24,213 questions with Microsoft Entra ID tags

Sort by: Updated
1 answer

Windows Configuration Designer cannot retrieve Bulk Enrollment Token

Hello. Trying to update our Intune enrollment package with a new Bulk Enrollment Key and running into an error after Authenticating to retrieve the token. I have not been able to find anything related to the error code. This worked a few weeks ago…

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
24,213 questions
asked 2025-04-11T17:56:36.68+00:00
Cody 30 Reputation points
answered 2025-04-22T20:42:56.0966667+00:00
Vigneshwar Duvva 245 Reputation points Microsoft External Staff
1 answer One of the answers was accepted by the question author.

MFA Conditional Access Policy For All Users, Still Showing Non-Compliant in Defender.

Hello, We currently have three conditional access policies in Entra ID for Multi-Factor Authentication (MFA), and having multiple policies seems redundant. Here's a brief overview of each: Microsoft-Managed Policy: This policy automatically applies to…

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
24,213 questions
asked 2025-04-17T18:01:33.3266667+00:00
LM-5132 220 Reputation points
accepted 2025-04-22T20:12:28.61+00:00
LM-5132 220 Reputation points
0 answers

Admin locked out of Azure B2C

Hello! I have a b2c instance that I've been locked out of named "psecsapidev01.onmicrosoft.com". It worked fine until a couple of weeks ago when I stopped being able to log in. The admin account is correctly registered and I still have access…

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
24,213 questions
asked 2025-04-22T19:23:32.8633333+00:00
Ryan Brooks 0 Reputation points
edited the question 2025-04-22T19:53:21.8133333+00:00
Vamsi Ram Annepu 480 Reputation points Microsoft External Staff
0 answers

Converting "Federated user accounts" to "Managed user accounts"

Hello I am using "Microsoft Entra ID Free Subscription." I want to convert "Federated user accounts" to "Managed user accounts." I tried to follow these instructions in Power Shell to no Avail: Install-Module MSOnline…

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
24,213 questions
asked 2025-04-16T15:47:22.9466667+00:00
Oatlhotse Gaborone 0 Reputation points
commented 2025-04-22T19:39:49.7033333+00:00
Vigneshwar Duvva 245 Reputation points Microsoft External Staff
0 answers

How to Increase Access Token Lifetime to 24 Hours?

I’m using the following URL to generate an Azure AD access token via Python: https://login.microsoftonline.com/{tenant_id}/oauth2/v2.0/token The token I get has a lifetime of 3600 seconds (1 hour), but I need it to last for 24 hours. Is there any way to…

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
24,213 questions
asked 2025-04-18T14:53:37.0866667+00:00
Tushar Lakhotia 0 Reputation points
commented 2025-04-22T18:57:34.92+00:00
Vigneshwar Duvva 245 Reputation points Microsoft External Staff
1 answer

Why am I seeing "Windows Sign-in" activity for an Azure AD registered (not joined) device?

Hi, My device is only Azure AD registered, not Azure AD joined. However, I am still seeing Windows Sign-in activities showing up in the Azure AD sign-in logs. Could someone please explain why this is happening? Is it expected behavior for Azure AD…

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
24,213 questions
asked 2025-04-18T13:31:22.9233333+00:00
Naija R C 0 Reputation points
commented 2025-04-22T18:34:11.3466667+00:00
Kancharla Saiteja 3,250 Reputation points Microsoft External Staff
1 answer

Incomplete Results from PIM Role Assignments API

I’m experiencing an issue with the Microsoft Graph API (both beta and v1.0) when querying PIM (Privileged Identity Management) eligible role assignments. Specifically, the API is not returning the complete set of role assignments — it appears to be…

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
24,213 questions
asked 2025-04-21T06:24:20.21+00:00
Omer Blechman 0 Reputation points
commented 2025-04-22T18:23:34.06+00:00
Kancharla Saiteja 3,250 Reputation points Microsoft External Staff
0 answers

Lost access to authenticator app and unable to log in due to this. (I am the only administrator also)

Hi everyone! Suddenly I lost my phone with Authenticator app and can not log in right now (I am talking about business/organisation account) because there is no other way to confirm my sign in and also no way to reset it somehow. I can not ask…

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
24,213 questions
asked 2025-04-22T16:29:15.4533333+00:00
Daniil Lebedinskiy 0 Reputation points
commented 2025-04-22T18:14:40.5333333+00:00
Harshitha Eligeti 2,595 Reputation points Microsoft External Staff
1 answer

Conditional Access Policy Assistance

I would like to create policies through conditional access allowing users to access Microsoft 365 web apps through their browsers but only from specific IP addresses. I want them to also be able to still receive email on their phones from any location…

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
24,213 questions
asked 2025-04-18T18:27:09.7033333+00:00
Brian Jackson 0 Reputation points
commented 2025-04-22T18:13:27.48+00:00
Kancharla Saiteja 3,250 Reputation points Microsoft External Staff
2 answers

Best Practice for Updating Custom User Attributes (e.g., is-enrolled) via MSAL and Backend Integration

Hi everyone, I’m working on a project that uses Entra ID and MSAL for authentication (React frontend + FastAPI backend). Use Case: I want to add a custom user attribute called is-enrolled to a user in Entra ID. Once a user goes through an…

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
24,213 questions
asked 2025-04-21T17:10:27.2166667+00:00
Jose Barredo 0 Reputation points
commented 2025-04-22T18:01:56.58+00:00
Kancharla Saiteja 3,250 Reputation points Microsoft External Staff
2 answers One of the answers was accepted by the question author.

