Content
administrate permission needed to upgrade groups
I have created several groups in azure (intune) but i still have an error by adding them in perfiles. i do i resolve that?


Removing a Connect Health server
We replaced our AZ Connect box some time ago when the previous OS/version was EOL. I recently went into Azure Active Directory Connect Health and noticed that Sync Errors, Sync Services, AD FS services, etc are all displaying "The caller is not…
How can I enable combined security information registration in Azure Active Directory?
Hi, I have Azure AD Premium P2 License. I want to enable combined security information registration in Azure Active Directory. However, I can not see this…


I'm unable to add Azure users to NTFS permissions for file share (Azure FIles, AAD DS-joined)
I am trying to set up a file share on Azure Files so that I can use it to store my FSLogix profiles for an Azure Virtual Desktop environment. I'm following this MS guide:…


How we can secure the local.setting.json file inside our Azure Function before deploying it to Azure
I am building an Azure Function >> and inside its local.settings.json, i am storing some sensitive data, as follow:- { "IsEncrypted": false, "Values": { "AzureWebJobsStorage":…
Azure AD B2C Locked users notifications
I am using Azure AD-B2C for sign-in/sign-up and looking for a way to get the email notification/alert to administrator, if the user account is locked-out after unsuccessful login attempts.


Is there a developer SDK/API available that allows programmatically authenticating users on Azure AD without user interaction, using SAML 2.0?
I am writing testing software to test SASE firewalls. One requirement is to be able to simulate the login and authentication hundreds of test users using SAML without user interaction. So for instance, we would have a list of users/passwords that we have…


Generating an access token from an ID token - Custom policy
I am using a id_token to pass information to AD B2C to bootstrap a user-journey from a link (similar to email sign in ) . The url-builder creates a link …


B2C: Block sign in for Social (Google, Facebook) and other external IDPs
There is a possibility to Block Sign-In for AD users using Block Sign-In property in b2c. It is general solution to use "accountEnabled" property to manage it via Graph API. But it seems it doesn't work for external IDPs. The only solution…


How to monitor Ubuntu 4 VM in Hetnzer
Hi All, My 4 VMs are running in Hetzner Cloud I have monitor 4 VMs of ubuntu OS running on it and some data is also running in all 4 VMs. I want to write a shell script on that 4 VMs whether they are Up/Down like ping That script should check daily or…


Invalidate old Refresh Token after using it to get new access and refresh token
Hi, Is there a way in AzureAD to invalidate the refresh token everytime it's used to get a new access token and new refresh token?


Integration of Azure Active Directory with my Service Now
Q: New Question: For my configuration, my Azure prerequisites are: New Application registry to be created Assign Roles Provided below in table Add Application Registry to Root Management Group to access all subscriptions available. Details to…


I want to setup USB restriction policy on azure portal for 2 users
I want to setup USB restriction policy on azure portal for 2 users


How to manage access token via MSAL and a WebAPI as a background of a WebApp
Dear all, we use in our webapp, we have and endpoint in a WebAPI which use a signed user which provide an authorization code for generating an access/refresh token, via an HttpClient request to: …


Grant-CsApplicationAccessPolicy with az PowerShell command
I am trying to give my app an access policy as a user. The next commands work for me: New-CsApplicationAccessPolicy -Identity myAPP-Link -AppIds "[my app id]" -Description "[description]" Grant-CsApplicationAccessPolicy…


authorize AzureAD access_token in .net 6 webapi getting invalid token signature
I have added my angular application into azureAD and trying to get access_token and passing that token to webapi but getting unauthorized error. I have tried multiple ways. I am just accessing basic weatherforecast controller with authorize attribute …


How to distinguish between Changetype: "Updated" in Microsoft Graph for Change Notifications for deleted user
I am new to Microsoft Graph Change Notifications. By exploring relevant questions I came to know that when a user is deleted it is a "soft delete" and hence a ChangeType: "Updated" is sent in the graph notification. However, what…


Read Outlook Mails via IMAP using nodejs and oauth2
My requirement is very simple. I have a node server, which doesnt have login page, there is no interactivity login page(dont want to redirect using express.js). I want to connect my mailbox id and read all unread emails from nodejs using oauth2…


Filtering users in AD B2C with graph service by postalCode not working
Hello, I am trying to filter users by the postalCode field in an Azure's AD B2C using the graph service. This is my request: https://graph.microsoft.com/v1.0/users?$filter=postalCode eq 'qqq' This is the response I get: { "error": { …


How do I change a user's initial domain proxy address
One of our student's AAD account has an incorrect initial domain proxy address. We do not use Exchange so all the fixes coming back from my searches do not help me. We have on-premise AD. The student had a name change about 5 years ago. All has been well…

