Possible to limit SharePoint API/ Graph API access to a specific Sharepoint List?
Hi, Currently working at a project for a client where we need to develop an API that connects and syncs items to and from one of their SharePoint lists. The client's concern is that our API will be able to access all contents on their SharePoint…
My Microsoft Account got Hacked with Minecraft on it
So today I wanted to play Minecraft when I want to log in it appears to me to connect I put in the correct email and it says that the account was not found with this username but I have emails from Microsoft and I also have the email where does it appear…
Microsoft Azure billings
Hi, I want to stop subscribe to Microsoft Azure. Please refer below to my Account information and cancel my subscription. Account information Invoice number: G039830133 Due date: March 5, 2024 Amount due: $37.40 AUD Thank you in advance.
How to extract an Active User Listing with identifier columns for "Groups/UserGroups" & "License Type"?
Hi Team, I've been going back and forth between the Admin and Entra Portals. I am trying to extract a comprehensive Active User listing for my organization with an indicator of the following: Full Name User Email Group/UserGroup Department License…
Improper permissions for Azure ad connect sync?
So we have our azure ad synced with our on prem. We have an issue where our sync agent service stops. We have had this multiple times. I noticed that the "Log On As" is listed as "ourdomain\adconnectuser" instead of NT Service\System …
How to restrict user access to a specific device
Is there a way to allow a specific user just to login on a given device ? Any other login tries should be blocked.
Azure App registration Client secret expiration
I'm using Azure AD B2C to handle the authentication in some Azure Functions. I've been using the client secret approach (as explain in the documentation) to configure the Azure App. However the client secret has a expiration date (maximum of 2 years,…
Unable to Access Windows Server 2019 Datacenter Using Azure Active Directory User
I am facing an issue while attempting to access a Windows Server 2019 Datacenter instance using an Azure Active Directory (Azure AD) user. Despite configuring various settings on the server, I encounter an error stating "the username or password is…
Why would I get different lists of users when I use OR in a dynamic group rule versus using two separate rules?
I am trying to build a dynamic group based on the existence of an Office 365 Exchange Plan 1 or 2 associated with my users. I am using the following syntax in my rule. (user.assignedPlans -any (assignedPlan.servicePlanId -eq…
Can I configure HR-driven provisioning via a created enterprise application?
Hi, we've been trying to configure HR driven provisioning to Microsoft Entra ID. I know that there are existing connectors for Workday and SuccessFactors provided by Microsoft. I'm also aware of the API-driven inbound provisioning. What I mainly want to…
Want to provision only users which are added/removed in the Groups(either security or microsoft 365) to the provisioning application and not other users, can this be possible?
I want to provision only users who are added/Removed in the Group(Either security or Microsoft 365) using the "Provision Microsoft Entra ID Groups" with the scope filter based on the display name and don't want to provision other users on the…
Authorizing only properly tagged resources for Autopilot provisioning
Hello, I need to create a conditional access policy for Windows OS, that allows the Microsoft Intune Enrollment app if and only if the provisioning machine has been registered and provided with a specific tag (e.g.: COMP-HYBRID). To achieve this goal I…
I changed my account to an internal account by accident on Azure
I was playing around with permission in Azure and ended up changing the main account to internal instead of external. I cannot access my account any more, and can't even create a request and a phone call to my regional office just told me me to create…
How to delete tenant "Default Directory"
I am trying to delete (or exit) my only Organization. after pressing "Delete": The problem is, I don't have any Licenses or Subscriptions. Also, I am the only one in the Organization. What do I do? Help
Microsoft Dynamic Membership Groups Bug with Re-enabling Users
Hello, We've encountered an issue with re-enabling users in Microsoft 365 (Entra ID). Our setup relies on Microsoft 365 Dynamic Membership groups for granting access to Teams and SharePoint. However, upon re-enabling a user, it incorrectly indicated that…
how accurate is the email address attribute from get-aduser
If you use Exchange Online (ExO) for your organisations email system (and perhaps previously used on-prem Exchange Server), how accurate & current is a user’s email attribute that would be produced if you ran a get-aduser PowerShell command on the…
Forgot Azure Admin Password, can't manage subscriptions
Hi, in the past, i've created a small directory for a registered domain - just to play around with Azure. I created an account to manage this domain and added a Exchange Online Subscription to it, the user got a a license assigned. BUT: i can't remember…
Remove last Exchange server from hybrid environment
Hi, We are Company of 10K mailboxes, and now we haves moved our mailboxes to Office 365, there are no mailboxes in on-prem Exchange. Just being used for Hybrid configuration and SMTP relay. Now we are planning to remove the last server from our…
Necessary permissions to query /users/{user}/manager?
Hi there! I've got an Entra ID app with permissions on User.Read and User.Read.All, and want to fetch the supervisor (/users/{user}/manager) of a given user on command. I've got the OAuth2.0 workflow running and am receiving a valid tokens for the Entra…
I get the error: your account has been locked, when I try to access a file shared by Microsoft employe only.
Hello, I am a partner and suddenly I started to face this problem: I get a message saying "your account has been locked" every time I try to access a shared file or recorded meeting shared by any Microsoft employee. My account is not locked,…