Attempt to create service principal for RBAC with contributor role fails with "WARNING: Role assignment creation failed."
I'm trying to follow these instructions: https://learn.microsoft.com/en-us/azure/developer/github/connect-from-azure?tabs=azure-cli%2Cwindows#create-a-service-principal az ad sp create-for-rbac --name spad_ServiceBusSimpleSendReceive002 --role…
How to let a group of users to access Salesforce Enterprise Application which is being configured for SSO using Microsoft Entra Id.
I'm a beginner at Microsoft Entra ID, but I have successfully configured SSO for Salesforce Application. Now I can make the Microsoft entity user to login Salesforce with the help of Microsoft account credentials instead of Salesforce…
Locked out of directory I am an Owner of
Hello, A friend invited me to their Azure Entra ID as a guest user, and set me as a member of the admin group that has owner privileges. I was able to log in for 10 days, created resources (including an Azure Databricks cluster that no one can access…
Dynamically pass the B2C sign-in policy in .NET 8
I am developing the web application using .NET 8 with Asp.NET MVC and using Azure B2C tenant for Authentication. And it will be hosted in the Azure App services that configured with two domain urls. Based on the requested Urls, I wanted to pass the…
Discussion around different ways to implement PIM for Azure resources
I've found there are two ways to use PIM to grant access to Azure resources and I'd like to understand the differences, if any, between the two. The outcome is the same however the process/workflow to achieve it is different. Method 1 Create an Entra ID…
Migration from pure Entra Cloud environment to hybrid on-prem AD x Entra environment
Hello Community, I have the problem that we want to switch from a pure Entra environment (with users, groups, etc.) to a hybrid model, in order to be able to use the advantages of on-prem AD - especially x802.1/user authentication in WiFi via…
How to fix broken web chat app after Microsoft Entra ID authentication login added
I had a chat app using Azure web app and Web PubSub working perfectly using the github example: samples/javascript/chatapp/nativeapi I made no changes to code and added the microsoft entra ID authentication requirement according the default instructions…
Is it possible in a B2C tenant to make a calendar appointment on behalf of an Entra ID user?
I have a B2C application where Entra ID users can log in. If they do, and they have an outlook calendar, I would like to be able to have the application make Outlook Calendar appointments on their behalf. Is this possible? It seems only openid and…
AZUREADSSOACC Key Rollover no longer works using Hybrid Identity Administrator creds
Hi I use a PowerShell script in an Azure Hybrid Worker Runbook to automate the rollover of the Kerberos decryption key for the AZUREADSSOACC computer account. It uses a service account in Entra ID which is assigned the Hybrid Identity Administrator…
How to add additional login information such as email or phone in organisation account
How to add additional login information such as email or phone in organisation account
Cannot enable Staged Rollout from Federation to PTA
We are currently federated to Entra ID with ADFS on premises. We are attempting to run the staged rollout feature with PTA and seamless sign on. Following this article: …
Azure Subscription is not moved back to my default tenant
Dear Team, I have Azure free subscription , i created new tenant called "MakkenaAgrifarms" moved my subscription to MakkenaAgrifarms tenant and created web app then i moved to back my subscription to default tenant but now subscription is not…
Access Review with Microsoft Entra ID P2
Hello, I'm trying to find out how can i create the Access review "Inactive Users recommendations" that is included with Microsoft Entra ID P2, according to the documentation…
How can I seamlessly change an App Registrations "Application ID URI" domain?
I have a published teams app which includes tabs. The tabs point at Domain A to authenticate the user using "microsoftTeams.authentication.authenticate" and "microsoftTeams.authentication.getAuthToken()". The teams manifest.json…
Unable to access Entra ID
I am not able to access Entra ID. I am trying to access from my own student account and I am sure I am the owner of the account and currently have active student subscription.
How to exclude Microsoft Office 365 Portal from the microsoft admin portals - conditional access
Hi all, I have a conditional access policy to block Microsoft admin portals to all users except specific users (it team) however users who want to download office apps to their devices are unable to as Microsoft Office 365 Portal is included is the…
Stuck in a verification loop using Microsoft Authenticator
Hello, I seem to be stuck in a verification loop when using the Authenticator App. The App asks me to log in to my account and then asks me to enter the Verification Code from the Authenticator App- which is where I am currently trying to log in from.…
I try to login by approving sign in request on the authenticatir app but no code is sent to it
I try to log into my work account, but the only way in is by verifying a code thats sent to my authenticator app. When I open the app there is no code that has been sent, so I cannot get onto my work email
Sync Entra with Google Admin
Hello, I am now doing some configuration with sync from Entra to Google Admin, just facing with some issues that for ex. i have some custom attributes on Google side how i can add the same custom attributes to Entra user and also to include this in…
What happens if you only have 10 users out of 50 who need to have their accounts protected by conditional access but you want all staff protected by MFA?
I have a client who has 10 Business Premium accounts and the rest of E1. They would like to have a Geofence set up using Conditional Access for just those 10 users but have MFA enabled for everyone. To use conditional access we need to disable…