Directory Harvest Attck
Hi Everyone, we will soon be upgrading our Azure subscription to Security but right now we are getting thousands of SPAM emails can anyone please tell me if there is a way to create a conditional access policy in Entra to stop Directory Harvest…
password reset custom policy issue while resetting password
I am using custom policy to signin and reset password. I created sigin policy and able to run and signin using my uersname(created by Graph API ). But while resteting the password and after verifying the code while clicking on Continue button I am…
Workday/Entra ID - Soft delete users without the "Delete" action selected?
We currently have Workday to Entra ID user provisioning enabled with the "Create" and "Update" actions allowed and "Delete" is not enabled. I'm wondering if anyone is able to clarify whether the integration is able to soft…
SSO login error
Hi all, I'm configuring SSO from Google Workspace to Entra ID following the documentation below and I'm receiving an error: Error message: AADSTS5000811: Unable to verify token signature. The signing key identifier does not match any valid registered…
Creating a naming convention for local user profile name when singing in with a M365 user
Hello, as far as I'm aware, the name used for the local user profile when logging in to an Entra ID joined device for the first time is the first 20 letters of the M365 display name with special characters and spaces removed. We would like to keep the…
How to delete an Azure Distribution List
I have a test group that was created in local AD and migrated to Exchange Online - no longer needed. I have deleted it in local AD and did a number of syncs but it remains in AZURE as a distribution group as well as show up in Exchange as a distribution…
Adding Token Based Azure EntraID Authentication to GraphQL APIs created on .NET7
I have a set of GraphQL APIs created on .NET7. I want to authenticate the APIs using Azure Entra ID User/App Access Tokens. Is it possible to achieve the same out of the box, else kindly suggest a workaround.
M365 hosting Tenant A and Azure AD for AAD Device on Tenant B and On prem
I have a scenario where "M365 is hosted on Tenant A with domain.com" and Azure AD for AAD Joined devices on "Tenant B with onmicrosoft.com" and on premises with "Domain.local" . Problem-User need to login using different…
Sending Azure AAD provisioning logs to Splunk
How can we send user provisioning logs from azure Aad to Splunk for monitor.
Do Bootstrap Services such as OCaaS Question
I understand that bootstrap services bypass conditional access policies to run uninterrupted. However, I am wondering when this service should be seen in the logs with a successful login. For example, if someone attempts to log in to Outlook mobile but…
How to fix a users identity from "mail" to "ExternalAzureAD"?
I invited 3 users to our tenant, 2 of the users have been assigned "ExternalAzureAD" while the other is showing "mail". This is causing blocks as that user also needs to have the identity of "ExternalAzureAD".
Intune PIM roles needed to view Log Analytics in Entra ID
What role(s) do I need to have activated in order to view Log Analytics within Entra ID? When I looked into it, I saw that you need Security Admin and Global Reader activated. I have both of these roles, although when I go to Entra ID -> Log…
I would like to add an Entra Tenant to Entra for Customers
I would like my the users in my Entra tenant to access my published application via the Entra for customers directory, but it looks like only Facebook and google are supported. In a future use case I will likely need all work/personal accounts to be…
Microsoft Dynamic Membership Groups Bug with Re-enabling Users
Hello, We've encountered an issue with re-enabling users in Microsoft 365 (Entra ID). Our setup relies on Microsoft 365 Dynamic Membership groups for granting access to Teams and SharePoint. However, upon re-enabling a user, it incorrectly indicated that…
Adding users to Entra ID domain when signing up on a website
Hi there, I would like to know if it's possible to automatically import users to my Entra ID domain when signing up using my website. Is there perhaps another way of doing this or am I stuck with manually importing via CSVs/Powershell. I want to create a…
How do I connect Azure to my PC, it opens freely on my mobile phone but not on my PC and its giving me concerns
I have Azure on my phone but when I want to connect it to my laptop it does not recognize my email again. Please I need urgent help
Azure B2C Session timeout is not working as expected on password reset page
I applied below session settings in password reset journey as well as default user journey. But the session is not getting expired if browser is let idle for more then 15 min (Even tried after 2 hours). Session is only getting timeout after refreshing…
Migrate to the Authentication methods policy in Entra ID by 30 September 2025
When September 30 2025 roles around, does that mean that all users in an Microsoft 365 organization have to be using MFA and have SSPR configured for the organization?
Token validation
Laravel issue in token signature validation In which error of JWT validation error
dynamic membership
Hi All,I have a SharePoint site, and the requirement is that members of this SharePoint site should be developers of a particular department. The job titles are Senior Developers, Senior Dev, etc. 'Dev' is the common word. This SharePoint site has four…