Issue with synching AD users to Entra.
Hello - I have created two users in Microsoft 365 whose UPN and SMTP addresses match that of two user objects (UPN and ProxyAddress attributes) in my on-premises AD. The M365 users have the appropriate Entra licenses applied and appear in Azure AD with…
How to use a microsoft personal email with DefaultAzureCredential from python sdk to download/upload files in azure storage blob account?
I'm developing a system in which a user from a simple python application can download/upload files from azure blob storage. I'm using python sdk and VS code as IDE (without the azure extension activated) and I'm stuck with microsoft personal account used…
Use of Front Door with Azure B2C
Hi! I am working in a proyect where we are using Azure B2C and the client doesn't want to show the domain "b2clogin.com" on the url. So I see there are an option called Azure Front Door where you can customize domain My question is... when…
Adding Entra ID authentication to a web app that utilizes Web PubSub in Azure
I'm trying to simply add Microsoft Entra ID for authentication to an Azure web app. I have a javascript chat-app using Web PubSub that worked perfectly using this…
Not able to use the function startswith in graph API even with Advanced query parameters
Need to filter only a few directory roles from a list of 50+ based on displayName. Is there a way to achieve this? As I am unable to use multiple one filter condition at once in the URI Working…
How to restrict the Azure portal, M365 admin portal and PowerShell access ?
Hi All, Using the Azure /Entra AD Premium P2 and Intune Hybrid Azure AD joined computer, how can I restrict access to the Azure Portal and M365 admin portal? The goal here is to restrict only the Hybrid Azure AD computer to allow access to the Azure…
I want delete users that have a blocked sign in and users who have not signed in over 90 days
I need help deleting users by last sign in date and have a blocked sign in
How to define custom claims and attributes in Azure AD SAML 2.0 for user's Cluster Region.
How to define custom claims and attributes in Azure AD SAML 2.0 for user's Cluster Region. Our goal is to capture user's login details during SAML Assertion. I would like to know how to configure in SAML attributes and Claims and get the value of user's…
Upgrade "Access to Azure Active Directory" subscriptions request via email
Hoping for some help (as a MS Partner) received the following email "Your subscription offer, Access to Azure Active Directory, will be disabled on May xx, 2024..." "If you currently have active resources in your Access to Azure Active…
UPN changing when adding external user to BI workspace
Hi all - I am company admin. I have an external user added with a guest account in our azure tenant. What is happening is when I search for the user in power BI workspace - to give them access - they appear with the correct syncronised UPN for example:…
How to fix error "AADB2C90046" returned back by ACS endpoint of Azure AD B2C?
Users are encountering an error after successful authentication through SiteMinder (external IdP). Following authentication, SiteMinder sends a SAML Response to Azure AD B2C's ACS endpoint, but B2C returns the below…
Azure AD B2C Front-channel logout URL Not Working
Hello everyone, I'm facing an issue with Azure AD B2C for which I'm struggling to find a solution. I have multiple registered applications, each representing a different product. When I log out of one of these applications, I'd like the sessions in the…
I am trying to hide/remove "Continue" button from email verification step in user sign in journey using custom policy
I am trying to hide/remove "Continue" button from the email verification step in user sign-in journey using a custom policy. I have tried doing it via custom policy but it didn't work and then I found we can do it via enabling custom javascript…
how to create a documentation for publish an application to Microsoft Entra application gallery
Hello, I want to add my application to gallery and use azure AD as a SSO So I have read this article: https://learn.microsoft.com/en-us/entra/identity/enterprise-apps/v2-howto-app-gallery-listing#provide-app-documentation-for-your-site Section 2 (image…
How to Authenticate Scan to email mailbox
Our organization is trying to have all mailboxes set up with MFA so we can turn of legacy. The issue is that we have scan-to-email function set up through a UserMailbox, so if we convert this to a SharedMailbox, users will no longer be able to use it for…
535: 5.7.139 Authentification unsuccessful / SMTP Server in external application / *Entra*
Hi, I am trying to use an Office 365 User Mailbox as an outgoing server for our ERP Software. I am using the following information for the server: Host: smtp-mail.outlook.com Port: 587 TLS with certificate Username and Password are correct. I am getting…
No way to control the client secret expiration during creation of an AD Authenticated App Service
The App Service documentation recommends use of the built-in Authentication/Authorization feature (https://learn.microsoft.com/en-us/azure/app-service/overview-authentication-authorization) when creating a web app restricted to authenticated users. In…
Rate limits for Microsoft Entra Id Apis
Hello Team, Could you please let us know the rate limits for the below Microsoft Entra Id Apis. Audit-Log: https://learn.microsoft.com/en-us/graph/api/resources/azure-ad-auditlog-overview?view=graph-rest-1.0 User-Info :…
403 Forbidden - Request forbidden by administrative rules
I work in the UK. On Microsoft Azure/Microsoft Entra ID, my colleagues who are Member users have their user location set to the UK. Even for those that work for our company who live in the US, Canada and India. When 2 of my colleagues went to China they…
Disabling PIM for Groups Assignment Expiry Emails
Hi, we have a requirement to disable the emails that assignees to a PIM group membership receive before expiry. These are the emails that contain text like this: "Your Member role in the <group> Security will expire in 14 day(s)" I…