Microsoft Q&A

Azure Active Directory

12,550 questions

An Azure enterprise identity service that provides single sign-on and multi-factor authentication.

12,550 questions with Azure Active Directory-related tags

Sort by: Updated
1 answer

administrate permission needed to upgrade groups

I have created several groups in azure (intune) but i still have an error by adding them in perfiles. i do i resolve that?

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
12,550 questions
Microsoft Intune Grouping
Microsoft Intune Grouping
Microsoft Intune: A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.Grouping: The arrangement or formation of people or things in a group or groups.
1 question
asked 2023-01-17T20:25:32.19+00:00
Tech 0 Reputation points
commented 2023-01-27T10:31:10.23+00:00
Givary-MSFT 11,251 Reputation points Microsoft Employee
2 answers One of the answers was accepted by the question author.

Removing a Connect Health server

We replaced our AZ Connect box some time ago when the previous OS/version was EOL. I recently went into Azure Active Directory Connect Health and noticed that Sync Errors, Sync Services, AD FS services, etc are all displaying "The caller is not…

Azure
Azure
A cloud computing platform and infrastructure for building, deploying and managing applications and services through a worldwide network of Microsoft-managed datacenters.
150 questions
Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
12,550 questions
Microsoft Exchange Hybrid Management
Microsoft Exchange Hybrid Management
Microsoft Exchange: Microsoft messaging and collaboration software.Hybrid Management: Organizing, handling, directing or controlling hybrid deployments.
1,230 questions
asked 2023-01-26T11:17:44.8633333+00:00
Russell 0 Reputation points
answered 2023-01-27T10:28:59.51+00:00
Russell 0 Reputation points
1 answer

How can I enable combined security information registration in Azure Active Directory?

Hi, I have Azure AD Premium P2 License. I want to enable combined security information registration in Azure Active Directory. However, I can not see this…

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
12,550 questions
asked 2023-01-23T17:04:57.53+00:00
Enfal C 0 Reputation points
commented 2023-01-27T10:21:21.65+00:00
Shweta Mathur 11,056 Reputation points Microsoft Employee
3 answers

I'm unable to add Azure users to NTFS permissions for file share (Azure FIles, AAD DS-joined)

I am trying to set up a file share on Azure Files so that I can use it to store my FSLogix profiles for an Azure Virtual Desktop environment. I'm following this MS guide:…

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
12,550 questions
FSLogix
FSLogix
A set of solutions that enhance, enable, and simplify non-persistent Windows computing environments and may also be used to create more portable computing sessions when using physical devices.
367 questions
Azure Storage Accounts
Azure Storage Accounts
Globally unique resources that provide access to data management services and serve as the parent namespace for the services.
1,535 questions
asked 2023-01-25T12:16:25.61+00:00
D Chamberlain 0 Reputation points
commented 2023-01-27T10:21:04.1466667+00:00
D Chamberlain 0 Reputation points
1 answer

How we can secure the local.setting.json file inside our Azure Function before deploying it to Azure

I am building an Azure Function >> and inside its local.settings.json, i am storing some sensitive data, as follow:- { "IsEncrypted": false, "Values": { "AzureWebJobsStorage":…

Azure Key Vault
Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
654 questions
Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
12,550 questions
Azure Functions
Azure Functions
An Azure service that provides an event-driven serverless compute platform.
2,573 questions
asked 2023-01-26T22:55:47.93+00:00
john john 676 Reputation points
commented 2023-01-27T10:17:53.4+00:00
john john 676 Reputation points
1 answer

Azure AD B2C Locked users notifications

I am using Azure AD-B2C for sign-in/sign-up and looking for a way to get the email notification/alert to administrator, if the user account is locked-out after unsuccessful login attempts.

