Auto MDM Enroll: Device Credential (0x0), Failed (The system tried to delete the JOIN of a drive that is not joined.)
We are trying to enroll a device into a third party MDM via autopilot, the device successfully joins but the enrollment does not happen and the above error is found in the Devicemanagement-Enterprise-Diagnostics-provider event viewer logs The following…
Was the ability to manage App roles through the UI removed recently?
We are using Microsoft Entra ID for customers (Preview) and it seems the ability to manage app roles through the Microsoft Entra UI was removed. The documentation (https://learn.microsoft.com/en-us/entra/identity-platform/howto-add-app-roles-in-apps)…
Connect-OrganizationAddInService using Entra ServicePrincipal ID
I am trying to find if someone has successfully done this, basically automatize the deployment of an Add-in to Office 365 Client Secret: "1111111111111111111" (This is a secret that should be protected and not shown, I am having a look how to…
GET /users throws InternalServerError with 200 status code and POST /users UnknownError with 405 status code
GET v1.0/users?$select=id,delet... throws…
OAuth 2.0 refresh token and access token max length
I have created an App Registration in the Azure portal. What are the maximum token lengths for Access and Refresh tokens, when user login using app's clientid .
Is there a way or settings/policy we put in place for auto sign-in block on user accounts if they don't login for particular period lets say 7 days?
Is there a way or settings/policy we put in place for auto sign-in block on user accounts if they don't login for particular period lets say 7 days?
How can I seamlessly change an App Registrations "Application ID URI" domain?
I have a published teams app which includes tabs. The tabs point at Domain A to authenticate the user using "microsoftTeams.authentication.authenticate" and "microsoftTeams.authentication.getAuthToken()". The teams manifest.json…
Authorizing only properly tagged resources for Autopilot provisioning
Hello, I need to create a conditional access policy for Windows OS, that allows the Microsoft Intune Enrollment app if and only if the provisioning machine has been registered and provided with a specific tag (e.g.: COMP-HYBRID). To achieve this goal I…
Windows Hello for Business Entra ID Sync Issue
SOLVED: See my answer below. Hi all, Interesting issue we're running into while trying to deploy Windows Hello for Business. I've noticed in our Azure AD Synchronization Service Manager, during export from Entra to on-prem DC, the…
How to extract an Active User Listing with identifier columns for "Groups/UserGroups" & "License Type"?
Hi Team, I've been going back and forth between the Admin and Entra Portals. I am trying to extract a comprehensive Active User listing for my organization with an indicator of the following: Full Name User Email Group/UserGroup Department License…
Limited or No Access to a B2C Tenancy to New Developers
I've added myself and another dev to the tenancy, resource group and subscription as contributors to an already up and running B2C Tenancy and yet we still get the error message reading "Limited or No Access" which claims that I don't have an…
Unable to access azure portal
Received usual error code when attempting to log-in to start training Error message Interaction required The portal encountered an issue while attempting to retrieve access tokens. We suggest attempting to sign in again, or alternatively, continuing…
Graph API for managed devices list is not working
I have an application which queries deviceManagement/managedDevices API to fetch all the devices. I have given all the right permission as mentioned in the documentation. I am able to fetch access Token but when I used this access token to do a GET, I…
Everyone locked out of tenant due to a faulty Conditional Access Policy
We have been locked out of our tenant for almost 2 weeks now due to a faulty Conditional Access policy. During this week, there have been several conversations with a number of Microsoft support technicians, none of which seemed to have an understanding…
On-Prem AD Migration to Microsoft 365
Hello, We are currently in the process of moving from a On-Prem .local AD to a solely Micrsoft Entra .org (AAD) Environment. The main purpose of this move is to Migrate the local File Share data to SharePoint, since there is already a need to run AD…
Moving users across on-prem
Please help!!!! We have 3 on-prem domains abc.com.au 123.com and cab.com. They all sync back to single azure ad tenancy and gets assigned same domain for their email address (cab.com). I am trying to move selected users from the first 2 domain to the…
Everyone locked out of tenant due to a faulty Conditional Access Policy
We have been locked out of our tenant for over a week now due to a faulty Conditional Access policy. During this week, there have been several conversations with a number of Microsoft support technicians, none of which seemed to have an understanding of…
How do I upload an xml file to an Enterprise App in Entra?
Trying to configure SAML on an application. I've been provided the metadata.xml and would like to upload it to Entra and the Enterprise application I have configured. My problem is simple, where do I upload the file?
I can't create a Microsoft Entra ID tenant
I can't create a Microsoft Entra ID tenant following the instructions here: https://learn.microsoft.com/en-us/training/modules/allow-users-reset-their-password/3-implement-azure-ad-self-service-password-reset I don't see the same pages or options for…
How do I activate a free Entra ID P2 on my trial subscription
I am trying to go through the instructions here: https://learn.microsoft.com/en-us/training/modules/allow-users-reset-their-password/4-exercise-set-up-self-service-password-reset Go to Microsoft Entra ID > Password reset. Select Get a free Premium…