Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
20,360 questions
4 answers
AD Connect User Syncing Error
We installed AD Connect and connected to our Office365 tenant, but users will not sync. I see all of them have duplicate attribute errors. I added the appropriate UPNs to my users so they are using a routable domain (.com instead of .local). I tried…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(300.8, 10%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBI%3C/text%3E%3C/svg%3E)
3 answers
Microsoft single sign on with specified 2 tenants
Due to some reason in our company we have 2 Azure tenants created base on region. and we have one application want to enable SSO for both tenants, what is best practice here if we don't touch the Azure tenant setting? For example, we have tenant A and…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(86.4, 84%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(60.8, 89%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EM%3C/text%3E%3C/svg%3E)
2 answers
One of the answers was accepted by the question author.
Azure AD Device Registered Column
I cannot find any way to export the registered date from AAD using any Powershell commandlets.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(25.6, 33%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EZN%3C/text%3E%3C/svg%3E)
1 answer
Does Azure AD SAML support x.509.subject NameIdentifier ?
Hi, I wanted to know if Azure AD supports x.509.subject NameIdentifier in SAML ? SAML V2.0 Deployment Profiles for X.509 Subjects describes how a principal who has been issued an X.509 identity certificate is represented as a SAML Subject, how an…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(64, 2%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ER%3C/text%3E%3C/svg%3E)
2 answers
DNS Stub Zone (VMs in Azure)
Hi everyone I have a question: We have a huge Active Directory forest (company.local.com) on premise. And also 2 additional Domain Controllers in Azure as part of this (DC-AZ1.company.local.com and DC-AZ2.company.local.com) Both of these 2 DC have…
asked 2020-06-02T07:01:22.133+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(60.8, 90%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ELR%3C/text%3E%3C/svg%3E)
Lutz Rahe
61
Reputation points
commented 2020-06-02T08:05:06.287+00:00
Leon Laude
85,716
Reputation points
2 answers
Unable to connect to Azure Database due to network settings issue
Unable to connect to Azure SQL via portal, stating the issue as below error: A connection to the server 'XXXX.database.windows.net' could not be established. This might indicate an issue with your local firewall configuration or your network proxy…
asked 2020-06-02T04:50:09.927+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(160, 59%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMK%3C/text%3E%3C/svg%3E)
Maruthi Karthik
1
Reputation point
answered 2020-06-02T05:10:24.207+00:00
Armand Brunelle
491
Reputation points
1 answer
azure ad b2c ineffective log out mechanism
Lets suppose you are sign in and you have and controller account and view index In steps... so when first time render https://abc.com/account/index, now you capture this request into fiddler. you get response http 200 and some data lets…
asked 2019-12-03T22:32:04.68+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(297.6, 47%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKB%3C/text%3E%3C/svg%3E)
Kamran Bashir
11
Reputation points
commented 2020-06-02T00:33:09.843+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(172.8, 28.000000000000004%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EWD%3C/text%3E%3C/svg%3E)
Woods, Douglas
6
Reputation points
4 answers
Unable to Upgrade to Paid account, portal does not allow login
Got locked out of Trial account and now I cant upgrade since I get following message when I try to login: "More information required. Your organization needs more information to keep your account secure" This is after I have put a valid…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(217.60000000000002, 6%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ES%3C/text%3E%3C/svg%3E)
2 answers
One of the answers was accepted by the question author.
Exempt guest users from MFA registration
Is it possible to exclude guest users invited into the tenant from the MFA registration policy? According to this documentation: "Microsoft accounts that have been granted guest access to your Azure AD tenant, such as those from Hotmail.com,…
asked 2020-05-08T18:03:09.447+00:00
Yordan Yordanov
466
Reputation points
commented 2020-06-01T21:37:53.813+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(182.40000000000003, 16%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EC%3C/text%3E%3C/svg%3E)
CS
1
Reputation point
1 answer
I can't open SSDT even though I have Visual Studio
I can't open SSDT even though I have visual studio
asked 2020-06-01T17:05:13.327+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(233.6, 73%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMQ%3C/text%3E%3C/svg%3E)
Martyn Quinlan
1
Reputation point
commented 2020-06-01T19:05:45.467+00:00
Vaibhav Chaudhari
38,676
Reputation points
1 answer
One of the answers was accepted by the question author.
OAuth Authentication Code Flow Example Using C#/MSAL.NET & MSAL.js?
