Content
B2c: Override Custom AccountEnabled (Block Sign-In) behaviour
There is a possibility to Block Sign-In for AD users using Block Sign-In property in b2c. It is general solution to use "accountEnabled" property to manage it via Graph API. But it seems it doesn't work for external IDPs (Social (Google,…


Azure B2C logs out but user can sign in without credentials again
Hi Team, Setup Overview I am using B2C custom policies for sign-in flow in react application using msal-react and msal-browser packages. The user is able to log in properly for the first time after entering credentials. Now when the user clicks…


Trust Domain
Hello, We can make trust domain or trust forest if using on-prem AD to make both AD can be communicate, can we do same trust in AAD?


Azure AAD DNS
Hello, Let say i have AAD with domain mydomain.com and we also have internal DNS server to query some internal apps with same domain (mydomain.com), what should i entry in the local DNS server so all workstation can join to domain in the azure?


Microsoft_AAD_IAM extension failed to load.
HI, Has signed up as a O365 developer and getting the error when trying to access AAD https://portal.azure.com/#blade/Microsoft_AAD_IAM/ActiveDirectoryMenuBlade Try on MS Edge in Normal and InPrivate browsing, same result. Has been going on since day 1…


How to get guest users list from Azure AD
Hi I have multiple domains in my tenant. I want to get a list of guest users. Please see below example of account, what kind of guest users I want to get. rambo.jan_test.com#EXT#@abc.onmicrosoft.comm (This is UPN) I have number of accounts like this in…


How to get Microsoft Teams guest users
Hi I want to get a list of guest users who have access on microsoft teams. Please look snapshot. How to get these guest users by powershell. thanks


Microsoft Azure AD SSO (OAuth2) with conditional access
Hello everyone, Has anyone here tried using Microsoft SSO with Conditional Access (Policy)? As soon as I enable the “Require device to be marked as compliant” option there, I can’t log anymore. Without this option i can login without problems. I want…


How to fix redirect issue using msal in angular if using hash routing strategy ?
I am using Microsoft Azure AD to authenticate the user and redirect back to my angular application with response. Here in redirect url i am giving [http://localhost:4200/demo/#/abc] here abc is component where i want user to redirect after successful…


Enabling Azure AD Authentication for VM RDP for External Users
I need the following requirement for Virtual Machin RDP login Must be able to use Azure AD to authenticate to Azure VM Must be able for internal users with same domain to authenticate Must be able to invite external users with different domains…


Azure AD is not logging out Identity provider of SAML configured Enterprise application.
I have configured an Identity Provider and SAML based Single Sign on with an Enterprise application. I have also configured a Sign out URL there. When azure AD gets logged out, it is not triggering logout call to the identity provider. Is there a way to…


Cant set Supported account types to Personal Microsoft account users
I can't set the Supported account types to Personal Microsoft account in the Authentication menu. There is a warning beneath: Due to temporary differences in supported functionality, we don't recommend enabling personal Microsoft accounts for an…


Azure Hybrid joind and compliant device
Hi, I want to join my devices as hybrid join. Currently, my devices are azure registered and domain joined. I aslo another issue for device compliant. Some of my device are showing non compliant status. Could anyone help me to solve this issue? Thank…


New-AzureADServicePrincipal : Error occurred while executing NewServicePrincipal
I am following the steps to Install Export to Azure Data Lake add-in at [https://learn.microsoft.com/en-us/dynamics365/fin-ops-core/dev-itpro/data-entities/configure-export-data-lake as POC. I have an azure environment where I am the Global…


Can we add multiple domains on Azure AD Connect even if the setup of the on-prem is a one-way trust relationship?
Currently the server's AD computer object in AD must be synced to Azure AD using Azure AD Connect before it can be managed in Intune. Can we add multiple domains on Azure AD Connect even if the setup of the on-prem is a one-way trust relationship?


Get VM powerstate through resource graph api
Hi, i'm trying to get the powerstate of a vm through the resource graph api inside of a logic apps workflow, but i dont know how can i authorize the http request. I understand that i can authenticate the request through a managed identity but i want to…


Azure user managed identity - How to search and find it in AAD?
I created a user managed identity called XYZ in 3 different subscriptions under that same tenant ID. The question is how to navigate Azure Active Directory to find this user managed identity XYZ? My search by "XYZ" returned NOTHING so I must…


Detailed Info on Customizing AD Connect Sync Rules
Where can I find a detailed video and documents that explain in detail about customizing AD Connect Synchronization rules?
How to change token expiration time in Azure portal - AAD
When I access my web app that is registered in Azure AD, it first sends my app to Microsoft login page and after successful login it returns an id token which is used to retrieve the data from backend server. The expiry time of token is approx. 30 mins…


Change the default creation GUEST prefix "#EXT#"
Hello. When creating a user in Azure B2B - the user is created with the following format. User_gmail.com#EXT#@domain.onmicrosoft.com This is causing issues with our IDP. Can this be edited so when the user is created in Azure AD the #EXT# is changed as…

