HR Driven provisioning - Tenant URL not accepted
Hello, I follow this guide to connect SuccessFactors to Entra: https://learn.microsoft.com/en-us/entra/identity/saas-apps/sap-successfactors-inbound-provisioning-cloud-only-tutorial But I cannot establish a connection. The tenant url is not accepted…
Entra joined device does not receive Kerberos ticket for "custom" SPN
Hi everyone, I am currently trying to make our mail system's (not Outlook) SSO work with an Azure/Entra joined device. So the device is not domain joined, it is only Entra joined. But has line of sight to the on prem domain controllers so it actually…
How to fix Windows Hello temporarily unavailable error on hybrid devices
I am encountering a Windows Hello error on hybrid devices when trying to log in using a Hello PIN. The policy was pushed from Intune without any issues, and PIN and biometric settings were successfully configured. However, the error message "Windows…
Azure Function App Slow /msi/token call with ManagedIdentityCredential
I've got an Azure Function App that is connecting to Azure Key Vault using a System-Assigned Managed Identity. The Azure Key Vault is in RBAC mode, not Policy-based. This works as expected, but is very slow. Tracking in Application Insights we can see…
while configuring password write back for SSPR, I get error and it says check event viewer. Not able to enable SSPR.
While enabling SSPR, I need to enable password writeback in AAD connect however, when doing so, I face below mentioned error which is not letting me enable the same. Can someone please suggest on this. TLS1.2 is already running on server. And we are…
how i can add windows server 2022 standard physical server to to intune company portal
how i can add HPE ProLiant DL380 Gen11 Server installed with windows server 2022 standard physical server to join to intune company portal same like work & school account joining to Domain
Acquiring id tokens via IWA: Error Code 3400073293, 'Account type is unknown.'
Hi guys. I'm using WAM in MSAL.NET, and I'm hoping to perform a silent id token acquisition via IWA specifically - based off windows credentials, before a user has manually entered their credentials into a wam broker prompt. The machine is domain-joined,…
Issue with FIDO2 Security Key Sign-in on Hybrid AD Joined Machine
Hello Team, I am encountering an issue with a Hybrid AD joined machine where I am unable to log in using FIDO2 security keys for Windows Hello for Business. Below are the details of the setup: System Details: __A. Hybrid AD Joined PC__: ```- …
Device name/ID unavailable for MAC OS in the Azure Sign-in logs
Hello Azure Team I am experiencing an issue where the MAC device ID is not visible in the Azure sign-in logs for sign-ins associated only with the Chrome browser. This means that we are unable to retrieve the MAC device ID information for users who…
Hello, The only account for azure portal (XXXXXXXX@outlook.com ) doesn't work . Subscription:pay-as-you-go. Tenant ID:XXXXXXXXXXXXXXXX Subscription ID: XXXXXXXXXXXXXXXX
Hello, The only account for azure portal ([XXXXXXXXXXXXXX@outlook.com] ) doesn't work . Subscription: pay-as-you-go. Tenant ID:XXXXXXXXXXXXXXXXXX Subscription ID: XXXXXXXXXXXXXXXXXXXXXXXX { "sessionId":…
Graph API - How to handle empty manager of CEO?
Hello, I have the use case where I query the manager of a given user. But when the given user is our CEO then I get an error, since he doesn't have a manager. Because I want to avoid hardcoding his user to skip this query, what are the options to handle…
This app requires your admin's approval to
Hello. I have a similar problem like many people have when using App Registrations and Enterprise Apps: The login fails with a message requiring admin, even though you have things configured that a user should be able to consent My settings all…
Azure.Security.KeyVaults.Secrets manifest mismatch, dll wont load
https://learn.microsoft.com/en-us/answers/questions/ask/ I am trying to execute the following lines of code in a codeactivity to be used in powerapps: // using Azure.Core; using Azure.Identity; using Azure.Security.KeyVault.Secrets; var client = new…
Password Hash Synchronization heartbeat was skipped in last 120 minutes
Keep receiving the following error: Password Hash Synchronization heartbeat was skipped in last 120 minutes Password Hash Synchronization has not connected with Microsoft Entra ID in the last 120 minutes. As a result passwords will not be synchronized…
How to remove the existing tenant from Azure. I have deleted but still its found
How to remove the existing tenant from Azure. I have deleted but still its found
Azure Service Principals are not deleting from the Azure CLI
I'm executing the code below, and it appears that the delete method isn't able to detect all the service principals like the list method does. Has anyone else encountered this problem?
I am trying to access microsoft graph api to send message to a channel in a team. I am using this endpoint https://graph.microsoft.com/beta/teams/{team_id}/channels/{channel_id}/messages. getting 403 forbidden error
I am trying to access microsoft graph api to send message to a channel in a team. I am using this endpoint https://graph.microsoft.com/beta/teams/{team_id}/channels/{channel_id}/messages. I have already granted all the API permissions in AAD. I have…
Guest access with Google Workspace account using OTP doesn't work
Hello, Guest access is configured in our Microsoft 365 tenant and works correctly, except for users with Google Workspace accounts using @fabrikam.com domain (example). No federation is configured in our tenant. One Time Passcode is configured in our…
How to authorize the Managed Identity in standard logic app trigger
Please help with latest documentation on authorizing the Managed Identity in standard logic app. To call between workflows and across LA`s
What Authentication solution would you suggest in this scenario?
Context: We are migrating from Azure App Gateway V1 to Azure App Gateway V2 for load balancing. For authentication purposes, we used NTLM which AG V2 does not support. Now I am trying to find an alternative. Ideally, I want the authentications to…