Set-MsolDirSyncEnabled -EnableDirSync $false after MSOnline PowerShell Retirement

after MSOnline PowerShell Retirement how can we convert users to cloud only or should we do that prior to retirmenet

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
24,213 questions
asked 2025-04-22T13:30:17.1533333+00:00
Les 31 Reputation points
accepted 2025-04-22T17:57:26.6366667+00:00
Les 31 Reputation points
0 answers

Error fetching users from Microsoft Entra ID: "$top query has been exceeded"

Hello everyone! I'm integrating a Microsoft Entra ID application with a web app I'm building. The initial connection between the app and Entra ID is working fine. However, when I try to fetch the list of users via the Graph API, I get the following…

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
24,213 questions
asked 2025-04-20T21:34:53.4633333+00:00
Rishabh 0 Reputation points
commented 2025-04-22T17:52:38.66+00:00
Rishabh 0 Reputation points
1 answer

AAD DS 109 Alert and Compromised User Accounts

An alert was received on the domain service indicating AAD DS 109. The alert resolved itself, but several user accounts were blocked from sending emails to external recipients. Affected users have changed their passwords and were unblocked, yet one user…

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
24,213 questions
asked 2025-04-16T19:55:52.57+00:00
Portal Login 0 Reputation points
edited an answer 2025-04-22T17:19:47.2266667+00:00
Kancharla Saiteja 3,250 Reputation points Microsoft External Staff
1 answer

Issue with SAML SSO Integration – Application Not Recognized in Azure AD Tenant

Dear Microsoft Support, We are currently setting up SAML-based Single Sign-On (SSO) integration between our FortiGate Firewall and Azure Active Directory. During testing, we encountered the following error: AADSTS700016: Application with identifier…

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
24,213 questions
asked 2025-04-22T16:45:52.65+00:00
Mano Vasu 0 Reputation points
answered 2025-04-22T16:59:02.46+00:00
Andy David - MVP 155K Reputation points MVP
0 answers

I cannot log in to my tenant, I get the AADSTS5000224 error

I cannot log in to my tenant, I get the following error: Sign-in failed Error code: AADSTS5000224 Error message: AADSTS5000224: We are sorry, this resource is not available. If you are seeing this message by mistake, please contact Microsoft support.…

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
24,213 questions
asked 2025-04-22T13:35:52.42+00:00
Andrew Page 0 Reputation points
commented 2025-04-22T16:37:17.88+00:00
Andrew Page 0 Reputation points
1 answer

invalid_resource: AADSTS500011: The resource principal named https://[xxx] was not found in the tenant named [zzz].

Note: I have introduced placeholders [xxx], [tenant id], [application id], [zzz], cause this is a public support request. High level We want to give Excel access to our business data for reporting using the Excel OData feed, and authenticate using an…

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
24,213 questions
asked 2025-03-18T19:37:29.6566667+00:00
Lukas Steiblys 0 Reputation points
commented 2025-04-22T16:33:32.7066667+00:00
Lukas Steiblys 0 Reputation points
0 answers

Access review create for Azure resources role

Hi All Cn you explain me the Access review create for azure resources role we have 4 Subscription how to start exploring the step by step. Quation can we set access review at time maltiple subscription

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
24,213 questions
asked 2025-04-16T03:18:24.0366667+00:00
Gaurang Patel 0 Reputation points
commented 2025-04-22T16:06:50.21+00:00
Gaurang Patel 0 Reputation points
0 answers

Azure Admin Account with Lost MFA Access

Hi, I am having a quite similar problem with this thread, https://learn.microsoft.com/en-us/answers/questions/2259103/how-to-recover-admin-microsoft-account-with-lost-m but in my situation, my old phone ( with Admin account MFA setup) was lost and I…

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
24,213 questions
asked 2025-04-21T23:46:57.91+00:00
LongVu-3635 0 Reputation points
commented 2025-04-22T15:41:23.94+00:00
Surya Prakash Kotte 490 Reputation points Microsoft External Staff
1 answer

How to delete default domain in Entra ID B2C?

Could you please advise on the appropriate steps to request the blocking of the default domain (<tenant-name>.b2clogin.com) in Entra ID B2C, as recommended in the official documentation? We have already configured a custom domain for our B2C…

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
24,213 questions
asked 2025-04-06T23:45:15.0233333+00:00
Enes 0 Reputation points
answered 2025-04-22T15:13:14.0333333+00:00
Jyotishree Moharana 330 Reputation points Microsoft External Staff
0 answers

SCIM token apple business manager

How to find which SCIM token I am using. As I have 2 different tokens registered, one expires this year and the other next year. Am I ok to remove the one that expires this year leaving next years intact?

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
24,213 questions
asked 2025-04-22T08:39:15.1966667+00:00
Dino Scott 0 Reputation points
commented 2025-04-22T15:05:02.2166667+00:00
Sakshi Devkante 2,905 Reputation points Microsoft External Staff