I've been studying active-directory-b2c-javascript-nodejs-webapi and specifically index.js. Has anyone translated this node.js script to C#/MSAL.NET? Perhaps there is already an example somewhere? I was hoping for a single Visual Studio sln file that has…
asked 2020-05-28T23:27:36.8+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(310.4, 23%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESH%3C/text%3E%3C/svg%3E)
Siegfried Heintze
1,861
Reputation points
commented 2020-06-01T18:37:48.313+00:00
Siegfried Heintze
1,861
Reputation points
1 answer
Set complex user passwords for specific group
Hi There, I am looking at how I can set more complex password requirements for Cloud only Azure AD users. After reading this MSFT post here. I have been able to set apply the default password policy individually to a number of users. However I…
asked 2020-06-01T13:52:46.247+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(60.8, 93%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJP%3C/text%3E%3C/svg%3E)
Josh Perrin
1
Reputation point
answered 2020-06-01T16:12:31.877+00:00
Vasil Michev
99,431
Reputation points MVP
1 answer
One of the answers was accepted by the question author.
Meaning of AADSTS90097 error code?
All, Just a quick one - anyone happen to know what the AADSTS code 90097 means and what might be the root cause of an application approval throwing this (after the justification screen). Checked…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(76.8, 8%, 17%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ED%3C/text%3E%3C/svg%3E)
1 answer
One of the answers was accepted by the question author.
UPN - Not a durable identifier for the user and should not be used to key data. (Azure AD Optional claim)
Hi , I need to understand UPN as optional claim. https://learn.microsoft.com/en-us/azure/active-directory/develop/active-directory-optional-claims#v20-specific-optional-claims-set As per above link it's mentioned as upn (User Principal Name)…
1 answer
Office 365 Mover says it's already installed but it's not listed in the Enterprise Application gallery.
I'm trying to user Mover.io and I can't authorize Office 365. In Azure Enterprise Applications, it's not listed and when i try to add it, it says it's already installed.
asked 2020-05-28T19:16:55.367+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(44.800000000000004, 54%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVT%3C/text%3E%3C/svg%3E)
Vanessa Toves
1
Reputation point
commented 2020-06-01T08:14:48.113+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(304, 2%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESM%3C/text%3E%3C/svg%3E)
soumi-MSFT
11,761
Reputation points Microsoft Employee
1 answer
Multi-tenant application with saml2
A web application registrered in our tenant, with signInAudience: AzureADandPersonalMicrosoftAccount in the manifest allows logins from the same tenant just fine using https://login.microsoftonline.com/common/saml2, but users logging in from other…
asked 2020-05-30T11:16:06.677+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(67.2, 31%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESS%3C/text%3E%3C/svg%3E)
Simon Skrede
1
Reputation point
answered 2020-05-30T13:19:21.037+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(25.6, 45%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJV%3C/text%3E%3C/svg%3E)
Jai Verma
461
Reputation points
1 answer
Azure AD PIM Approver details
Hi , In Azure AD PIM can we track whose the approver. I'm looking it from an end user perspective because when he activates his role it says pending for approval. How to check who are the approvers and so that he can chase after the approver ? Ping…
1 answer
regular expression exact date with multiple formats
I have a large file with URL strings such as: http://tg24.sky.it/mondo/2020/05/01/corea-nord-kim-riappare.html http://tg24.sky.it/mondo/01/05/2020/corea-nord-kim-riappare.html http://tg24.sky.it/mondo/2020/04/30/corea-nord-kim-riappare.html …
asked 2020-05-05T10:31:21.75+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(153.6, 93%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDS%3C/text%3E%3C/svg%3E)
dani shamir
81
Reputation points
answered 2020-05-29T18:42:51.003+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(204.8, 44%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESS%3C/text%3E%3C/svg%3E)
Saurabh Sharma
23,776
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
About Azure Active Directory Identity Protection notifications
Dear Experts, Can we send Users at risk detected emails in Azure AD to risked users too? …
asked 2020-05-29T10:02:46.16+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(19.2, 40%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMC%3C/text%3E%3C/svg%3E)
Mehmet Cüneyt Durgun
121
Reputation points
accepted 2020-05-29T15:39:52.463+00:00
Mehmet Cüneyt Durgun
121
Reputation points
2 answers
One of the answers was accepted by the question author.
How to set ValidateIssurer to False?
I'm following along with the directions for the Microsoft example in GitHub: active-directory-b2c-javascript-angular-spa Part one where I use Microsoft's tenant works great! I am now trying to set up my own AAD B2C tenant with Facebook as an identity…
asked 2020-05-27T21:37:11.803+00:00
Siegfried Heintze
1,861
Reputation points
accepted 2020-05-29T14:40:27.03+00:00
Siegfried Heintze
1,861
Reputation points