After Azure AD Hard-Match, users outlook will prompt "The Microsoft Exchange administrator has made a change that requires you quit and restart Outlook" occasionally
Hi all, I got a tenant with cloud users, they are disconnected from previous AD domain (let say abc.com). I changed all cloud users primary domain from abc.com to xyz.com. Then I created a new local domain AD with xyz.com, users are exactly same name…
Intune Devices showing as 'not active' in compliance settings regardless of clicking 'sync'
We have a hybrid set up, with Intune MDM. I just pulled a report for all non-compliant devices and wanted to make sure that they were set to compliant. We have a user with a non-hybrid device, but intune enrolled. Intune is saying it is 'inactive' even…
Issue with Syncing the new "onmicrosoft.com" Fallback Domain as Alias in Azure AD Connect
Hello Team, I am experiencing an issue with Azure AD Connect in my hybrid environment. I have recently added a new onmicrosoft.com domain to my Microsoft 365 tenant and made Fallback domain. I want to add this domain as an email alias for my…
register FIDO2 security key as sign in method without the need to install Microsoft Authenticator app
Hello, Here's briefly about policies across the tenant: Enabled FIDO2 security key as sign - in method for the user under. FIDO2 is the only enabled sign-in method for this user. Disabled Windows Hello for Business using Intune configuration…
Not able to retrieve user profile after signing in with passport-azure-ad and session cookie sameSite strict
I am building a NodeJS application with passport-azure-ad and openidconnect strategy for Microsoft login. Despite setting the cookie session sameSite to strict, I'm not getting the user profile after sign-in. It works fine with sameSite=lax.
Azure B2C Custom Policy donot honor login prompt
I have B2C Custom Policy and it works great except only one issue. If I pass login prompt then it doesnot work and shows select account but If same code is used against standard userflow then it works without any issue
Microsoft graph api to list custom role
Hi Team, Is there any API available to get the custom Azure active directory Role using Microsoft Graph API. ?
Integrating proprietary directory users with Microsoft Entra ID
Hi, our company has an Entra directory of users and a proprietary directory of 3rd party customers. In the case of the 3rd parties, we want to take advantage of Entra's capabilities. However, we've hit a roadblock as they have emails in multiple domains…
KeyChain Failed Mac for AzureVPN Client
Hi, I've been trying to set up the Azure VPN client for a customer but I'm being met with the following Error getKeyChainSecret: Failed to retrieve KeyChain secret. Status code -25300 16/04/2024 09:58:35 Warning removeClientAuthLoginCredentials: Failed…
Your organisation has deleted this device
Hi, one of our admins has deleted 200 AAD registered devices, that were registered on user initiative (add work or schoolaccount). As a result, these users can no longer access office.com. Error: Something went wrong Your organisation has…
How to give access to user-assigned managed identity on registered app on Azure?
I am trying to give access to a user-assigned managed identity to be able to create or delete secrets on a registered app on Azure. So far I have not been able to find a way to do so as registered application does not have any resource group.
How do I upload an xml file to an Enterprise App in Entra?
Trying to configure SAML on an application. I've been provided the metadata.xml and would like to upload it to Entra and the Enterprise application I have configured. My problem is simple, where do I upload the file?
How to Resolve issueAuthentication fails with an error stating "The requested federation realm object '< Object ID >' does not exist"
I am trying to add OKTA as an Identity Provider in the Entra ID. and i keep getting this error " Authentication fails with an error stating "The requested federation realm object '< Object ID >' does not exist" I have gone through…
Clarification on Azure Active Directory login event from Office 365
Hi, Following is one of the audit events pertaining to 'logon successful' in Office 365 environment which is authenticated by Azure AD. Just trying to understand what does "Login:reprocess" in the RequestType mean here ? What kind of login…
403 Exception trying to access blob in desktop client
A file in the pic is being accessed in my code and throws 403 exception in OpenReadAsync. That despite that I assigned read/write permission to all users in Azure AD. I am using this code and all the parameters and URL are correct. The strange part is…
Release date for Microsoft Entra custom claims provider
Hi, Was just wondering when custom claims provider, which is currently in preview, was intended to be released? https://learn.microsoft.com/en-us/entra/identity-platform/custom-claims-provider-overview Thanks, Tim
Do Bootstrap Services such as OCaaS Question
I understand that bootstrap services bypass conditional access policies to run uninterrupted. However, I am wondering when this service should be seen in the logs with a successful login. For example, if someone attempts to log in to Outlook mobile but…
In AzureB2C, Is it posible to apply conditional access policy in custom flow (IEF)
I have created a conditional access policy named "BlockAllNonSalesUser" using Azure B2C Portal. I can apply this policy on default user flow, the option is given in default user flow property. But we need this in custom flow (IEF) . Is it…
Is it possible to create an azure group and place a limit on the number of member .
Hello , I have a interesting issue I wish to limit the number of member of azure 0365 group . As this group will provide service for a set number of user. I Wish group owner to manage group . Thus manage the service that can not exceed x mount of…
Not able to get access token using MSAL.Net in VSTO application
I have created a VSTO Excel Add-in project (with C#, Target .Net Framework version 4.8, Visual Studio 2022, working on Windows 10 Enterprise (version 21H2)). With this Microsoft Excel add-in, I want to do authentication for my APIs by getting the…