Security Group owner for Azure SPN
I would like to know if Entra ID security Group can be added as a owner to the Azure SPN If yes, does it require Entra ID P1/P2 license? If this can be done via portal or via command line (CLI or powershell)
i cannot sign in Azure portal.I am getting MFA issue as Error Code: 500121
Hello Microsoft Autorities i cannot sign in Azure portal. I am getting MFA issue as Error Code: 500121; I am not getting any calls or code. My number somehow getting blacklisted. Please resolve .I am struggling with this issue for around almost 1…
Get device ObjectID from a CSV list of computers using PowerShell
Hello, I have a list of 400 with device name and need to upload these to a Azure AD group. However, import bulk members required ObjectID. I need a script which will take the device name from the file containing the device and get the ObjectIDs of these…
How to enable Azure B2C biometrics login with TouchID or FaceID for web
Hi - I've been searching through Azure B2C documentation and I haven't found any concrete answers on how to enable biometrics login through an Azure B2C custom policy flow through a normal URL - not through a webview. Is there a way to enable or…
Landing zone template deployment fails -Directory. You don’t have authorization to perform action 'Microsoft.Resources/deployments/validate/action'.
Why can't I deploy the template into an environment even though I have Global Administration privileges? What Permission set is needed to deploy an Arms Template?
Azure registration not working correctly
Hello, We have an issue trying to get devices registered in Entra and Intune. The issue is that on some of the computers when we connect to office and enter creds they are entra registered and then Intune joined. But on others they create multiple…
Create a REGEX with EntraID to extract informations from group with multiples transformations for SAML Token
Hello, We have a group in our Azure AD we want to extract the end to send in a SAML Token as attribute. Let say we have this group: GRP-AppName-RoleName1-SubRoleName2 We wan to extract what is after "GRP-AppName-" -->…
I am trying to sign in to azure / get a token for with policy id by postman
I am trying to sign in to azure with custom policy / policy work fine when fo the application but does not work for postman It logins fine when I am using the client endpoint https://login.microsoftonline.com/XXXXXXXXXXXXXX/oauth2/v2.0/token but fails…
Application to be able to read only certain AUs
IT will be very helpful if it was possible for an application to be able to read only certain AUs instead of all of them. We have a multi organizations tenant and our administrators don't want to grant us the AdministrativeUnit.Read.All permission. It…
AADSTS90072 User Account Does Not Exist in Tenant
Our application utilizes Microsoft Entra as for authorization. Our application also allows clients to use their own Entra IDP for authentication, which invites their user to our tenant as an external user. Normally, when users accept an invitation, the…
Support SAML for existing app registration
I have an existing App Registration (already published on the Microsoft Entra App Gallery) that only supports OpenID connect/OAuth 2.0. How do I update my App Registration to also support SAML single sign on?
How to get the list of users who are not logged into the azure virtual desktop under a hostpool for 20 or more than 20 days ?
Hi i want to know how can we get the list of users who are not logged into AVD from past 20 o more than 20 days either they may be left from project or organization or still in project but not using it . what are the prerequisites for that i needed &…
Unauthorized access to API despite getting Access Token and Scope
Hi, Token Response: { "access_token":…
Problem Connecting a device to Entra ID
Hello. I am trying to connect a device (laptop) to my domain, say xxx.com. I am logged into my device using a personal microsoft hotmail account. I have followed the instructions detailed in: …
Removed myself as admin from my tenant.
Hi, I am reaching out regarding unexplained Azure storage charges on my account. After investigating, I have discovered that the charges are linked to a tenant ID associated with my school Azure account. However, I believe I mistakenly removed myself as…
Microsoft Entra ID P2 Trial
I have tried using the Microsoft Entra ID P2 Trial and it keeps failing, below is the message that I receive; We need some more information to verify your order. Please contact support for assistance. Click here to open a support ticket. To better assist…
How can I get the username generated by Azure for my Sendgrid subscription?
I can't log in to my Sendgrid subscription via Azure SSO. The Sendgrid account is working now, messages are sending and receiving. I have configured some functions with API key. One problem is that I can’t log into Sendgrid account from Azure…
I have disabled synchronization, now what?
I am taking our organization fully online and eliminating on-prem servers. Everything I could find on the subject (on and off Microsoft) said just to disabled Synchronization using this command: Set-ADSyncScheduler -SyncCycleEnabled $false then uninstall…
Access Azure Blob using external access token with additional policy
I have a workload that is running outside of Azure. The workload requires a blob stored in Azure in order to run. The workload can provide a custom token that follows OIDC Protocol (contains iss, sub, aud, exp etc.). The token also contains custom claims…