Wich scope use to get the access token for microsft credential
Hello, I'm trying to do postman access token request to reach the following api : https://api-eu.securitycenter.windows.com/api/vulnerabilities?$filter=publishedOn+ge+2022-01-01T00:00:00Z however the result returned is always the same : …
How to get oid for OKTA with Azure as OIDC external provider
Hi, Trying to add Azure as an external identity provider in OKTA as IDP provider to have Azure users login into OKTA integrated Applications. We have tried same with SAML2.0 IDP with objectid as okta username(login) but not able to find the…
Deleted users still appear
Hi all, We tried to delete users from Active Directory but unfortunately users do not disappear. When I click one of the user then it shows: Why after the delete users are still appear? Thanks
AuthorizationFailed with User-assigned Managed Identity accessing ADF
What I'm trying to do Create and query ADF pipelines from a consumption-tier Logic App by using a User-assigned managed identity What I've done Created logic app Created User-assigned managed identity For the identity, I have…
AAD: Cannot Delete Tenant
Trying to delete AAD Tenant but being blocked by "License-based subscription" check: I have followed https://learn.microsoft.com/en-us/azure/active-directory/enterprise-users/directory-delete-howto article, but no success. It…
RDP Error 0x267: AAD joined machine. On work account must disable Network Level Authentication
Hii, the error message is well written as far as getting the case right, but is there any way to enable NLA when using RDP to access an on-premise workstation that is AAD joined. It doesn't have P2 or the Enterprise Mobility + Security product, so to…
Users in excluded group is not being excluded from the conditional access policy
There is a CAP where it blocks people who are included in the CAP. I have excluded a group so it doesn't get applied to those users in the group. However they are still being blocked. But if I add the users directly in excluded users instead of the…
Check a user exist in Azure Ad using MS Graph
Hi, I am trying to confirm whether a user exists or not in Azure Ad using Graph api in PowerShell. Any thoughts? Will this help $resource=https://graph.microsoft.com/beta/ $TokenResponse = Invoke-RestMethod -Uri…
Recommendation to manage 365 login notifications in a daily report
I may have to purchase something to do this but what I am looking to do is to set up a way for me to get a daily report of all the 365 logins https://portal.azure.com/#blade/Microsoft_AAD_IAM/ActiveDirectoryMenuBlade/SignIns From this link, I want to…
Azure ADB2C With SQL Server Managed Identity
How do we Integrate Azure B2C with Sql server managed Identity . We were able to Integrate Azure AD with Sql Managed Identity but when we try to confiure Azure B2C we get Login Failed for user <Token-identified Principle>
Azure Error: AADSTS500089: SAML 2.0 assertion validation failed: SAML token is invalid.
When attempting to access Azure Portal (here as SP) using SSP SAML 2.0 assertion response from a third-party IdP, Azure throws the persistent error: Request Id: 74a97af3-2b70-4802-8793-bf7a60ba0a00 Correlation Id:…
[azure-active-directory] Timeline of FIDO2 support for Azure Active Directory with Safari browser in iOS and MacOSX
Hoping to get details of support timeline for FIDO2 support for Azure Active Directory with Safari browser in iOS and MacOSX Thanks, Paul H. SUNY
My outlook personal account binded to my former employer and I cannot use my subscription in Azure anymore because it goes to my former employee login portal! HELP!
few year age I moved my MSDN subscription to my personal tenant and today after my termination from my former employer. I noticed I cannot access my other personal subscriptions anymore. Also I cannot create a SUPPORT ticket since there is no portal…
Project to Migrate ADFS and MFA to Azure
We are planning to migrate from on-premise ADFS authentication to Azure Cloud Authentication and MFA on premise to Azure MFA . We have 2 ADFS Servers on premise and have password hash sync already enabled with SSO. We have Microsoft office 365,…
Need to know who created an object in O365 Audit logs shows user as "Service Principle" User object created was :
Need to know who created an object in O365 Audit logs shows user as "Service Principal" User object created was : from this article :…
Understanding Risk Status (Identity Protection)
If a user has activity that raises their risk level, but the identity protection policies (user & sign-in) in place effectively block access - does this mean the attempted access would have otherwise been successful? In other words - has the user's…
RBAC roles to view devices in Intune
Intune admins/Global admin can view devices which have Ownership - "Unknown" in Intune portal. For those devices, it shows the MDM Authority in Azure AD as - No MDM. Currently, I am using a custom RBAC role to enable users to view all devices…
AADSTS50020 issue
Hi 你好, 遇到以下問題, 請該tenant 協助增加權限但也出現錯誤, 想了解原因 Request Id: da6698f7-2b67-4347-9a7f-de72717b0d00 Correlation Id: a2c34b22-0947-4024-b619-70af22e9223f Timestamp: 2022-04-15T08:01:58Z Message: AADSTS50020: User account…
MIM Inbound Sync Rule Attributes not defined in Source Schema
Hello, We are trying to add "Admin - " to the AAD displayname for accounts with "admin" in the upn. We have tried several different expressions like this - IIF(InStr([userprincipalname],"admin"),"Admin - "…
Workato authentication to Azure SQL Database with Azure AD
I have a client that would like to connect to my Azure SQL Database using Workato. I am unfamiliar with Workato. I have setup an AD group called testdbreader. I added testdbreader as a user in the database and gave them db_datareader role, as…