How do I remove an org linked to my account?
Hi, So I recently reopened my Azure account and I noticed that I am under some organization that I think I joined like years ago. Now, I wanted to remove/leave the organization (BTS INC) entirely on my whole microsoft account but I cannot find the way…
How to let a group of users to access Salesforce Enterprise Application which is being configured for SSO using Microsoft Entra Id.
I'm a beginner at Microsoft Entra ID, but I have successfully configured SSO for Salesforce Application. Now I can make the Microsoft entity user to login Salesforce with the help of Microsoft account credentials instead of Salesforce…
Azure Provisioning Log: Understanding "TargetObjectActionDisabled"
Hi there, I'm trying to find out what following SkipReason means. TargetObjectActionDisabled The log entry is as follows: Result: Skipped Description: User 'xxx' will be skipped. Skip Reason: The Add operation was not performed because the Add…
Locked out of directory I am an Owner of
Hello, A friend invited me to their Azure Entra ID as a guest user, and set me as a member of the admin group that has owner privileges. I was able to log in for 10 days, created resources (including an Azure Databricks cluster that no one can access…
Everyone locked out of tenant due to a faulty Conditional Access Policy
We have been locked out of our tenant for almost 2 weeks now due to a faulty Conditional Access policy. During this week, there have been several conversations with a number of Microsoft support technicians, none of which seemed to have an understanding…
SecureMFA QR code is not working to register users
When our users access applications those requests are redirected to our ADFS server . Post Authentication as we have enabled MFA, our request is redirected to https://chart.googleapis.com to generate the QR code and with that users registered in their…
SSO login error
Hi all, I'm configuring SSO from Google Workspace to Entra ID following the documentation below and I'm receiving an error: Error message: AADSTS5000811: Unable to verify token signature. The signing key identifier does not match any valid registered…
Dynamically pass the B2C sign-in policy in .NET 8
I am developing the web application using .NET 8 with Asp.NET MVC and using Azure B2C tenant for Authentication. And it will be hosted in the Azure App services that configured with two domain urls. Based on the requested Urls, I wanted to pass the…
SSO login error
Hi All, I'm trying to configure SSO from Google Workspace to Entra ID following the documentation above but when i tried to login i received and error below: Error message: AADSTS5000811: Unable to verify token signature. The signing key identifier does…
How to fix error "Account already exists" when signing in google users on a customer entra tenant?
Dear Microsoft support team, My name is Javier Ortega, and I am writing to seek assistance with: Authentication from .Net application to Entra tenant, with google users. Currently we have a group of users migrated to a customer (external) entra tenant.…
Discussion around different ways to implement PIM for Azure resources
I've found there are two ways to use PIM to grant access to Azure resources and I'd like to understand the differences, if any, between the two. The outcome is the same however the process/workflow to achieve it is different. Method 1 Create an Entra ID…
Migration from pure Entra Cloud environment to hybrid on-prem AD x Entra environment
Hello Community, I have the problem that we want to switch from a pure Entra environment (with users, groups, etc.) to a hybrid model, in order to be able to use the advantages of on-prem AD - especially x802.1/user authentication in WiFi via…
Correct way to convert 365 tenant from AAD Connect Sync to cloud-only
Hi, about a year ago, one of my customers has enabled AAD Connect Sync to synchronize all users, security groups from their existing on-premise Active Directory to a freshly setup Microsoft 365 tenant. This past year all applications and services have…
How to fix broken web chat app after Microsoft Entra ID authentication login added
I had a chat app using Azure web app and Web PubSub working perfectly using the github example: samples/javascript/chatapp/nativeapi I made no changes to code and added the microsoft entra ID authentication requirement according the default instructions…
Is it possible to use conditional access policy with specific logged on Windows user?
Hello, Is it possible to use currently logged user as a signal inside Conditional Access policy evaluation? Scenario is below. Computer is joined to Entra ID and managed by Intune Computer has both Entra ID user configured and local user Is it…
Is it possible in a B2C tenant to make a calendar appointment on behalf of an Entra ID user?
I have a B2C application where Entra ID users can log in. If they do, and they have an outlook calendar, I would like to be able to have the application make Outlook Calendar appointments on their behalf. Is this possible? It seems only openid and…
AZUREADSSOACC Key Rollover no longer works using Hybrid Identity Administrator creds
Hi I use a PowerShell script in an Azure Hybrid Worker Runbook to automate the rollover of the Kerberos decryption key for the AZUREADSSOACC computer account. It uses a service account in Entra ID which is assigned the Hybrid Identity Administrator…
Azure AD B2C SSO and Teams app
Hi all, We are developing a Teams tab app. Our backend application is authenticating users with Azure AD B2C. How can the users log in to our application via Teams Tab app? Any sample code or document? I can find find only Entra ID SSO with Teams App.
Duplicate workflows and User in MS Entra ID governance
Hello everyone, i started working with Microsoft Entra ID and i did some workflows for the IT department, but i need to do some more workflows for other departments. Is there a way i can duplicate the workflows i created? And is there also a way to…
Cannot enable Staged Rollout from Federation to PTA
We are currently federated to Entra ID with ADFS on premises. We are attempting to run the staged rollout feature with PTA and seamless sign on. Following this article: …