Create Conditional Access Policy to block Impossible Travel
I an trying to setup a Conditional Access policy to block impossible travel as listed in the article below. When I get to step 12, there is no option to select Impossible travel. I have all the required licenses to support Conditional Access policies.…
Does Error 50053 Override Conditional Access Rules and Expose Passwords?
As a follow up for further clarification questions related to the Microsoft provided answer on this post: Login attempts using Password Hash Sync Can you clarify whether the error message "Sign-in was blocked because it came from an IP address with…
Is there a way to remove users from a specific group after x amount of time in Azure?
Hello, I want to know if there is a way to automatically remove users from a specific group after x amount of time. I think you can do it with Azure automation but i'm not sure. And if there is a way how should I do it? Is there a script maybe…
Adding groups to Administrative Units
I navigated to Entra https://entra.microsoft.com/ under Identity > Roles and admins > Admin Units and created an Administrative Unit with Restricted Management enabled. This was done while I was elevated to Global Admin. After creating the…
Azure B2C - How to show a custom HTML page after password reset flow? The default behaviour is auto login after password reset but we have a requirement to redirect to a html page from where user can sign in.
Azure B2C - How to show a custom HTML page after password reset flow? The default behaviour is auto login after password reset but we have a requirement to redirect to a html page from where user can sign in. So far I know that I need a content…
Issues with Calling Multi-Tenant Azure Function API from SPFx WebPart
Hello everyone, We are currently building a multi-tenant web API hosted as an Azure Function App, and we need to call this API from a SharePoint Framework (SPFx) web part. We have successfully set up the authentication, and we can access the API from…
Azure AD SCIM Provisioning Error with AWS SSO
Hi, I've configured an Ent app that make SSO to AWS. in the provisioning step, I came across an issue with the synchronization of one of the provisioned group members, as following: Error code: …
Verification E-mail Azure B2C not delivered to users
Since this morning customers signing on with our service do not receive the email with the verification code anymore. The audit logs show successful sending of the email. We were able to verify the issue and tried with different email addresses at…
To Understand the Secure score in security
How can I use which APIs to retrieve recommended actions, status, regression, and information on Microsoft update in secure score? How to get the Status ,regressed and Microsoft update
i can't activate Azure P2 license and it made me set up another tenant .What can i do for this situation
I created a new azure free tenant to study for my AZ-104 but unfortunately,I can't activate a P2 license and it mademe set up another tenant.
Authentication Issue: No Refresh Token Found in Cache
Hello Support Team, I am encountering a persistent authentication issue while attempting to access Azure services through our application. Below is the error message received during the authentication process: Errors: [ { "errorMessage":…
Issue with Microsoft Login in my project
I am facing issue with Microsoft Login in my project. it's working since past 6 months but all of sudden it shucks like we have no error on console. when we click on button "Login with Microsoft" then it goes to Microsoft site and return to my…
How to add an aud claim to JWT ID token?
I want to use Microsoft Entra ID (Azure AD) as an access provider to an external database (Fauna). However, when authenticating using Microsoft Security Authentication Library (msal) the generated JWT ID token aud claim is the application ID (as…
samltoolkit registration error
I am following guide in this https://learn.microsoft.com/en-us/entra/identity/saas-apps/saml-toolkit-tutorial#assign-the-azure-ad-test-user. I am stuck at registration on https://samltoolkit.azurewebsites.net/Account/Register I use User principal…
Microsoft Entra - How to Trigger an MFA Request with an API
Is it possible for a custom application to trigger a Microsoft API to prompt the user via email, text, or Microsoft Authenticator to authorize themselves into our application? We've implemented this using Okta and we're considering moving to Azure,…
How to sign in on azure portal free account for unsupported countries?
I am trying to sign in on azure portal free portal account , but i found my country is not in list of supported . How can i use it? I have try to contact the support team by asking support request this is the error: The portal is having issues…
Disallowing users to modify the Network Security Group, Firewall and VNET settings in my Azure Subscriptions?
I wanted to restrict the ability for the users to add and modify the NSG rule for all users, except the member of the Azure cloud-only group called "Network-Team". This policy must be enforced for all Network settings like NSG, VNET or firewall…
Login attempts using Password Hash Sync
First of all legacy auth is blocked, all other countries are blocked, MFA is enforced for everyone, and other risk factors block access. The issue is Password Hash Sync that's used to support Hybrid Azure AD doesn't trigger any conditional access…
Entra Domain Services and subnet
I am attempting to create Microsoft Entra Domain Services I have created a VNET with address space 10.35.0.0/16 I have created a subnet with address space 10.35.2.0/24 But when creating the domain and attempting to assign the domain services to the…
How to change audience in token used for Azure Analysis Services REST API?
We use the Azure Analysis Services REST API to trigger model updates and refreshes. We received the following email from Microsoft indicating that the audience for the token used to make those requests needs to be changed. You’re receiving this notice…