Azure SSO with AWS has some issues
we built Azure integration with AWS console by creating new app inside the enterprise application in azure and we started assigning users to this newly created enterprise application. We noticed that very few users were synced to AWS and then stopped…
Entra ID as SP for SAML SSO
Hello I am trying to set up Entra ID SSO using SAML. All the i can find is how to set it up as a Idp but i am using Entra ID as SP using SAML. Has anyone used EntraID as SP using SAML? Can you please help
we have to log in to applications using SSO login.microsoftonline.com, Users have to enter their email addresses the first time of the day. Is there any setting cab be changed to login seamlessly(smoothly and continuously) without entering email every tim
Hi team, We have few applications which are integrated with Azure AD for SSO, we have to log in to applications using SSO login.microsoftonline.com, Users have to enter their email addresses the first time of the day. Is there any setting can be changed…
Unable to unistall Microsoft Entra Provisioning Agent Package - 0x80070643 Fatal Error 'Missing File'.
I am trying to deploy the API-Driven Provisioning for On-Prem and I tried to install the Microsoft Entra Provisioning Agent Package. The installation failed and it stated that there was a missing MSI package. When I tried to uninstall the files that…
Can't create Quick Access configuration - Global Secure Access
When creating Quick Access configuration in Quick Access | Create Quick Access configuration I get: Network access settings Application operation failed. no further information is provided in the error. I do have a connector set up correctly and on in…
How to delete an Azure Distribution List
I have a test group that was created in local AD and migrated to Exchange Online - no longer needed. I have deleted it in local AD and did a number of syncs but it remains in AZURE as a distribution group as well as show up in Exchange as a distribution…
I want delete users that have a blocked sign in and users who have not signed in over 90 days
I need help deleting users by last sign in date and have a blocked sign in
Error AADSTS650053: The application 'XXXX' asked for scope 'Exchange.Manage' that doesn't exist on the resource '00000003-0000-0000-c000-000000000000'. Contact the app vendor.
Hi! When I ask for the delegated permission Exchange.Manage on the url https://login.microsoftonline.com/common/oauth2/v2.0/authorize, I receive the error in this question title. The error says that the permission is asked on the Graph ressourceId, but…
Hi, I need to migrate/move my Entra Domain Services to new Subscriptions.
Hello, I need to migrate/move my Entra Domain Services to new subscriptions. What could be the possible steps and also any documentations would be greatly appreciated. Thank you! Kind Regards, Majid.
Directory Harvest Attck
Hi Everyone, we will soon be upgrading our Azure subscription to Security but right now we are getting thousands of SPAM emails can anyone please tell me if there is a way to create a conditional access policy in Entra to stop Directory Harvest…
I have cleared my Azure devops certification exam (AZ-400) 3 days back-But still I could not see the transcript generated for the same.
I have cleared my Azure devops certification exam (AZ-400) 3 days back-But still I could not see the transcript generated for the same.
SSO for Grafana with AzureAD Authentication Using Client Certificates Instead ClientID/ClientSecret
I'm trying to set up Grafana with SSO authentications- I have all the relevant endpoints to configure SSO and test it successfully but recently i was asked to not to use Client_ID/Client_Secret as shown below due to some security…
Azure B2C - custom policy ROPC - Set grant_type, scope and client_id to be not mandatory
I could made a ROPC call to get access token with username, password, grant_type, scope and client_id as parameters. Is it possible to configure the XML, so that I don't need to pass grant_type, scope, and client_id when make an ROPC call to obtain an…
Mobile SSO for an Android app that interacts with various service providers
Hey, I working on an Android application for employees that leverages several private services as service providers. I keen to provide a single-sign-on user experience, expecting the user to login only once (interactive), and interact with all of the…
Connect-OrganizationAddInService using Entra ServicePrincipal ID
I am trying to find if someone has successfully done this, basically automatize the deployment of an Add-in to Office 365 Client Secret: "1111111111111111111" (This is a secret that should be protected and not shown, I am having a look how to…
Adding users to Entra ID domain when signing up on a website
Hi there, I would like to know if it's possible to automatically import users to my Entra ID domain when signing up using my website. Is there perhaps another way of doing this or am I stuck with manually importing via CSVs/Powershell. I want to create a…
Azure B2C - custom policy ROPC - Set grant_type, scope and client_id as default
I could made a ROPC call to get access token with username, password, grant_type, scope and client_id as parameters. Is it possible to configure default parameters for grant_type, scope, and client_id in XML when making an ROPC call to obtain an access…
Microsoft Entra ID & user domain migration change
Hello, We have 2 distinct AD domains A and B in our company (without any approbation) : both are synchronized with our single tenant using Azure AD Connect. We want to migrate all our users from A to B and to keep the same Office 365 setting for those…
The client 'abc' with object id 'XXXXXXXXXXXXXXXXXX' does not have authorization to perform action 'Microsoft.Resources/subscriptions/resourceGroups/read' over scope '/subscriptions/'XXXXXXXXXXXXXXXXXX'/resourceGroups/XXXX-014-aks-rg' or the scope is in
I got into a situation where I need to access AKS cluster ,so I have added below required permission by adding myself to the group and given necessary permission but getting below error ERROR :The client 'abc' with object id 'XXXXXXXXXXXXXXXXXX' does not…
AaDApplication Proxy connector
Hi All, for Azure AD Application Proxy, under the Connector event Viewer section, I can see an event: as below: "Microsoft AAD Application Proxy Connector's inactive connection detection mechanism has identified inactive connections, number of…