How to clear the account list in the Web Account Manager list of Accounts displayed by WAM Broker
I have a WPF desktop app that accesses an Azure WebAPI. It uses the MSAL library and when authenticating uses the WAM broker. When the list of accounts is displayed, there is an account of someone that used the computer once when I was logged on to the…
Unable to logout from External Identity Provider (SAML 2.0)
Hello All, I am working on React Application which will support multi-IDP logins, i am using MSAL library to implement I have configured below IDP SAML 2.0 using Microsoft External Identities. SAML for Okta SAML for OneLogin SAML for Google Suite I…
API throttling limits for multi-tenant app apply where?
Hi, For a multi-tenant OAuth based enterprise application calling the Graph API... ....do the published app and tenant API throttling limits apply to: the single global application and the "home" tenant OR each instance of the application…
Automate an Azure PIM approval workflow for Global Admin
Hi. I'm looking for a way to create an automation for Azure PIM approval from Global Admin role. We want the possible to make the approval automaticly and not wait for the person who's responsible for the approvals. I want it only for user, or maybe for…
X-MS-CLIENT-PRINCIPAL-NAME has become populated with anonymised names overnight, how can I revert this?
I have an azure app service that receives requests from authenticated users on our subscription, until today everything worked fine but now for some reason the emails that used to appear in the X-MS-CLIENT-PRINCIPAL-NAME header are now anonymised, e.g.…
Issue regarding Identity proof for Azure Examination
Hi, I have a question regarding the 'Identity Proof' for my Microsoft Azure SC-900 exam. I'm an Indian who is currently residing in Dublin, Ireland. My government issued identity proof is my Indian passport and the query is regarding if I should…
How to logout user from all tabs in blazor webassembly standalone with azureb2c
Hi team, I have implemented azure b2c with my blazor webassembly standalone application. Now when user multiple tabs in same browser and log out from one of the session it remains active in other tabs. When user refreshes the page , it still is active.…
External identity cannot accept the invitation
This user ([saadi@onminerets.onmicrosoft.com]) was invited to this tenant cfeee0c4-dbf3-44f7-b6c7-361ade5b4555 though without mailbox but was sent the invite link and when clicks the link he get this: When he clicks switch accounts, he gets this:…
Missing Cosmos DB Built-in Data Reader and Cosmos DB Built-in Data Contributor roles in Access Control (IAM)
I'm trying to assign roles to managed identity in Cosmos DB, through browser using Access Control (IAM). Unfortunately two build in roles Cosmos DB Built-in Data Reader and Cosmos DB Built-in Data Contributor are not there. How can I add managed…
MIM PAM samlpe web portal won't open error 406
Hello guys am trying to configure MIM PAM sample portal but when opening the portal for the user to request the roles I get 406 not acceptable like the img below any help like the att
Azure ADB2C callback url is giving bad request of redirect from OpenID connect
Hi, I have a single sign-on solution using Azure ADB2C. I use custom policies. We have different IDPs and one of them is Auth0. We are connecting to Auth0 using OpenID Connect, but looks like we are having an issue in redirection after user…
Error 403: Access Sharepoint using App Credentials in Python
I am trying to access files stored in SharePoint using Python. I have registered the app in Azure Ad and have client_id and client_secret. I have given the read and write permissions however I am still getting 403 error. I am not really sure as to what I…
Trusted Signing identity validation status being marked fail
We have submitted 2 identity validations, one using our DUNS and the other using our EIN and both have come back after about a week with a Validation Fail status. Our company is over 3 years old with verifiable tax returns. A link for additional…
Microsoft Identity Manager (MIM) Hardening Guide
Hello everyone, We currently have Microsoft Identity Manager (MIM) service deployed, and would like to know if there is any hardening guide available for that service. Thank you very much.
saving the Identity token in the Aspnetusertokens table
Hi I created an Asp.net core 6 project and I added the Identity framework for authentication and authorization, I would like to add token management and while doing research I realized that Identity also manages the management of tokens because it…
How to sync users and groups SID using MIM?
Hi, I want to know, how to sync users and groups SID using MIM in between source to target forest? Thanks!
Azure custom role automation
Hello All, I encountered a scenario where we needed to create custom roles for 12 Azure services according to customer demands. This involved laboriously building the role at the resource group level through IAM. The process required us to handle…
What is the recommendation for Password policy. If we are using Windows Hello For Business.
Hi Team We are implementing Windows hello for business. However, we still have option to login using password. We have password reset policy for 30 days. What is the recommendation for password policy, if we are using Hello for business? As this is going…
How to download group report in MIM system. Using powershell command or is there other way to download the data.
Hello all, How to download group report. Including Displayed Owner, Owner, alias, Account Name, Display Name, Members. Is there powershell script? Thank you.
Identity Protection-Risky Users error when attempting to dismiss user
Hello, I have a user in my Identity Protection>Risky Users that has been there for several months. This user was deleted a long time ago, and therefore I do not understand why this user is in the Risky user section? When I try to dismiss the user,…