1,165 questions with Active Directory Federation Services tags

Sort by: Updated
0 answers

AADSTS51004: The user account it does not exist in the e8c002ec-e5f4-4a8f-a41b-ce101e0a1a51 directory. To sign into this application, the account must be added to the directory

Hello, I am writing concerning an issue that I am experiencing, specifically with Federated domains where the entity provider is Google Workspace and the service provider is MS 365 A1. Even though from Google I reauthorise automatic provisioning for…

Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
5,549 questions
Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,165 questions
asked 2024-02-25T17:10:40.23+00:00
preside presidenza 0 Reputation points
0 answers

Problem with AD Connect

I inherited a system that had been federated to Azure using ADConnect v1, then they deleted the server and connected loaded ADConnect v2 and synced the domain to this. The cert expired and that is when I learned the did not use Federated domain to load…

Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,165 questions
asked 2024-02-21T22:12:36.4966667+00:00
United Telephone Company 0 Reputation points
commented 2024-02-22T19:57:24.05+00:00
JimmySalian-2011 41,631 Reputation points
1 answer One of the answers was accepted by the question author.

Bypass HDR at ADFS for case Azure B2C as SAML Identity Provider

I have setup per this article https://learn.microsoft.com/en-us/azure/active-directory-b2c/identity-provider-adfs-saml?tabs=windows&pivots=b2c-custom-policy It is working but now I need to Federated with another partner. Added this partner to Claims…

Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,165 questions
Microsoft Entra External ID
Microsoft Entra External ID
A modern identity solution for securing access to customer, citizen and partner-facing apps and services. It is the converged platform of Azure AD External Identities B2B and B2C. Replaces Azure Active Directory External Identities.
2,571 questions
asked 2024-02-19T19:46:28.45+00:00
BlackCat 61 Reputation points
accepted 2024-02-21T22:30:56.6266667+00:00
BlackCat 61 Reputation points
0 answers

Why Entra joined machine need certificatemixed endpoint in ADFS ?

According to this https://learn.microsoft.com/en-us/entra/identity/devices/device-join-plan#federated-environment in ADFS certificatemixed endpoint need to be enabled . Entra Joined machine does not have MFA during machine login and it uses only user…

Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,165 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
18,642 questions
asked 2024-02-19T13:05:57.9433333+00:00
AJ 20 Reputation points
commented 2024-02-21T16:26:56.5366667+00:00
Sandeep G-MSFT 13,486 Reputation points Microsoft Employee
2 answers

Does changing the email field on the on-prem field cause Legacy DN Value?

Hello, We have a hybrid environment with on-premises AD syncing to their Azure AD We converted an on-prem user profile to External ID in Azure AD. As a result, sending party is receiving an NDR whenever they try to send an e-mail to this converted…

Microsoft Exchange Online
Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
5,549 questions
Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,165 questions
Microsoft Entra External ID
Microsoft Entra External ID
A modern identity solution for securing access to customer, citizen and partner-facing apps and services. It is the converged platform of Azure AD External Identities B2B and B2C. Replaces Azure Active Directory External Identities.
2,571 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
18,642 questions
asked 2024-01-30T16:46:09.7966667+00:00
muhi-entra 0 Reputation points
commented 2024-02-21T15:35:05.12+00:00
muhi-entra 0 Reputation points
2 answers

About IE GPO policy

In Computer Policy GPO Management Templates > Windows Components > Internet Explorer >Internet Control Panel>Security Page>Intranet Zone Items within Allow websites to prompt for information using scripted windows - Prompt for information using…

Microsoft 365
Microsoft 365
Formerly Office 365, is a line of subscription services offered by Microsoft which adds to and includes the Microsoft Office product line.
3,346 questions
Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
5,549 questions
Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,165 questions
asked 2024-02-16T01:51:39.6733333+00:00
jennyKim 220 Reputation points
commented 2024-02-21T01:52:49.38+00:00
jennyKim 220 Reputation points
1 answer

SingleLogout privatekey and certificate

I am using Spring security https://docs.spring.io/spring-security/reference/5.7/servlet/saml2/logout.html for implementing SAML single logout. I got my single logout flow to work by providing a dummy set or private and public key since it requires me to…

Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,165 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
18,642 questions
asked 2024-02-19T21:53:49.3266667+00:00
Lee G 0 Reputation points
commented 2024-02-20T15:50:23.3633333+00:00
Lee G 0 Reputation points
0 answers

"The certificate doesn't have a private key error" in adfs diagnostic analyzer after updating adfs certificate.

