About Microsoft Teams users access review
I want to have the Microsoft Teams users access review using powershell I know I can able to do this from Azure AD using GUI but to use it I need P2 or Microsoft Governance license so due to which I want to use Powershell script Is anyone know the PS…
Does Azure AD B2C allow to create groups?
I want to create groups in Azure AD B2C for a list of users/consumers. There will be departments and there are employees in that department. I don't see an option for groups in the Azure Portal, and can't create groups. How can I create groups through…
SAML RegexReplace
I setup SSO for a library portal we use but the vendor wants us to add claims Email, Firstname, Lastname and UserRole. I was able to add everything except for UserRole. They recommended using RegexReplace to add a custom claim like their other clients…
Unable to create the synchronization service account for Azure Active Directory.
Unable to create the synchronization service account for Azure Active Directory.
How to fix Sequence contains more than one element
Hi, I keep getting this error while trying to Generate a work order for an agreement booking date, Create a work order, or even Copy a project on Project Operations. I have already tried checking the date we have on Dataverse for any duplicates but…
HR Driven provisioning - Tenant URL not accepted
Hello, I follow this guide to connect SuccessFactors to Entra: https://learn.microsoft.com/en-us/entra/identity/saas-apps/sap-successfactors-inbound-provisioning-cloud-only-tutorial But I cannot establish a connection. The tenant url is not accepted…
User birth date property in Azure/M365
I want to add birth dates for all users in the tenant and then use this information in Power Automate to create a workflow that sends Teams messages and emails on their birthdays. I don't want to store this data in a SharePoint list. I've attempted two…
AADSTS50020: User account 'example@example.com' from identity provider 'live.com' does not exist in tenant 'Default Directory' and cannot access the application '' in that tenant.
Hello, I am trying to integrate sign-in with Azure-ad using Next Auth. I followed all of the instructions in https://next-auth.js.org/providers/azure-ad and created a new application with the signInAudience set to AzureADandPersonalMicrosoftAccount.…
What are the limitations and features and expected issues that we should be aware of from classic site which was converted and mapped to modern site?
If we return to Classic site experience then what are the limitations and features and expected issues that we should be aware of from classic site which was converted and mapped to modern site? Also how to remove the achieved mode on that SharePoint…
Azure AD B2C - Claims transformation with 'StringSubstring'
Hi, We have single-sign-on solution based on Azure AD B2C. We also have multiple IDP's integrated through custom policies. One of the IDP is Auth0 and Auth0 has some other internal federations. When user is trying to sign in through Auth0(using…
Acquiring id tokens via IWA: Error Code 3400073293, 'Account type is unknown.'
Hi guys. I'm using WAM in MSAL.NET, and I'm hoping to perform a silent id token acquisition via IWA specifically - based off windows credentials, before a user has manually entered their credentials into a wam broker prompt. The machine is domain-joined,…
Enable passwordless sign-in with Microsoft Authenticator
Hi Team, I would like to check if its possible to implement passwordless sign-in with Microsoft Authenticator as mentioned in below…
Local email domain not syncing with AAD
Installed and ran the AAD program on the AD server and successfully completed the steps. AAD randomly syncs with local email domain users. Example. contoso.com shows up with no synced connections with on premise AD. It does sync with the Local Server…
Want to provision users on SaaS scim application using the scope filter related to groups(security groups or office 365)
Want to provision users on the SaaS SCIM application using the scope filter related to groups(security groups or Office 365) but did not see the attribute related to security group or Office 365 in the source attributes, how to provision users on the…
How should AzureAD auth over RDP be configured for Win11? (Win10 works, but not Win11 with identical settings)
AzureAD auth over RDP works for Windows 10 Virtual Machines, when configured as follows: NLA disabled. System Managed Identity assigned to the VM. Virtual Machine extension AADLoginForWindows installed on the VM. Username is…
How to get email address from Azure SSO JWT?
Hi, We are implementing a One Outlook plugin, but we have security concern in the authentication. Referring to https://learn.microsoft.com/en-us/office/dev/add-ins/develop/sso-in-office-add-ins using Azure SSO we managed to get the JWT. From the JWT, we…
Azure Databricks authentication to Azure SQL database with service principal
Hello Team, I have created below sql connection python file in my ADO repo. But while executing databricks notebook I am facing dq_library module not found and the error is pointing to sql connection python file. Also am authenticating Azure Databricks…
Custom policy : Reenter password validation bug
Once the "Confirm Password" input matches the "New Password" input, if the "New Password" changes there will be no error message indicating that the "Confirm Password" is invalid Note : The UI issues can be…
How to exclude users from a dynamic group
I created the following dynamic group that includes all my M365 licensed users using the following query: user.assignedPlans -any (assignedPlan.servicePlanId -eq "094e7854-93fc-4d55-b2c0-3ab536xxxxx" -and assignedPlan.capabilityStatus -eq…
Can I partially license my organization with P1 licenses to make use of conditional access?
Scenario: We have an SMB of 300 people where we only want to implement Conditional Access policies for 150 of them. Question: Does it go against Microsoft's terms to license ONLY that portion of users to benefit from Conditional access? We do not want…