The NFC experience from an Iphone is similar to the browser and works great:…
Deploying Azure SQL API Connection for Logic App using ARM
I have successfully created an Azure SQL Connection and registered it in the Logic App. However, I would like to authorize the connection manually, similar to creating a connection to one of the O365 services. When I create the Azure SQL Connection and…
Sign-in Frequency evaluation
Hello, With respect to Sign-in Frequency evaluation, is this flow-chart still valid after the advent of AUTHENTICATION-STRENGTH ??
Adding Entra ID authentication to a web app that utilizes Web PubSub in Azure
I'm trying to simply add Microsoft Entra ID for authentication to an Azure web app. I have a javascript chat-app using Web PubSub that worked perfectly using this…
BING non-interactive sign-in attempts
Hi all I got a lot of warnings in my tenant that user is trying to authenticate from outside US because we have outside of US access is controlled in our organization when I check the log, I found this: Non-interactive sign-in App = BING IP = is showing…
Teams Meeting Joining GCC Meeting Error
When a user receives a meeting invite from an organization in the Government Community Cloud (GCC) environment, they have trouble joining the meeting if they try to sign in. Is this normal or is something in our tenant causing it? I believe they can…
ASP.NET Core web app with Microsoft SSO via Azure Microsoft Entra ID and not manage secrets - is it possible?
In the Azure Portal, I create a resource Microsoft Entra ID and then add an app registration. In the app registration I can specify redirect URIs for Microsoft logins (SSO) via "Authentication" for my .NET web app: Authentication button on side…
You do not have permission to create resource groups under subscription Azure Enterprise subscription
Hi Team, I am attempting to create a new Azure B2C Tenant. On the Basic step of creation, I am asked to create a new Resource Group (we do not have any existing groups yet). Whatever I type as the name of the resource group I am getting "You do…
How can I create GraphServiceClient using AccessToken from AuthenticationResult
In my code I already used AcquireTokenSilent and AcquireTokenInteractive; they provided an AuthenticationResult (with AccessToken) which I would like to use to create a GraphServiceClient. I could not find a suitable constructor so I hacked a solution…
Outlook on Mac, getting Error 50089 - Flow token expired - Authentication Failed multiple times daily
Referred to this forum to post this question from answers.microsoft.com post Hello, We have a Mac OS user at our company that has been getting repeated prompts for their password daily from Outlook. These issues started a few weeks ago. When looking in…