I updated our ADFS Service Communications Certificate today. Everything seems find and I'm seeing successful authentications, however when I run Microsoft's ADFS "Diagnostics Analyzer" I'm seeing a new error that states, "The certificate…

Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,165 questions
asked 2024-02-20T13:48:04.44+00:00
Raghuvarma Pasupuleti 0 Reputation points
0 answers

Need the Endpoints to trigger the OTP and Verify the OTP via CUSTOM CODE

Hi , We are trying to integrate the passwordless authentication mechanism in our current system. I have create the User Flow and have tested it as wellm which seems to be working fine. As of the next step, what I am trying to achieve is get the…

Microsoft Graph
Microsoft Graph
A Microsoft programmability model that exposes REST APIs and client libraries to access data on Microsoft 365 services.
9,953 questions
Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,165 questions
asked 2024-02-20T08:01:34.5633333+00:00
Rohit SINGH 0 Reputation points
1 answer One of the answers was accepted by the question author.

About Exchnage online scheme extension

I have extent Exchnage online schema in AD environment The setup was completed without any error Now my next step will be AADC synchronization but the problem is although I have extent exchange schema with out any error I dont know whether it will…

Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
5,549 questions
Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,165 questions
asked 2024-02-19T01:59:25.4566667+00:00
jennyKim 220 Reputation points
accepted 2024-02-20T00:14:14.2333333+00:00
jennyKim 220 Reputation points
1 answer One of the answers was accepted by the question author.

Create custom CloudAP plugin to authenticate to windows machine which is entra Joined?

My domain is federated with custom inhouse IDP and when the user tries to login in the entra joined machine as IDP CloudAP authenticates the user right? Is it possible to create custom CloudAP Plugin so after user enters the password our idp can enforce…

Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,165 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
18,642 questions
asked 2024-02-07T12:04:04.42+00:00
AJ 20 Reputation points
commented 2024-02-19T13:38:24.2333333+00:00
AJ 20 Reputation points
3 answers

Azure MFA to On-premises applications without ADFS and AzADAppProxy

Hi. I need to know what options do I have to force my internal apps to request Azure MFA when my clients access internally (or externally, published in the firewall). I don't want that my on-premises apps needs to go via application proxy via azure,…

Microsoft Identity Manager
Microsoft Identity Manager
A family of Microsoft products that manage a user's digital identity using identity synchronization, certificate management, and user provisioning.
575 questions
Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,165 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
18,642 questions
asked 2023-06-17T15:00:56.0166667+00:00
Miguel Gonçalves 76 Reputation points
edited an answer 2024-02-19T06:42:52.28+00:00
Canming Jiang 1 Reputation point
1 answer One of the answers was accepted by the question author.

How can a service account in active directory sign in to azure with adfs?

Hi, How can a service account in active directory sign in to azure with ADFS? It seems like when using ADFS, the domain user has to enter his credentials to a login page. What should a service account do in the same case (as it is not an interactive…

Microsoft Graph
Microsoft Graph
A Microsoft programmability model that exposes REST APIs and client libraries to access data on Microsoft 365 services.
9,953 questions
Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,165 questions
Microsoft Entra
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
18,642 questions
asked 2024-02-15T11:20:34.6033333+00:00
Adi Malyanker 65 Reputation points
edited a comment 2024-02-15T14:46:16.9533333+00:00
Adi Malyanker 65 Reputation points
1 answer One of the answers was accepted by the question author.

Delegated permission to access Entra ID page?

