Microsoft Q&A

Azure Active Directory

13,601 questions

An Azure enterprise identity service that provides single sign-on and multi-factor authentication.

13,601 questions with Azure Active Directory-related tags

Sort by: Updated
0 answers

How to download azure AD users' missing properties

Dear Support, I'm trying to download all users from Azure AD using the "Download users" option, & received the following default property values from CSV file, 1. userPrincipalName displayName surname mail givenName id …

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
13,601 questions
Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
3,974 questions
Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
993 questions
Azure Active Directory External Identities
Azure Active Directory Priviledged Identity Management
asked 2023-03-28T16:31:06.6366667+00:00
MJ 91 Reputation points
1 answer One of the answers was accepted by the question author.

Azure SCIM: remove user from sync group does not delete the user

I sync Azure AD into my server via SCIM. I created an application and I assigned a group with users to that app. I started provisioning. When I add a user to the sync group, I see a SCIM call to create a new user and to add it to the group. When I…

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
13,601 questions
asked 2021-12-15T15:46:01.987+00:00
Felix H 21 Reputation points
edited the question 2023-03-28T16:28:41.85+00:00
JamesTran-MSFT 27,836 Reputation points Microsoft Employee
0 answers

Getting error"User is not a member of the domain Admins group" While configuring Azure AD connect *Federation with AD FS* in Credentials section

I trying to configure Azure AD connect and federation with AD FS, I logged into the VM Server using my Administrator Id& pass(this is how i generally login ) But it throws error saying you must be logged in as a domain user to configure federation…

Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
993 questions
Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
13,601 questions
asked 2023-03-27T21:10:04.34+00:00
Raghava Sai Akula 251 Reputation points
edited a comment 2023-03-28T16:21:42.3433333+00:00
Raghava Sai Akula 251 Reputation points
1 answer

What are the quotas for sending MFA verification codes via SMS for Azure AD B2C?

Hi, We started using MFA for our Azure AD B2C flows and we noticed that we started getting error messages when trying to send verification codes via SMS (this happened when multiple people were testing things on the same B2C tenant and using the MFA a…

Azure Active Directory External Identities
Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
13,601 questions
asked 2023-03-27T12:50:42.26+00:00
Cristina DC 0 Reputation points
edited the question 2023-03-28T16:19:06.1866667+00:00
Akshay-MSFT 3,956 Reputation points Microsoft Employee
0 answers

Are there any negative effects if I hybrid sync all on-prem devices in my forest with Azure?

About 1,000 devices. When I configure the device option in AD sync and HYBRID sync all devices are there any expected or known complications?

Microsoft Intune
Microsoft Intune
A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.
2,382 questions
Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
13,601 questions
asked 2023-03-28T16:07:54.4433333+00:00
Justin Lee 101 Reputation points
1 answer

Password Expiration Policy for Azure AD B2C

Hi, I was implementing the password expiration logic for Azure AD B2C custom policies flows. I read the official documentation and followed the steps to define the password expiration threshold and introduced the logics in the custom…

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
13,601 questions
asked 2023-03-22T10:04:53.2566667+00:00
DiStRuCtOr 0 Reputation points
commented 2023-03-28T16:07:25.08+00:00
DiStRuCtOr 0 Reputation points
0 answers

IBMWEBSPHERE and azure ad

Dear community members, could you please with steps to protect my application url deployed on ibmwebsphere,WAS, using azure ad?

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
13,601 questions
asked 2023-03-24T16:54:32.36+00:00
commented 2023-03-28T16:05:01.02+00:00
Sandeep G-MSFT 5,171 Reputation points Microsoft Employee
1 answer One of the answers was accepted by the question author.

Do you need GPO for hybrid deployment of current on prem devices or will the user scope for mdm suffice?

Do you need GPO for hybrid deployment of current on prem devices or will the user scope for mdm suffice? Seeing conflicting articles. Whats the point of user scope for the mdm vs the GPO?

Microsoft Intune Enrollment
Microsoft Intune Enrollment
Microsoft Intune: A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.Enrollment: The process of requesting, receiving, and installing a certificate.
914 questions
Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
13,601 questions
Microsoft Intune
Microsoft Intune
A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.
2,382 questions
asked 2023-03-28T01:05:11.7533333+00:00
Justin Lee 101 Reputation points
accepted 2023-03-28T15:44:42.0766667+00:00
Justin Lee 101 Reputation points
1 answer

How to test Hybrid joining current on-prem devices to Azure

My company wants to hybrid join some current on-prem devices to Azure to test to ensure that flipping the switch on AAD Connect wont cause any issues. Is there a way to do this? Are there any issues with converting the whole forest to hybrid if no…

Microsoft Intune
Microsoft Intune
A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.
2,382 questions
Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
3,974 questions
Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
13,601 questions
Microsoft Intune Enrollment
Microsoft Intune Enrollment
Microsoft Intune: A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.Enrollment: The process of requesting, receiving, and installing a certificate.
914 questions
asked 2023-03-28T00:49:32+00:00
Justin Lee 101 Reputation points
commented 2023-03-28T15:43:27.5833333+00:00
Justin Lee 101 Reputation points
1 answer

Install Gitlab with limited PCs Access

Hello, I need to install gitlab on Azure for 3 Developers but I want to limit the access to gitlab on specific office PCs Is that possible and how can I do that?