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
12,550 questions
Azure
Azure
A cloud computing platform and infrastructure for building, deploying and managing applications and services through a worldwide network of Microsoft-managed datacenters.
150 questions
asked 2023-01-23T22:02:40.5133333+00:00
NRM 26 Reputation points
commented 2023-01-27T10:15:23.6066667+00:00
Shweta Mathur 11,056 Reputation points Microsoft Employee
1 answer

Is there a developer SDK/API available that allows programmatically authenticating users on Azure AD without user interaction, using SAML 2.0?

I am writing testing software to test SASE firewalls. One requirement is to be able to simulate the login and authentication hundreds of test users using SAML without user interaction. So for instance, we would have a list of users/passwords that we have…

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
12,550 questions
asked 2023-01-23T22:04:27.0866667+00:00
Lok, Vincent 0 Reputation points
commented 2023-01-27T10:14:37.6766667+00:00
Shweta Mathur 11,056 Reputation points Microsoft Employee
0 answers

Generating an access token from an ID token - Custom policy

I am using a id_token to pass information to AD B2C to bootstrap a user-journey from a link (similar to email sign in ) . The url-builder creates a link …

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
12,550 questions
Azure Active Directory External Identities
asked 2023-01-09T13:40:15.307+00:00
roshin.thomas 1 Reputation point
edited the question 2023-01-27T10:08:58.3533333+00:00
Shweta Mathur 11,056 Reputation points Microsoft Employee
1 answer One of the answers was accepted by the question author.

B2C: Block sign in for Social (Google, Facebook) and other external IDPs

There is a possibility to Block Sign-In for AD users using Block Sign-In property in b2c. It is general solution to use "accountEnabled" property to manage it via Graph API. But it seems it doesn't work for external IDPs. The only solution…

Azure Active Directory External Identities
Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
12,550 questions
Microsoft Graph
Microsoft Graph
A Microsoft programmability model that exposes REST APIs and client libraries to access data on Microsoft 365 services.
552 questions
asked 2023-01-26T14:28:20.47+00:00
Mikhail Delly 46 Reputation points
accepted 2023-01-27T10:07:48.8033333+00:00
Mikhail Delly 46 Reputation points
0 answers

How to monitor Ubuntu 4 VM in Hetnzer

Hi All, My 4 VMs are running in Hetzner Cloud I have monitor 4 VMs of ubuntu OS running on it and some data is also running in all 4 VMs. I want to write a shell script on that 4 VMs whether they are Up/Down like ping That script should check daily or…

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
12,550 questions
Not Monitored
Not Monitored
Tag not monitored by Microsoft.
23,669 questions
Windows Server PowerShell
Windows Server PowerShell
Windows Server: A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.PowerShell: A family of Microsoft task automation and configuration management frameworks consisting of a command-line shell and associated scripting language.
4,610 questions
asked 2023-01-27T10:05:56.1933333+00:00
Mohd Rashid 0 Reputation points
1 answer

Invalidate old Refresh Token after using it to get new access and refresh token

Hi, Is there a way in AzureAD to invalidate the refresh token everytime it's used to get a new access token and new refresh token?

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
12,550 questions
asked 2023-01-10T13:34:58.747+00:00
Hafiz Abdul Haseeb 1 Reputation point
edited the question 2023-01-27T10:02:56.5933333+00:00
Shweta Mathur 11,056 Reputation points Microsoft Employee
1 answer

Integration of Azure Active Directory with my Service Now

Q: New Question: For my configuration, my Azure prerequisites are: New Application registry to be created Assign Roles Provided below in table Add Application Registry to Root Management Group to access all subscriptions available. Details to…

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
12,550 questions
asked 2023-01-09T18:29:15.257+00:00
PURAM KRISHNA SUMANTH 21 Reputation points
edited the question 2023-01-27T09:54:46.8366667+00:00
Shweta Mathur 11,056 Reputation points Microsoft Employee
0 answers

I want to setup USB restriction policy on azure portal for 2 users

I want to setup USB restriction policy on azure portal for 2 users

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
12,550 questions
Windows Group Policy
Windows Group Policy
A feature of Windows that enables policy-based administration using Active Directory.
1,866 questions
Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
501 questions
asked 2023-01-27T08:50:46.9466667+00:00
Shailesh Chaugule 0 Reputation points
commented 2023-01-27T09:50:23.9233333+00:00
Sam Cogan 7,362 Reputation points Microsoft MVP
1 answer

