how to fix "The experience rendered may be degraded. Additional information from the call to get a token"? I cannot access my directory or services portal.
Experiencing authentication issues The portal is having issues getting an authentication token. The experience rendered may be degraded. Additional information from the call to get a token: Extension: Microsoft_Azure_Support Resource: self The service…
unable to reset password 'due temporary issues'
when i try to reset password for users in my domain i getting this error"we're sorry, we're not able to reset this user's password right now. this may be due to temporary issues on our end. please wait a few minutes and try again" kindly…
Need Help with Multi-Tenant Azure Access Management
Hi, I'm seeking advice on managing Azure access across multiple external organizations. We manage Azure for Org A and create accounts for Orgs B and C but don't manage their Azure environments. Azure B2B isn’t an option for us. Challenges: Multiple…
Windows Hello for Business PIN reset from lock screen not working
Hi, I have Windows 11 machine, Windows Hello for Business is setup and working, also PIN reset is working from Accounts setting area where Face and other settings are. But not working from Lock screen Non destructive is enabled, 2 apps are already…
Lost Access as global administrator to my azure domain
Hello Community, I am still new to azure. I had an azure pay as you go subscription completely owned and administered by me. However i accidently changed the email address in the users section of Entra Id. This logged me out completely from the…
Unable to save bitlocker key to Azure AD account
we have a company we manage that recently got donated a bunch of laptops, I used an ISO from the VLSC that they have to install one of these laptops and used a key inside the VLSC to ensure it was a windows 11 pro/business licenced device, I joined the…
Single Sign On to different O365 tenants
Hi everybody, I have the following situation: Single Active Directory domain (domain.local) 2 Office 365 tenants (domain1.com, domain2.com) 2 ADFS Servers one of them syncing users from one OU1 to domain1.com and handling SSO. Users have UPN…
Azure entra id cost
Is the feature for Entra ID password protection chargeable? We want to use the password protection feature on Azure Entra for our on-premises domain. We already have P2 licenses for our on-premises domain. Will there be any additional charges for using…
Microsoft Server rejecting connection when installing Entra ID sync on domain controller
I've created a new Server 2019 domain controller for Entra ID sync as my other domain controllers failed to load the Entra ID sync software properly, local authentication issues with the sync service and gMSA account. The new domain controller is only…
AAD B2C Custom Policy | How to fix TOTP/MFA flow for new user to have MFA code step only once? User is prompted to enter MFA code twice in the Set Password journey for new user.
Hello Team, We've deployed a user authentication flow using Azure AD B2C Custom policy. Our process entails sending an email notification to new Local B2C users, prompting them to set a password and enable MFA (Multi-Factor Authentication). Here's the…
The registration jump page always displays like this
The registration jump page always displays like this
Microsoft Entra External ID and authentication using Microsoft Entra federation
Hello, I have been testing the MS Entra External ID sign up and sign in user flow. It came to me as a surprise that users from other MS Entra ID tenants need to be added as Guest users to the External ID tenant. In other words, the login screen in the…
cdx.transform.microsoft.com 90 days tenants limitations
Hello, I'm trying to find information about 90 days tenant limitations. I know that i could create five tenants for 90 days. What about when i have to test something on that tenant and delete it after few hours and then create another tenant in this…
Desktop Outlook failing to send e-mails, Web application working
Good afternoon, we have a handful of end users that are experiencing the same issue. When attempting to send e-mails via the Outlook desktop application e-mails are sent to the outbox and never get delivered. When attempting to send the same e-mail via…
Can we send welcome email along with user credentials on other email attribute in Lifecycle workflows ?
We have a use case where we have to onboard employees from HR system to Entra ID and using lifecycle workflows we have to enable account, assign Microsoft 365 license, send welcome email, generate TAP and send to manager and provision to some…
Azure AD B2C Custom policy email validation
I have a custom policy where I am trying to just confirm that the email exists in the azure application. I access to this screen via link where I have placed the email, which is correctly settled in the readOnly textBox, but when clicking on…
Created account, tried to access Azure Active Directory and the right panel shows ReactView frame failed to load
After creating a trial account, wanted to check to see what Roles I was given. Selecting Azure Active Directory redirects to the correct page, but the right panel shows the progress dots ... and then finally shows ReactView frame failed to load.
Can you please advise how we can set up a Service Account with the least amount of privileges.
Hi all, Can you please provide a step by step process on how we can best accomplish the below. We currently have a need for a Service Account to be set up for a data platform between Fivetran and Sharepoint. Our goal is to create a Service Account with…
Only allow Entra ID devices to make inbound and outbound requests
I have an app service that I want to close down to ALL public access. They can neither read nor write. If you're apart of the companies Entra compliant devices I want to allow them to make inbound and outbound requests. But at the same time I need to…
Ensure Intune windows users are unable to register or join personal devices to Azure AD
I need to ensure that Intune windows users are unable to register their devices or join their devices to Azure AD other than via windows autopilot. How do I set that up. This should not hamper their mobile devices like iPad and iPhone and Macs