Microsoft Intune
Microsoft Intune
A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.
2,382 questions
Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
13,601 questions
Microsoft Intune Configuration
Microsoft Intune Configuration
Microsoft Intune: A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.Configuration: The process of arranging or setting up computer systems, hardware, or software.
1,140 questions
Windows Server Storage
Windows Server Storage
Windows Server: A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.Storage: The hardware and software system used to retain data for subsequent retrieval.
555 questions
asked 2023-03-28T01:04:17.29+00:00
Mohamed Adel 21 Reputation points
answered 2023-03-28T15:30:17.3333333+00:00
Limitless Technology 16,826 Reputation points
0 answers

Getting this error trying to enable SSO for an Enterprise App: This identity provider ID is linked to another account.

After getting this error I did a test setup using Okta with the same settings and it works but I don't want to pay for another subsctiption.

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
13,601 questions
asked 2023-03-28T15:28:17.6966667+00:00
Pete Varga 0 Reputation points
1 answer

forward Analytic and Debug log

Hi all I was wondering if it was possible to forward LDAP-Client Debug debug/analytics logs. (they're ".etl" logs) I was trying to forward and display them under Forwarded Events using a Subscription. Have developers implemented it?…

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
13,601 questions
Windows Server
Windows Server
A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.
8,850 questions
asked 2023-03-27T12:46:12.0833333+00:00
Nathan 1 Reputation point
answered 2023-03-28T15:27:03.95+00:00
Limitless Technology 16,826 Reputation points
2 answers

Action required: Migrate your data from Azure unmanaged disk storage to managed disks

Not known where subscription is located Subscription ID: ******8888 It not on my known tenants. How to locate tenant according to subscription ID ???

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
13,601 questions
Azure Disk Storage
Azure Disk Storage
A high-performance, durable block storage designed to be used with Azure Virtual Machines and Azure VMware Solution.
384 questions
asked 2023-03-28T07:41:54.69+00:00
Jan Fimbinger 0 Reputation points
answered 2023-03-28T15:24:09.4066667+00:00
Sumarigo-MSFT 32,086 Reputation points Microsoft Employee
2 answers

Migrate from Azure AD Cloud Sync to Azure AD Connect

We want to enable Self-Service Password Reset (SSPR) and Azure AD hybrid enrollment for an existing environment. Currently the environment is configured with the Azure AD Cloud Sync agent which supports neither of the features we'd like to…

Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
3,974 questions
Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
13,601 questions
asked 2023-03-23T22:38:21.1633333+00:00
Erik Wooldridge 0 Reputation points
commented 2023-03-28T15:18:13.5666667+00:00
Givary-MSFT 13,316 Reputation points Microsoft Employee
0 answers

Azure App registration permissions assigned in a multi tenant app

Hello, I have an app registration in tenant 1 that has the following permissions: The app regisstration is multi tenant. When i grant consent (through my own app that uses this application) for tenant 2, not all permissions are assigned As you can see…

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
13,601 questions
asked 2023-03-28T14:12:59.56+00:00
Liviu Dumitrescu 26 Reputation points
0 answers

AAD Connect 400 Bad Request

Hey everybody, i have a problem. A client try to login to aad connect setup assistent zu change something but he cant sign in. When he trys to sign in the error code "Unable to validate credentials. verify network connectivity and firewall or proxy…

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
13,601 questions
asked 2023-03-28T13:59:20.8533333+00:00
Jan Rigsinger 0 Reputation points
1 answer

Give read-write permissions on blob storage recursively using C#

I have a container in one of the data lake. There are multiple folders into that container. Now I want to give specific access/permission using C#. Basically I have to create a function (webhook) which will give permissions to folders into container. Is…

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
13,601 questions
C#
C#
An object-oriented and type-safe programming language that has its roots in the C family of languages and includes support for component-oriented programming.
7,583 questions
Azure Data Lake Storage
Azure Data Lake Storage
An Azure service that provides an enterprise-wide hyper-scale repository for big data analytic workloads and is integrated with Azure Blob Storage.
937 questions
Azure Functions
Azure Functions
An Azure service that provides an event-driven serverless compute platform.
2,796 questions
asked 2023-03-28T09:00:16.3566667+00:00
Khandu Shinde 0 Reputation points
commented 2023-03-28T13:38:00.2333333+00:00
Khandu Shinde 0 Reputation points
0 answers

Unable to delete a custom domain name

I am attempting to delete a custom domain name from a test tenancy for a DNS name that I own. There is a mail enabled security group which was created using a trial license which has now expired. I am unable to update the group mail name suffix as the…

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
13,601 questions
asked 2023-03-28T13:31:05.1+00:00
John Flynn 0 Reputation points
1 answer

End session

Why does Microsoft not end a session but show the success "signed out" page? And doesn't redirect to provided page: https://login.microsoftonline.com/***Directory id***/oauth2/logout?post_logout_redirect_uri=Our identity server…

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
13,601 questions
asked 2023-03-24T16:07:06.7733333+00:00
Hlib Stadnik 0 Reputation points
answered 2023-03-28T13:15:20.2033333+00:00
Akshay-MSFT 3,956 Reputation points Microsoft Employee
1 answer One of the answers was accepted by the question author.

Custom Attribute in ON-PREM AD to sync with Azure AD Connect

Hi Team, I have created a custom attribute in AD-ON PREM Server. I have already installed Azure AD Connect on the ON-PREM server. I think we need to choose customize synchronization options and need to checkbox directory extension attribute sync to add…

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
13,601 questions
asked 2023-03-28T10:16:24.22+00:00
accepted 2023-03-28T12:58:12.1333333+00:00