MIM/PAM Installations-Problem
I'm currently in the process of setting up MIM/PAM according to the instructions. I keep running into the problem that something stated on the Microsoft website unfortunately doesn't work for…
Failed to create AzureadKerberos (Cloud Kerberos Trust)
We are trying to establish cloud Kerberos trust to enable WHFB in our environment. However, it is giving below error. It gives error at command Set-AzureADKerberosServer. Any advise and suggestion will be highly appreciated. We have followed below…
Changing the Entra ID directory name in the "Properties"
DirectoryIMage1.png Dear Microsoft Team. We've recently undergone a demerger and separated from our parent company. As part of the separation, we took over the M365 tenant. We created and are owning the DNS records of new domain. It is added into the…
How to tune Initial access incident to not trigger if there was no successful login
I am getting a significant amount of alerts from detection source AAD Identity Protection on my MS Defender Incident page, that are called "Initial access incident involving one user" and "Multi-stage incident involving Initial access…
Can we Enable Manage Identity in Multiple Cotainers In Azure App Service
We are currently leveraging a container registry for deploying code from Bitbucket to Azure app services within our infrastructure. In our pursuit to enhance our security measures, we are keen on enabling the system identity provider. However, we've…
Azure AD B2C - Claims transformation with 'StringSubstring'
Hi, We have single-sign-on solution based on Azure AD B2C. We also have multiple IDP's integrated through custom policies. One of the IDP is Auth0 and Auth0 has some other internal federations. When user is trying to sign in through Auth0(using…
Unable to get custom user properties (user_id) from Auth0 in Azure AD B2C claims
Hi, We have added Auth0 as IDP in Azure AD B2C using custom policies like below: <TechnicalProfile Id="Auth0-OID"> <DisplayName>Auth0</DisplayName> <Protocol Name="OpenIdConnect" /> …
Workday-OnPrem AD- Azure AD Integration issue
Workday-OnPrem AD- Azure AD Integration issue Here is our setup, ill describe the issue later in the post. We onboard the employee in workday and an employee id is generated with E000XXXXXX. This employee id is manually copied and entered into a manually…
Granting permission to managed identity for PIM approvals
I am building a logic app that will send adaptive cards in teams to PIM role approvers when a user requests to activate it. However, I am unable to find a way to allow a managed identity within the logic app to authenticate via the graph API to approve…
Set correction for set...
Hi, after an upgrade from FIM2010 to MIM 2016SP2 (4.6.641.0) I realized that there is a strange issue about sets membership. There is a simple set filtered by an integer value ( isdisabled=0). Problem is about membership recalculation when a user change…
How to Authenticate Azure service using managed Identity
Hi Team, I am trying to authenticate azure service with managed identity but it shows below error however all required accesses are given to identity. Code - string userAssignedClientId = "AAABBBBCCCC"; var defaultAzureCredentialOptions…
How to configure security monitoring and alerting for user management
I am trying to create the following alerts: User addedTriggered when a new user has been added.User removedTriggered when a any user has been removed.User privilege changesTriggered by any configuration change of any user.I already tried to do this via…
Where do I find the Tenant ID for a particular account
What would be the Tenant ID for UK based Coca Cola European Partners (CCEP) now known as Coca Cola Europacific Partners (CCEP)?
CoreHttpProvider[sendRequestInternal] - 423 Error during http request Throwable com.microsoft.graph.core.ClientException: Error
Hi, I am working on the MSAL SSO and using graph API for fetching the user and groups from the Azure AD. Previously it was working fine but suddenly it was giving me below issue: CoreHttpProvider[sendRequestInternal] - 423 Error during http request…
How to authenticate with Federated identity credential using Data factory user managed identity
I am trying to access a azure protected resource (Data lake) of another azure tenant from my azure tenant using data factory linked service. It works using client secret. However, when using Federated identity credential in the app registration and user…
Blocking Personal Devices While Allowing MFA for Specific Applications
Hello team, Could you please send me steps on how I can block personal devices but allow MFA access for specific applications like Citrix. Thank you for your help
How can I use different table in asp dot net identity rather that identityUser table, what configuration need to be done in the dbconxtext, controller and program.cs file?
I am beginner in Asp dot net core and I want to use make login functionality in my project but don't have an idea on how to do it, so if you can help me it would be great.
IDX40001: Issuer: does not match any of the valid issuers provided for this application
My Azure AD B2C application has suddenly stopped authenticating requests due to "IDX40001: Issuer: 'https://<tenant>.b2clogin.com/<tenantId>/v2.0/', does not match any of the valid issuers provided for this application" Looking at…
How to disable MFA for all non-admin users
I manage an org that has many shared user accounts due to our many volunteers. For example, our Facilities team volunteers all login to M365 using the same facilitiesuser@mydomain.com user. I do not want these users to be required to use multifactor…
CS0246: The type or namespace name 'ApplicationUserManager' could not be found
My Visual Studio 2022 ASP.NET C# program was working fine. After installing the latest updates for Visual Studio 2022 and Dependencies (Assemblies and Packages). I started to get the error in the title. I have the Microsoft.AspNet.Identity.Core and…