How to fix virtual machine connection unknown to On-Prem Active Directory on VM start?
I have an On-Prem Active Directory connected to my Azure subscription via VPN Gateway. All the Virtual Machines in Azure have successfully joined the Active Directory and work fine in terms of AD policy, rules, users, etc. The VMs in Azure are…
Users are unable to log into Outlook mobile devices
Dear Expertise, In my on-premises Exchange environment, some users are unable to log into Outlook mobile devices. However, these same users can log in using other mobile email apps such as Gmail or the default email app through the email address. Here's…
Improper permissions for Azure ad connect sync?
So we have our azure ad synced with our on prem. We have an issue where our sync agent service stops. We have had this multiple times. I noticed that the "Log On As" is listed as "ourdomain\adconnectuser" instead of NT Service\System …
Prevent constant MFA requests for hybrid workforce
Hello, Most of our users are hybrid, working remotely via VPN and locally in office. Regardless of our 30-day MFA policy, our users are prompted for MFA every few days if they move locations between working at home and at the office. We are a non-profit…
Authenticate with Graph API and send code to Microsoft Authenticator
I'm looking for a way to verify a user is doing certain operations. And when the user approves something in a c# solution we'd like to confirm the user via Microsoft Authenticator. Basically we'd liek to display a code (similar to the Multi Factor…
Access to Azure Active Directory, will be disabled on May 2, 2024
Received this email form Microsoft. No idea What I'm supposed to do. Your subscription offer, Access to Azure Active Directory, will be disabled on May 2, 2024 Access to Azure Active Directory subscriptions were subscriptions that were used to connect to…
Adding legacy computers to the domain
We have approx 20 Mazak milling machines running either Win 95, Win 2000 Pro or Win XP. Since the beginning of the year I've not been able to re-add them back onto the domain (functional level 2016). As they are old a hard drive replacement is often…
Icone raccourci par GPO blanche windows 11
Bonjour, Dans notre infrastructure, nous avons des postes sous Windows 11 et Windows 10. Nous avons un serveur 2016 qui héberge le DC et donc les GPO. Nous avons différents raccourcis vers des pages web avec l'icône de l'application, l'icône est hébergée…
Risk and consequence when executing Kerberos password reset in a Hybrid Azure AD - OnPremise AD DS?
What are the risks and consequences of resetting the Kerberos krbtgt account during business hours using the steps defined…
The processing of Group Policy failed in Active Directory.
Hello everyone, I've installed admx file for MDM Automatic Enrollment gpo on Active Directory for Microsoft Intune Enrollment for Entra Hybrid Joined Device and applied that GPO to OU. When I want to gpo update using gpupdate /force, it shown : The…
AZUREADSSOACC Key Rollover no longer works using Hybrid Identity Administrator creds
Hi I use a PowerShell script in an Azure Hybrid Worker Runbook to automate the rollover of the Kerberos decryption key for the AZUREADSSOACC computer account. It uses a service account in Entra ID which is assigned the Hybrid Identity Administrator…
Unable to Access Windows Server 2019 Datacenter Using Azure Active Directory User
I am facing an issue while attempting to access a Windows Server 2019 Datacenter instance using an Azure Active Directory (Azure AD) user. Despite configuring various settings on the server, I encounter an error stating "the username or password is…
Regarding access token generation using REST API
We are using Azure subscription with the Standard Tier. We have a requirement to use Cost Details API in our application. For that, we need to generate access token for Cost Details API authorization. Is there any REST API available to generate access…
what are setting in GPO Should be applied for implementing tiering in AD
hello Experts, Wants to implement tiering model in AD ,what are settings we can implement in GPO point to implement tier. Any supported links and examples of GPO would be helpful. thanks Richa
how accurate is the email address attribute from get-aduser
If you use Exchange Online (ExO) for your organisations email system (and perhaps previously used on-prem Exchange Server), how accurate & current is a user’s email attribute that would be produced if you ran a get-aduser PowerShell command on the…
After Azure AD Hard-Match, users outlook will prompt "The Microsoft Exchange administrator has made a change that requires you quit and restart Outlook" occasionally
Hi all, I got a tenant with cloud users, they are disconnected from previous AD domain (let say abc.com). I changed all cloud users primary domain from abc.com to xyz.com. Then I created a new local domain AD with xyz.com, users are exactly same name…
How to onboard On-premise Windows Servers on Azure Arc on scale using PowerShell (PSSession)
We are planning to onboard our on-premises Windows Server (lowest version is 2012 R2) to Azure Arc on a scale (Approx. 400 Servers). We downloaded PS script from Azure Arc and ran from one of the servers to other remote servers using PS Session to…
Azure B2C Custom Policy donot honor login prompt
I have B2C Custom Policy and it works great except only one issue. If I pass login prompt then it doesnot work and shows select account but If same code is used against standard userflow then it works without any issue
Set "Search engine used in the address bar" via GPO
Hello- Can someone please tell me how to set "Search engine used in the address bar" via GPO, to something other than Bing? I have found various answers across the web and none seems consistent or sufficient.