New account not valid from identity provider
I was testing settings with a new account I had quickly set up. Upon trying to log in i have an error of "We did not receive a valid email address from your identity provider". Is there a step I am missing? Or does simply creating an account…
How to audit the creator of an Enterprise Application in Azure
Hy I'm trying to get the creator of an "Enterprise Application", as soon as someone is creating one by query below. AuditLogs | where Category =~ "ApplicationManagement" | where OperationName =~ "Add application" | mv-expand…
Entra External ID Disabling security defaults
Hello, I am exploring the possibility of enforcing MFA for either all users or specific groups using Conditional Access in an External Tenant. However, this requires disabling "Security Defaults," which is not recommended. When I try to add the…
Platform SSO password sync
Can anyone help me? I've set up PSSO, and now I'm trying to get password sync working. I've set the authentication method to Password. Since I don't have a password policy in place, that shouldn't be blocking me from entering my Entra ID password. I've…
I have subscription , in the subscription there are so many users with contributor access , i want to give access to see the state file to only one spn user how can we do that?
i have azure subsciption , i have contributor role for multiple users in the subscription leval , i have one storage account , in the storage account one state file is there, it only visisble for one particular spn user other then all the contributor…
DeviceWriteback Sync rules editor question
I want to use Device Writeback to sync back AzureAd devices back to on premise AD. When i set it up, it syncs back all devices, even devices that are currently in AD, thus creating duplicates. I need to filter the sync back to only include AzureAd…
Password Hash Synchronization heartbeat was skipped in last 120 minutes
I keep receiving an alert that my password hash synchronization heartbeat was skipped in last 120 min's but when I go to the admin.Microsoft.com it shows password syn was less the 30 min's ago. Why does this alert keep occurring?
get list of single factor authentication users with Azure CLI
do we have a command to get list of single factor authentication users with Azure CLI
SSPR_0030: Your on-premises environment is experiencing a poor network connection.
For an unknown reason, our SSPR does not work anymore, with the above message. Entra Connect Sync is up to date (no cloud sync), Pwd Hash Sync is working, Pwd writeback is configured. Already read many articles about permissions for the account MSOL and…
change the domain for registered applications
Hi all, We are in the process of migrating to a new tenant and I need to remove the domain name from O365 and add it to a the new tenant which isn't a problem in itself as I have done it many times. However, this domain name has Entra registered Apps…
![](https://techprofile.blob.core.windows.net/images/a1395d6d60e64acc8c1bfc104037f1aa.png)
WARNING: Unable to acquire token for tenant 'organizations' with error 'InteractiveBrowserCredential authentication failed: Method not found: 'Void Microsoft.Identity.Client.Extensions.Msal.MsalCacheHelper.RegisterCache(Microsoft.Identity.Client.ITokenCa
Hi Team, Can someone here please assist me with this error to connect my PowerShell session using the Connect-AzAccount ? PS C:\WINDOWS\system32\WindowsPowerShell\v1.0> Connect-AzAccount WARNING: Unable to acquire token for tenant 'organizations' with…
![](https://techprofile.blob.core.windows.net/images/WsWYoGdWukeBW66msAr6qQ.png?8D8128)
Entra User provisioning from SAP Successfactor - change odata api query - need to add filter
Hi all I'm wrestling a bit with SAP Successfactor user provisioning to Entra ID, it works good for most part, but i need to change the OData query filter. I guess this would be like this information mentioned here:…
Need Help with Multi-Tenant Azure Access Management
Hi, I'm seeking advice on managing Azure access across multiple external organizations. We manage Azure for Org A and create accounts for Orgs B and C but don't manage their Azure environments. Azure B2B isn’t an option for us. Challenges: Multiple…
Cómo introducir un código de verificación?
Entro a teams y me da un código y me pide que vaya a la app de autenticador y escriba en l número que me dice ay para verificar la identidad, por ejemplo un 89 pero ya en la app no se dónde poner o escribir ese número ni da alguna opción o algo, así que,…
![](https://techprofile.blob.core.windows.net/images/k3pGvNqV6k28ggaVHaTPrQ.png?8D803E)
Microsoft Entra Provisioning Agent Configuration error with Connect to Entra ID
Hi there, We face a problem with an normal local AD to Entra ID over the provisioning agent. The agent can not authenticate at the connection with Microsoft Entra ID: I tried to troubleshoot different options but non…
guest account status on azure AD is disabled
can you let me know if we have any limitations in creating guest account in Azure AD how many we can create reason being suddenly i observed that newly created guest account is showing as disabled on Azure AD portal and we have to manually enable it what…
Windows logon to be used for Entra ID
Hello, If a user logged on to Windows using domain account could we use that (and if so, how) to authenticate the user for calls to Web apps and APIs through Entra ID? The general idea is that user logs onto the computer and does not need to log on to…
How to automate new users to be prompted for MFA
Hello, I have enabled all users for MFA Per user. I wanted to know if I turned on Conditional access and target to a dynamic group all users group will that prompt any new user to create MFA and does that affect MFA per user if I have that enforced?
Accounts count sets to 0 in MSAL, after the application auto update. (Windows)
Hello, I hope this message finds you well. I am reaching out to report an issue I am encountering with MSAL authentication in my MAUI application, specifically related to the automatic update process using the embedded appinstaller. Here is the…
SAML attributes & claims - if elseif else scenario
Hey folks, We're testing moving user provisioning from Azure to DocuSign, and are having problems targeting the correct DocuSign account to provision the users into. According to DocuSign, we need to have the accountid and permissionprofileid attributes…