Automatically Authentication with Microsoft Entra ID on an Azure Function using OAuth2
I have recently added microsoft entra ID to an azure function using the identity provider, which works well - every time my azure function is triggered in a new browser session/in postman etc, the user is prompted to login using their microsoft…
Cross domain Validation for consent Management
Hi , We have a ADB2C Domain is configured from Azure and application is hosted on TP server. During Domain url [abc.com] Launch it's is redirecting to adb2c url [adb2c.com] and once authentication completed it will be redirect back to Actual…
Global secure access and Entra ID private access licensing question
Hello, I would like to know if Microsoft Entra Internet Access and Microsoft Entra Private Access have already become generally available as in this article…
When we are doing test connection form MS Azure to successfactors getting error as Invalid credentials
Testing connection to SuccessFactors to Azure AD User Provisioning You appear to have entered invalid credentials. Please confirm you are using the correct information for an administrative account. Error code: InvalidCredentials Details: No persons…
Regarding the phenomenon to sSSO(seamless SSO) can't be performed
Hi, I'm Japanease. using translate to create questions. Azure AD Connect (Entra Connect) is used to link on-prem AD and Azure AD, and seamless SSO is enabled in that environment. The computer to joined in the local domain can access for office365…
Entra Hybrid join
We are planning to entra hybrid join devices .At present devices are domain join+intune enrolled(Entra registered).We allowd 4 urls for connectivity in firewall and proxy.we run test device regconnectivity.ps1 in test devices we are getting connectivity…
Assistance with Dynamic Membership
Hi, I created a dynamic security group in Azure and am trying to see if i can get membership to the group based on the suffix (@suffix.com). I've tried selecting User Principal Name, but it doesn't take. Assistance is appreciated! Best, IV
![](https://techprofile.blob.core.windows.net/images/_9GJxygFEki1oC9RQ5c9yw.png?8D83E5)
![](https://techprofile.blob.core.windows.net/images/a1395d6d60e64acc8c1bfc104037f1aa.png)
How to programmatically handle the SAML x509 certificate getting updated automatically?
We have an SSO defined for logging into our app for all users and experiencing something weird. After some time the SSO certificate gets renewed by itself in Azure, leaving our users out. Azure can automatically change their signing certificate, and this…
Limit permissions to update a single Azure AD group via API
We have a requirement where we want to use an automation to add users to a specific group in Azure AD via API calls. Our security policies require us to apply the principle of least privilege when doing this, meaning that we should only provide…
Windows Hello for business for Hybrid Entra Joined devices
Environment: -No UPN matching between onprem AD and Azure, Third party federation and User provisioning . -Hybrid Entra Joined devices -Enrolled to Intune using device credentials as SCCM is setup with co management (Cloud Attach). Question: Whether…
Is there an Introspection Endpoint available to validate Microsoft SSO tokens for SPAs?
I'm looking to implement token validation for a Single Page Application (SPA) using Microsoft SSO. Specifically, I'm interested in knowing if Azure provides an Introspection Endpoint that allows me to verify tokens generated by Microsoft's SSO service.…
Migrating On Prem DC to Azure
We are planning to decommission our on-prem physical Domain controller and have a DC in cloud. AD Sync is already set up and all the data has been syncing to Azure AD. We are planning to move away from this old physical server which has 2012 installed on…
How to register device on Entra ID programatically
Hi , I want to register my local device to Entra ID using c#. I have gone through the Microsoft Graph API documentation as well but didn't get any information related to this topic please help me.
How to Create a Device on AAD Using Microsoft Graph API ?
I'm trying to use the Microsoft Graph API to create a device in Microsoft Entra ID. I need to generate a device ID and include it in the deviceid property of the POST request. Additionally, I want to know if this API call can join my Windows machine to…
Old Account transferred to the Entra Tenant
Hi All, My original community account got transferred without any notice to my tenant account. I am worried if this is a security breach as another a new user was also created (this one) automatically when I logged into my community account. Let me know…
SAML Authentication on multiple Service Principals (SPs) with only one login
Hi. I have two firewalls acting as proxies. Each firewall has different resources behind them. This firewalls are configured as SAML SP's and Azure as SAML IdP to get authentication with Microsoft credentials before access any resource behind the…
Azure Active Directory web credentials stored following RDP session
I have 2 devices. 1 Entra joined device and the other 1 is a PC but both are connected in a same network. I tried to connect my Entra joined device from PC through Remote desktop Connection(“Use a web account to sign in to the remote computer” option).…
is it possible to exchange SAMLv2 token issued by Azure AD for a Microsoft Graph access token
we have offline application which needs to access Graph API User login is done using SAML app registered with AAD and got SAML Assertion. when used this SAML assertion to get access token getting below…
Authenticator code required after password reset.
Few days ago I change my admin account password. At that time I didn't have any authenticator configured with my admin account so it didn't ask for any code when I change the password just by verify me sending me a verification code in my email and I…
Company Branding in Azure ADB2C - Cant edit or save
We are setting Azure B2C and at the moment arent able to edit the company branding. We have followed the pre-requisite and have the necessary licenses and the roles but still unable to edit/configure the branding. I have Microsoft Entra ID P1 license…