Microsoft Entra ID

Unable to unistall Microsoft Entra Provisioning Agent Package - 0x80070643 Fatal Error 'Missing File'.

I am trying to deploy the API-Driven Provisioning for On-Prem and I tried to install the Microsoft Entra Provisioning Agent Package. The installation failed and it stated that there was a missing MSI package. When I tried to uninstall the files that…

I want to close my old hotmail-account but I cannot as there is a tenant using that account

I want to close my old (not in use anymore) hotmail MS-account. But while attempting to close it, the system tells me there is a tenant (I do have the Tenant-ID) using that account. I do not remember why/when/how I ever setup such a tenant. But if I go…

Setting up Entra ID sign-in for Azure B2C with custom policy, wrong openid-configuration URL

Hello, I followed the guide setting up Entra ID as a sign-in method for Azure B2C. I have successfully tested the custom policy and and the correct claims are showing on jwt.ms. However, when I use MSAL React to make a request on Azure Functions, the web…

After Security Defaults are enabled after 14 days, how long until users are prompted for MFA

Hi, We are were prompted during Microsoft SSO that the Security Defaults for our tenant will be enabled. As we are still prepping to roll out MFA for users, I am curious on how quickly the users will be prompted to register for MFA? Ideally, we…

Provide some scenario's on this values -> Verify and Sign in KeyCredential usage property

I am little bit confused with the documentation of Certificate Credential flow. Above documentation link -> https://learn.microsoft.com/en-us/graph/api/resources/keycredential?view=graph-rest-1.0#properties In another document it was mentioned like…

Limited or No Access to a B2C Tenancy to New Developers

I've added myself and another dev to the tenancy, resource group and subscription as contributors to an already up and running B2C Tenancy and yet we still get the error message reading "Limited or No Access" which claims that I don't have an…

Unable to upgrade to Entra ID P2 Tier from my Azure Free Account.

Hello There, I am currently studying for my AZ-104 exam. So I had a free Azure account registered with an email id, say user1@outlook.com. I was accessing it for a month until I wanted to create & manage tenants and explore Entra ID. Now, I…

Sending Azure AAD provisioning logs to Splunk

How can we send user provisioning logs from azure Aad to Splunk for monitor.

How do you use a conditional access policy to block end users access to Admin Portals while allowing end users to download office from portal.office.com?

Hi wonderful people With portal.office.com now classed as an Admin Portal: From support How do you use a conditional access policy to block end users access to Admin Portals while allowing end users to download office from portal.office.com? …

Call me is blocked for almost 24 hours after more than 10 attempts to specific number

Upgrade "Access to Azure Active Directory" subscriptions request via email

Hoping for some help (as a MS Partner) received the following email "Your subscription offer, Access to Azure Active Directory, will be disabled on May xx, 2024..." "If you currently have active resources in your Access to Azure Active…

Setting up Workday/Entra ID integration to handle leave of absence without deleting user

We currently have Workday provisioning users to Entra ID, however there's been an ask to have employee accounts disabled while they're on leave. The integration is set to have the "Create" and "Update" options allowed but not…

Outlook on Mac, getting Error 50089 - Flow token expired - Authentication Failed multiple times daily

Referred to this forum to post this question from answers.microsoft.com post Hello, We have a Mac OS user at our company that has been getting repeated prompts for their password daily from Outlook. These issues started a few weeks ago. When looking in…

Joining a VM to Microsoft Entra ID Tenant

Hello everyone, I recently set up an Entra ID tenant, which currently uses the default .onmicrosoft.com primary domain. For the purpose of this discussion, let’s refer to it as XYZ.onmicrosoft.com. Now, I’d like to join a virtual machine (VM) to this…

How to Authenticate Scan to email mailbox

Our organization is trying to have all mailboxes set up with MFA so we can turn of legacy. The issue is that we have scan-to-email function set up through a UserMailbox, so if we convert this to a SharedMailbox, users will no longer be able to use it for…

Intune PIM roles needed to view Log Analytics in Entra ID

What role(s) do I need to have activated in order to view Log Analytics within Entra ID? When I looked into it, I saw that you need Security Admin and Global Reader activated. I have both of these roles, although when I go to Entra ID -> Log…

Azure AD B2C LinkedIn IDP does not work

Using the standard options to add LinkedIn as an identity provider on my B2C tenant does not work. Seems like the current integration is still using r_emailaddress and r_liteprofile scopes, which are not support by the new LinkedIn OpenID specification.

sign out and sign in to another Azure directory

Hi, I was a freelancer for a client and needed to create an additional directory (with the same email address as my original one). Now I don't work for the client anymore, deleted the directory at myaccount.microsoft.com and still every time I want to…

TENANT LOCKOUT - FAULTY CONDITIONAL ACCESS POLICY

We have been locked out of our tenant for almost 3 weeks now due to a faulty Conditional Access policy. During these 3 weeks, there have been countless conversations with a number of Microsoft support agents/technicians, none of which seemed to have an…

Enabling SSSO through AADC is not working.

I'm having trouble setting up seamless SSO in our hybrid environment. I'm trying to do pass-through AAD authentication, not AD FS: all of our clients are WIN10 and above all of our devices are synced to Azure port 9090 is not blocked AADC is the…