Content
No button to export Azure AD roles and assigned users
Hello, I'm trying to download information about Azure AD roles and assigned users via the CLI, but there's no button to do so (although it should be there from all the guides I've seen). Also tried to do this via the Powershell command, but got a…


Stop synchronization between Azure AD and Azure Active Directory Domain Service?
Hi, What happens to the accounts in Azure AD when you stop Azure Active Directory Domain Service synchronization? There's no scope, all users are synched. My question is will it delete the users or just let them be? Thanks in advance


javax.mail.AuthenticationFailedException: AUTHENTICATE failed.
Hello, I am facing issue while try to access the microsoft mailbox using the access token and oAuth2. And my access token is valid. I am using the javamail to connect, but getting the below error. Exception in thread "main"…


multifactor authentication premium trial
I have received an email saying "Migrate to the Authentication methods policy in Azure Active Directory by 30 September 2024 " which states "You're receiving this notice because you have authentication methods configured in the legacy…


Azure AD connect - add second domain with same NetBios name (different forests, FQDNs)
hello. Currently we have our domain synced to Azure AD. We want to sync second domain into same tenant. Problem is - we have same NETBIOS domain name. Is it a problem? To clarify: Forest1/Domain1: fish.lv synced to Azure -> fish.onmicrosoft.com,…


Does App-only authentication can be controlled/restricted by Conditional access policy?
Hi team, I would like to know whether app only authentication can be bound by conditional access policy or not, as there is limited information available on this. i need your guidance on this ,thanks in advance.


Azure AD account login failure
I created an azure ad account to join ms hardware center. After creating an azure ad account, everything worked normally. But since I formatted my desktop today, I can't log in. When I try to log in, as shown in the picture below, the Authenticator app…


Join Machine to traditional AD on Azure VM thru Azure P2S
Hi all I have a domain controller running on Azure VM and Azure P2S VPN. In case I want to join a local machine connected to azure p2s to the domain getting an error saying Domain Controler does not exist. I have ping to DC but NsLookup cant resolve…


Can’t connect to local USB printer on Azure joined computer from local domain joined server
We have recently Azure joined some computers and come away from having them joined to the domain that’s on site, this obviously meant making them a workgroup and then joining them to Azure Active Directory. Our servers are staying on the domain that’s…


200 $ credit on Azure
good afternoon. I decided to test the services on the azure portal. at first everything was fine. but later I found out that the loan is not for a year, but only for a month. but it is advertised everywhere that this amount is for a year. Maybe I don't…


Blazor WASM Authentication (MSAL) and profile editing
I setup a profile editing user flow in Azure AD B2C active directory. I successfully setup a Blazor WASM application to redirect the user to the Azure endpoint. The user can successfully change information in the Azure page, but I cannot setup the Blazor…
iOS Webkit 'WKWebView' is not supported to access the Sharepoint resources due to Intune managed device.
I have a fully developed iOS application listed on the Appstore, in this application, we are accessing the Organisation Sharepoint sites and loading them to WKWebView (Apple iOS Webkit framework) it was working fine. after the Organisation added the…


Funnel B2C
Hello Azure Q&A, I'm looking for documentation on how to set up/configure a B2C funnel for multi region B2C tenants. What I've been able to find only (high-level) describes the idea and approach. Not the technical part in how to implement it. Does…


Provisioning app: User has 2 approle assigned.
Hi All, We have a problem related to send Approle assignment value when provision the user accounts Current Provisioning app settings is: 1 provisioning app and we assigned AzureAD Groups (12 groups) for this provisioning app We created AppRoles and…


How to Disable Email OTP Authentication Method in Azure AD
Hello, I'm consulting with a company responding to a breach situation and we're getting all the users consistent on their MFA methods. The customer wants everyone using SMS/text for now so I'm disabling Authenticator, Security Key and trying to disable…


Azure AD SCIM User Provisioning: Enable provisioning of specific group syncs with "Sync All Users and Groups" option selected in provisioning job
When the SCIM provisioning job in Azure AD is configured with the option "Sync All Users and Groups", please suggest if there any way with which provisioning job can be restricted to send sync events to specific groups which are required for…
How to get a list external tenant users from a resource tenant with azure ad B2B direct connect configured?
I want to get a list external tenant users from a resource tenant using azure ad applicaion. I configured B2B direct connect between resource tenant and external tenant. And i can search for external users in Teams. Is there a idea to get the list of…
Id token - APP Registration - SSO
Hello Guys I have one question, I noticed that when I create a APP Registration to authenticate users (Single-Sign-On) Some Apps as the ID Token checked and others Not So, Why some Apps require ID Token and Others not? Thank you so much


ADB2C Token Logout
Hi I have an adb2c tenant, and I have a system which uses adb2c login token to access apis. Once the user is logged in, the apis validate the token using jwks uri provided by B2C. The issue is, once the user logs out, the system calls the logout…


Connecting On-Premise AD from China possible to Global Azure AD?
Hi, We plan to setup the on-premise AD and sync it to the global Azure AD in a single tenant. The challenge is one of the existing on-premise AD is located in China. Each on-premise AD on the respective region have their own Domain name. Is it…

