How do I remove an org linked to my account?
Hi, So I recently reopened my Azure account and I noticed that I am under some organization that I think I joined like years ago. Now, I wanted to remove/leave the organization (BTS INC) entirely on my whole microsoft account but I cannot find the way…
I get AADSTS50139 when logging into a desktop application
I am using Kusto desktop client. When it tries to log me in, it throws the following error. How to resolve this? Failed to connect to the cluster. Do you want to add this connection anyway? Connection attempt resulted with the following error: Kusto…
Fetching Azure AD details of Members when signing using Clerk
Hi, I am building an app using NextJS, Clerk for authentication, Prisma as ORM, postgres as DB. I want to sign in using Azure/Entra AD as I'm building an app for my company and I want to fetch the details of users when they sign in using clerk and how do…
SecureMFA QR code is not working to register users
When our users access applications those requests are redirected to our ADFS server . Post Authentication as we have enabled MFA, our request is redirected to https://chart.googleapis.com to generate the QR code and with that users registered in their…
Unable to upgrade to Entra ID P2 Tier from my Azure Free Account.
Hello There, I am currently studying for my AZ-104 exam. So I had a free Azure account registered with an email id, say user1@outlook.com. I was accessing it for a month until I wanted to create & manage tenants and explore Entra ID. Now, I…
Adb2c password reset custom policy -Reset password using username
Hi, I am working on Adb2c custom policies and am stuck in the password reset policy where I need to reset the password using a username instead of the email address. The below screenshot is for User flows where it is provided that we can create a reset…
How do we find the orphaned managed identities which are not assigned to any azure service
From a list of managed identities present in azure subscription for my account, how can I identify the managed identities which are created but does not have any roles or resources attached to it. I want to find the list of all the managed identities…
How to create a Teams meeting for all to join with their personal accounts?
In a personal Teams meeting, the login option isn't displayed. However, personal accounts face restrictions when attempting to join business Teams meetings via browser or desktop. Is there a workaround? Can the Graph API facilitate this process? And can…
Document Intelligence Studio Label Data Key based authentication error
Hi, i have set up a storage account with a container. i have disabled key access and added my Entra id to the roles with storage data contributor and added the system assigned identity of document intelligence identity with storage reader role to storage…
Directory Harvest Attck
Hi Everyone, we will soon be upgrading our Azure subscription to Security but right now we are getting thousands of SPAM emails can anyone please tell me if there is a way to create a conditional access policy in Entra to stop Directory Harvest…
password reset custom policy issue while resetting password
I am using custom policy to signin and reset password. I created sigin policy and able to run and signin using my uersname(created by Graph API ). But while resteting the password and after verifying the code while clicking on Continue button I am…
Workday/Entra ID - Soft delete users without the "Delete" action selected?
We currently have Workday to Entra ID user provisioning enabled with the "Create" and "Update" actions allowed and "Delete" is not enabled. I'm wondering if anyone is able to clarify whether the integration is able to soft…
SSO login error
Hi all, I'm configuring SSO from Google Workspace to Entra ID following the documentation below and I'm receiving an error: Error message: AADSTS5000811: Unable to verify token signature. The signing key identifier does not match any valid registered…
Creating a naming convention for local user profile name when singing in with a M365 user
Hello, as far as I'm aware, the name used for the local user profile when logging in to an Entra ID joined device for the first time is the first 20 letters of the M365 display name with special characters and spaces removed. We would like to keep the…
How to delete an Azure Distribution List
I have a test group that was created in local AD and migrated to Exchange Online - no longer needed. I have deleted it in local AD and did a number of syncs but it remains in AZURE as a distribution group as well as show up in Exchange as a distribution…
Adding Token Based Azure EntraID Authentication to GraphQL APIs created on .NET7
I have a set of GraphQL APIs created on .NET7. I want to authenticate the APIs using Azure Entra ID User/App Access Tokens. Is it possible to achieve the same out of the box, else kindly suggest a workaround.
M365 hosting Tenant A and Azure AD for AAD Device on Tenant B and On prem
I have a scenario where "M365 is hosted on Tenant A with domain.com" and Azure AD for AAD Joined devices on "Tenant B with onmicrosoft.com" and on premises with "Domain.local" . Problem-User need to login using different…
Sending Azure AAD provisioning logs to Splunk
How can we send user provisioning logs from azure Aad to Splunk for monitor.
Do Bootstrap Services such as OCaaS Question
I understand that bootstrap services bypass conditional access policies to run uninterrupted. However, I am wondering when this service should be seen in the logs with a successful login. For example, if someone attempts to log in to Outlook mobile but…
How to fix a users identity from "mail" to "ExternalAzureAD"?
I invited 3 users to our tenant, 2 of the users have been assigned "ExternalAzureAD" while the other is showing "mail". This is causing blocks as that user also needs to have the identity of "ExternalAzureAD".