How to manage access token via MSAL and a WebAPI as a background of a WebApp

Dear all, we use in our webapp, we have and endpoint in a WebAPI which use a signed user which provide an authorization code for generating an access/refresh token, via an HttpClient request to: …

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
12,550 questions
asked 2022-12-30T13:03:50.7+00:00
Adrien Ruffie 1 Reputation point
edited the question 2023-01-27T09:33:09.11+00:00
Shweta Mathur 11,056 Reputation points Microsoft Employee
0 answers

Grant-CsApplicationAccessPolicy with az PowerShell command

I am trying to give my app an access policy as a user. The next commands work for me: New-CsApplicationAccessPolicy -Identity myAPP-Link -AppIds "[my app id]" -Description "[description]" Grant-CsApplicationAccessPolicy…

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
12,550 questions
asked 2022-12-12T13:54:44.543+00:00
Orlando Luque 26 Reputation points
edited the question 2023-01-27T09:30:53.8633333+00:00
Shweta Mathur 11,056 Reputation points Microsoft Employee
1 answer

authorize AzureAD access_token in .net 6 webapi getting invalid token signature

I have added my angular application into azureAD and trying to get access_token and passing that token to webapi but getting unauthorized error. I have tried multiple ways. I am just accessing basic weatherforecast controller with authorize attribute …

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
12,550 questions
asked 2022-12-04T15:51:41.907+00:00
srinivas kolagani 1 Reputation point
edited the question 2023-01-27T09:30:15.2933333+00:00
Shweta Mathur 11,056 Reputation points Microsoft Employee
1 answer

How to distinguish between Changetype: "Updated" in Microsoft Graph for Change Notifications for deleted user

I am new to Microsoft Graph Change Notifications. By exploring relevant questions I came to know that when a user is deleted it is a "soft delete" and hence a ChangeType: "Updated" is sent in the graph notification. However, what…

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
12,550 questions
asked 2022-10-03T12:16:28.423+00:00
Zain 1 Reputation point
edited the question 2023-01-27T09:29:00.9366667+00:00
Shweta Mathur 11,056 Reputation points Microsoft Employee
6 answers

Read Outlook Mails via IMAP using nodejs and oauth2

My requirement is very simple. I have a node server, which doesnt have login page, there is no interactivity login page(dont want to redirect using express.js). I want to connect my mailbox id and read all unread emails from nodejs using oauth2…

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
12,550 questions
asked 2022-06-03T06:14:42.097+00:00
edited the question 2023-01-27T09:28:26.3966667+00:00
Shweta Mathur 11,056 Reputation points Microsoft Employee
0 answers

Filtering users in AD B2C with graph service by postalCode not working

Hello, I am trying to filter users by the postalCode field in an Azure's AD B2C using the graph service. This is my request: https://graph.microsoft.com/v1.0/users?$filter=postalCode eq 'qqq' This is the response I get: { "error": { …

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
12,550 questions
Microsoft Graph Users API
Microsoft Graph Users API
A Microsoft API that allows you to build compelling app experiences based on users, their relationships with other users and groups, and the resources they access for example their mails, calendars, files, administrative roles, group memberships.
545 questions
asked 2023-01-27T09:24:18.4433333+00:00
Cristi Stefan 41 Reputation points
6 answers

How do I change a user's initial domain proxy address

One of our student's AAD account has an incorrect initial domain proxy address. We do not use Exchange so all the fixes coming back from my searches do not help me. We have on-premise AD. The student had a name change about 5 years ago. All has been well…

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
12,550 questions
asked 2022-05-01T03:00:33.583+00:00
Michael Basso 1 Reputation point
edited the question 2023-01-27T09:21:29.74+00:00
Shweta Mathur 11,056 Reputation points Microsoft Employee