How to prevent authenticated users spoofing other authenticated users in Azure Function?
I see that active directory can be used to authenticate users that are (indirectly) calling azure functions. Let's pretend that I have implemented a database table called projects and I have a one to one relationship between users and projects. My…
Change password for hybrid
Hi all, We have multiple hybrid laptops. according to this link we need "line of sight to a domain controller". does this mean VPN, some sort of domain controller in the DMZ or some other option? we are not using a VPN and our computers…
Current Microsoft standard for Nested of AD groups on server 2016
Current Microsoft standard for Nested of AD groups on server 2016. I searched for 2 days i could not get the details . Which group scope can not nested and how? I have old standard 2012. if its same. please share me the microsoft link
Seamless Single sign on on MAC/Safari using Azure AD/ADFS
Hi Team, Is there a way to achieve seamless SSO on MAC os safari browser, we have below WIASupportedUserAgents added as ADFS properties. MSAuthHost/1.0/In-Domain MSIE 6.0 MSIE 7.0 MSIE 8.0 MSIE 9.0 MSIE 10.0 Trident/7.0 MSIPC Windows…
IDFIX preparation for Azure AD Connect (X500 proxy addresses issues)
I am working to prepare for Azure AD Connect and running the IDFIX tools. It finds a bunch of errors because of my PROXY ADDRESSES with the CHARACTER issue. The problem is we have a bunch of exchange legacy DN set up in exchange with X500 addresses…
Azure Sphere IoT Sample connection to IoT Central Application not Working
Hi, I followed all the guide in the Microsoft Learn and in the .txt file in the sample folder to connect my Sphere application to my IoT Central app. Everything was working fine, but when i run the 'ShowIoTCentralConfig' program, to retrieve the…
Dynamic Group Question - How can I remove a user from a dynamic group on specified date and time?
Hi, I have created a dynamic group, and setup my dynamic membership rule so that my user gets added to the group. But, I want to put something in there that removes them from the group at a certain date and time. Is this possible? So what I…
Does the ObjectGUID of an AD security group ever change? Can it be changed?
Let's say I am using ADMT to migrate user and group objects from Domain A to Domain B. Let's assume there is an Active Directory security group in Domain A (source domain) that has an ObjectGUID of 12345. Does it keep the ObjectGUID 12345 after I use…
Azure AD Photo does not match AD photo
Trying to sync profile photos across Active Directory, Azure AD, Office 365. The photo in Ad is not the same as the photo in AAD for some users. I am also unable to change the photo in AAD. The photo is the same in SharePoint as AD photo. The Teams photo…
CA policy for Office 365 Exchange Online
I have created 2 Conditional Access Policies, one for Teams and another for Outlook. Teams Policy - Block Access to Teams except if a member of a group Cloud App Selected: Teams Outlook - Block Access to Outlook except if a member of a group …
Azure MFA IP Whitelisting
For some of my applications in Azure they are authenticating to my Azure AD using user accounts and they are being caught by my conditional access policy which is enforcing MFA due to being off-prem. I was wondering would it be best practice to assign…
Azure graph API
Hi I need help to get data for "MemberOf" column data from the Azure graph API getusers method. even though i mentioned "MemberOf" in Sleect statement and expand("MemberOf"), I am getting always NULL for that column…
Azure AD Connect Installation with Web Proxy
I'm trying to install Azure AD Connect. The server is behind a firewall. Internet access must go through a web proxy. I can install AADC but the problem is the health agent is disabled after installation. I tried to enable it but the…
Go from 365 hybrid to Cloud Only
Hi, I have a office 365 tenant with AD Sync activated which means password synchronization as well. And also some cloud only mailboxes created beside. Right now when I need to do some changes to users or shared mailboxes I need to change attributes…
S/Mime AzuerAD/ Office 365
Hello, I would like to implement S/Mime in a pure Office 365 environment, i.e. without a local server. How can I link the certificates to AzureAD users. Thank's for your anwsers.
What happens to Service Principals created by users no longer in active in Azure Active Directory?
Hi, I'm trying to come up with a plan or procedure to handle Service Principals users when a user is no longer active in the companies Azure Active Directory. For example: Ben creates a Service Principal on the Azure Active Directory. Bens…
Create mailbox folder with Graph API
I want to use the Graph API to create a folder in a mailbox that belongs to Exchange Online. After getting the token, I was able to create a folder with the following command. However, it cannot be created as a child folder of the specified…
Quickstart: Call the Microsoft Graph API from a Universal Windows Platform (UWP) application
Good day! I attempted to the Quickstart: Call the Microsoft Graph API from a Universal Windows Platform (UWP) application. I took several approaches and came up with the same issue. Error Acquiring Token: …
AAD & G Suite Question
I just have a simple question. I work for a school district and we use G Suite for email, device management, etc. We are a Mac district and wanting to make a switch to Azure AD for domain services. I know that we can setup Azure AD to interface with G…
Lista de Confianza Office 365
Estimados, ¿Existe la opción de poder manejar las listas de confianzas de Outlook 365 via GPO?. Muchas gracias!