As per this security article, I have ensured that Restrict access to the Azure AD administration portal is set to Yes**.** What is the custom Azure AD / Entra ID role I must create that allows the user access to the access below page as read-only: …

Microsoft Graph
Microsoft Graph
A Microsoft programmability model that exposes REST APIs and client libraries to access data on Microsoft 365 services.
9,953 questions
Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,165 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
18,642 questions
asked 2024-02-08T05:53:48.7133333+00:00
EnterpriseArchitect 4,466 Reputation points
commented 2024-02-15T05:29:43.5666667+00:00
EnterpriseArchitect 4,466 Reputation points
1 answer One of the answers was accepted by the question author.

About exchnage schema extention in AD

Mailnickname attribute is absent in my AD which I need for AADC sync so I install Exchnage server 2019 in AD and run setup command which continuosly giving me error First of all I want to ask is my method is correct? or Can we extent Exchnage schema…

Microsoft Exchange Online
Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
5,549 questions
Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,165 questions
Exchange Server Management
Exchange Server Management
Exchange Server: A family of Microsoft client/server messaging and collaboration software.Management: The act or process of organizing, handling, directing or controlling something.
7,214 questions
asked 2024-02-06T14:39:55.1433333+00:00
Kuronuma 20 Reputation points
accepted 2024-02-15T02:55:01.5733333+00:00
Kuronuma 20 Reputation points
1 answer

About sharepoint schema extention in AD

I want to ask the method for Sharepoint Schema extention in AD I have searched but not found any document which satisfy my need Is there anyone who knows how to do it? Or any usefull docs??

SharePoint
SharePoint
A group of Microsoft Products and technologies used for sharing and managing content, knowledge, and applications.
9,158 questions
Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
5,549 questions
Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,165 questions
SharePoint Server Management
SharePoint Server Management
SharePoint Server: A family of Microsoft on-premises document management and storage systems.Management: The act or process of organizing, handling, directing or controlling something.
2,761 questions
asked 2024-02-08T11:25:33.2033333+00:00
jennyKim 220 Reputation points
commented 2024-02-14T06:29:49.75+00:00
RaytheonXie_MSFT 29,041 Reputation points Microsoft Vendor
0 answers

Unable to add second ADFS server to existing farm (MSSQL and gMSA)

Hello, My first Server 2019 ADFS server is working fine, but for HA purposes I wanted to add a second one. I already made sure that my GMSA, which is just named "ADFS-GMSA" works fine with my MSSQL server. I was following the instructions here:…

Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,165 questions
asked 2024-02-07T18:59:31.41+00:00
MD5Hash 151 Reputation points
commented 2024-02-07T19:09:42.7033333+00:00
MD5Hash 151 Reputation points
1 answer One of the answers was accepted by the question author.

MailNickname attribute is missing from Attribute Editor

In My case the mailnickname attribute is missing from AD and I want to modify the nick name Can anyine tell why this is happening to my ad I want to modify the nickname from GUI rather the PS Thank you

Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
5,549 questions
Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,165 questions
Microsoft Entra
asked 2024-02-05T10:21:04.6733333+00:00
jennyKim 220 Reputation points
commented 2024-02-07T11:29:59.5833333+00:00
Akhilesh 3,180 Reputation points Microsoft Vendor
0 answers

How to federate multiple AzureAD Enterprise Applications with same on-premise ADFS Farm?

Hi there We have Enterprise Application in Azure AD tenant that federates with an on-premise ADFS farm. In the SAML config, we specify the identifier URL for the ADFS farm, and this works okay. We want to create a second Enterprise…

Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,165 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
18,642 questions
asked 2021-09-01T22:52:27.43+00:00
Vladimir Maricic 6 Reputation points
commented 2024-02-06T13:21:19.1933333+00:00
Sandeep G-MSFT 13,486 Reputation points Microsoft Employee
1 answer One of the answers was accepted by the question author.

Questions regarding on-prem MFA integrated with on-prem Azure and credentials

I need to change the credentials used by MFA ADFS Adapter on my on-prem ADFS farm. The farm consists of 3 Windows Server 2016 systems using a WID database. Would it just be a matter of updating the relevant config file and running the registration cmdlet…

Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,165 questions
asked 2024-01-08T19:59:32.2633333+00:00
Rice, Kevin J 20 Reputation points
accepted 2024-02-05T16:37:42.4566667+00:00
Rice, Kevin J 20 Reputation points