Migration from pure Entra Cloud environment to hybrid on-prem AD x Entra environment
Hello Community, I have the problem that we want to switch from a pure Entra environment (with users, groups, etc.) to a hybrid model, in order to be able to use the advantages of on-prem AD - especially x802.1/user authentication in WiFi via…
How to connect to Azure Storage account via OAuth2.0 from Azure APIM?
Step1: Created an application in Microsoft Entra ID under "App registrations". Step2: Recorded the following details: Client ID Client secret Access token URL Step3: For the Storage Account, added a role assignment and grant access to the…
Edge SSO not working any more
Strangest thing is happening. We assign Edge (Stabile version) to our dedicated android devices with Azure AD. Yesterday version 124.0.2478.50 (247805005) of Edge AI Browser was starting to install on our devices and we ran in to a problem instantly. The…
Is it possible in Intune or Entra to audit if aovpn users successfully received a certifiate from Entra CA certificate authority.
We have set up a Always On VPN user tunnel policy in Intune. The users device goes to the Entra Conditional Access function and if it passes, they get a 1 hour certifiate from the MS VPN root CA, put into their User Cert folder. Is there a way to…
Elevated Access for Azure AD Users
Hey guys, I'm managing 100 Azure AD users who utilize corporate-owned laptops for signing in and performing tasks. All these users are configured as standard users. Therefore, when the IT team runs an application with elevated access or doing…
How to add users to power platform environment that have been already been added to a group in Azure AD?
Hi, I want to automate a process where the users that are added to a group in the Azure portal are automatically added to an environment in Power platform as well. Thanks in advance
How can I solve the issue and continue learning the Azure services?
The sandbox for this module is currently unavailable. We're working to resolve this as quickly as possible. In the meantime, you may be able to complete this module's exercises using your personal subscription, but charges may apply and you may have to…
Cannot enable Staged Rollout from Federation to PTA
We are currently federated to Entra ID with ADFS on premises. We are attempting to run the staged rollout feature with PTA and seamless sign on. Following this article: …
Will Azure Virtual Desktop use Microsoft Entra External ID for external-facing apps?
According to the AVD documentation, in order to offer apps or desktops running on AVD to external users or customers (cloud-only deployment), identities must be created and managed manually, and then the credentials are provided to the users. Since AVD…
myapps.microsoft.com shows a blank page but then I refresh and it works
When I access myapps.micorsoft.com I initially get a blank page but if I refresh the site comes up. I looked into the network flows and the issue appears to be that during the first attempt at access I receive a 400 status code from a request to…
Creating a naming convention for local user profile name when singing in with a M365 user
Hello, as far as I'm aware, the name used for the local user profile when logging in to an Entra ID joined device for the first time is the first 20 letters of the M365 display name with special characters and spaces removed. We would like to keep the…
How to access a SMB Share with a Mac via Microsoft Entra Kerberos authentication for hybrid identities on Azure Files
Now for Windows Clients this all works....accessing a SMB share via Azure Files and Microsoft Entra Kerberos authentication for hybrid identities. The problem comes with accessing this share with a Mac and applying NTFS-permissions. The only clue I can…
MS 102 Microsoft 365 Administrator
Hi Good Morning., Last Friday I completed my exam MS 102 Microsoft 365 Administrator, The Result has come I have passed the exam also but why still I not received a certificate, When I will receive my MS Admin certificate, Please support me. Thank…
There is no code displaying in my authenticator app device
I'll already did everything, but still there was no code displaying in my authenticator app in my device both android and ios and it was displaying 8 code instead of 6 code
AZUREADSSOACC Key Rollover no longer works using Hybrid Identity Administrator creds
Hi I use a PowerShell script in an Azure Hybrid Worker Runbook to automate the rollover of the Kerberos decryption key for the AZUREADSSOACC computer account. It uses a service account in Entra ID which is assigned the Hybrid Identity Administrator…
Add eligible assignment for Azure resources in PIM
We have implemented PIM to assign Microsoft Entra roles and PIM is working normally. To extend PIM for Azure resources, I'm trying to add eligible assignment for Azure resources (Owner of a subscription) in PIM but hit an error message: Role assignment…
Locked out of directory I am an Owner of
Hello, A customer invited me to their Azure Entra ID as a guest user, and set me as a member of the admin group that has owner privileges. I was able to log in for 10 days, created resources (including an Azure Databricks cluster that no one can access…
Cannot access Intune and Entra ID portals on iOS device using Edge
Hello, I'm a global admin of my tenant, but I can't seem to access Intune and Entra ID portals using the Edge browser on my iOS device. I haven't encountered any policy or conditional access that could prevent me from accessing these portals. I've…
Adding Token Based Azure EntraID Authentication to GraphQL APIs created on .NET7
I have a set of GraphQL APIs created on .NET7. I want to authenticate the APIs using Azure Entra ID User/App Access Tokens. Is it possible to achieve the same out of the box, else kindly suggest a workaround.
Unable to generate access token. invalid_grant error, AADSTS65001:The user or administrator has not consented to use the application with ID
Context: I'm building a web app that intends to provide insights and analysis on user's Sharepoint and OneDrive data. Users should be able to come to my web app, connect their Sharepoint and OneDrive data by going through some oauth flow and agreeing to…