No Mobile Phone Option for AAD B2C SignIn or SignUp
Hello, We currently encountered a situation in which a user didnt have a mobile phone to sign up to create an Entra ID account. The mobile phone is required to send them a verification code as our account sign up is password-less. Is it possible to have…
Truly passwordless break-glass account
Currently setting up a break glass account and I'm researching if there is a way to remove a password or the option to use one from an account in Entra Id, similar to what can be done with a consumer Microsoft account. This is in an effort to go…
How to protect Flask API routes with Azure AD B2C?
This is not that well known so I thought I may come up with an article but first, let's see if others from the community can contribute. Copilot/AI is fine but do not forget your personal touch :)
AADLoginForWindows fails to join AAD with error-2145648525
I'm using the AADLoginForWindows extension to try to domain join a VM to AAD (straight AAD, no hybrid AD). It looks from the output below that I'm not having connectivity problems, but am getting an error that the device cannot be enrolled. The error…
How do you retrieve the displayName of an App Role via Graph?
I need to retrieve the display name of an App Role assigned to a user via the Microsoft Graph API. I see the resource type appRole, but there doesn't seem to be a way to retrieve it:…
Entra ID custom schema attribute with object instead of string
i'm trying to map a custom schema attribute as an object instead of a string. this works in the core schema by just putting in "name.firstName" but I can not get the dot notation to work with custom schema such as…
How to fix Windows Hello temporarily unavailable error on hybrid devices
I am encountering a Windows Hello error on hybrid devices when trying to log in using a Hello PIN. The policy was pushed from Intune without any issues, and PIN and biometric settings were successfully configured. However, the error message "Windows…
Azure AD sync error for user with no name: DeletingCloudOnlyObjectNotAllowed
Hi, My Entra Connect job has been reporting a sync error for some time. The warning for the object with the sync issue is: DeletingCloudOnlyObjectNotAllowed I understand that the issue is likely with the immutable ID value. However, the object is a user…
We’re unable to validate your phone number
I want to create a subscription on the Azure Portal but I can't verify my phone number. The next screen I get: I've tried many phone numbers for my country and I had the same result
KeyChain Failed Mac for AzureVPN Client
Hi, I've been trying to set up the Azure VPN client for a customer but I'm being met with the following Error getKeyChainSecret: Failed to retrieve KeyChain secret. Status code -25300 16/04/2024 09:58:35 Warning removeClientAuthLoginCredentials: Failed…
Who changed this setting on Group management setting "Users can create Microsoft 365 groups in Azure portals, API or PowerShell"
HI Team, Could you please help me find a log to determine who changed below setting? Is there a particular log to check this?
Provide some scenario's on this values -> Verify and Sign in KeyCredential usage property
I am little bit confused with the documentation of Certificate Credential flow. Above documentation link -> https://learn.microsoft.com/en-us/graph/api/resources/keycredential?view=graph-rest-1.0#properties In another document it was mentioned like…
How can i get current user groups from Azure AD using claims in dotnet core?
I have a dotnet core web application and this app authorisation is working based on azure AD. Question: How can i get all the groups name related to login user? do i have to make any changes in my azure app? I have already added this setting in…
PowerShell script to retrieve a list of users without properly assigned/registered Windows or MacOS devices
Need a PowerShell script to get list of user who do have an Windows or mac OS device assigned or registered under their name We have many users who do not as any Windows or MacOS device assigned under their name These are devices which were not properly…
How to unlock a user in Azure AD
How to unlock a user in azure ad using the graph api. I did not seen any solution in Microsoft Learn. Is there any solution available to do this. I really appreciate any help :)
Azure B2C redirect url takes around 1h before taken into account
Hello, I have an Azure B2C tenant with my app for registration. Everything works wonderfully at one exception: when I add a new redirect url to my app (SPA), I need to wait for 45-60 minutes before I do not receive a 90006 error for mismatch url…
Derivation of AuthnInstant attribute value
I am using Microsoft Entra ID as IDP for my web app for SAML SSO. When I navigate to my application in Chrome the AuthnInstant is from 2 days ago, however for the same URL in Chrome incognito mode it AuthnInstant is current date-time and for Firefox it…
join to azure not appear
HI I try to join windows 10 or 11 into azure account iam administrator and windows pro not home when go to steps join to azure not appear
Duda sobre diferencia entre "applicationCredentialExpiry" y "servicePrincipalKeyExpiry" Azure AD Apps
Hola buenas, Estoy actualmente revisando unas alertas de aproximación de caducidad de credenciales en el portal de Entra ID y veo un par que dicen: Renovar las credenciales de aplicación que van a expirar (applicationCredentialExpiry según he…
Test-AzureADConnectHealthConnectivity is not recognized
Hi, We have a hybrid setup with Entra ID connect installed on our Windows Server 2022 domain controller. The sync service is running fine, and i cannot see any issues. Today we got a email notifying us about Health service data is not up to date. We…