Make an always visible "clik-on" login on Windows Pro welcome/login screen
Hi We are a school, where we use bort Google Workspace and Windows Azure/Entra ID for all teachers and students. That works fine. We are moving towards only usin Microsoft though. The youngest students may find it difficult to write and remember email…
TENANT LOCKOUT (URGENT) / Faulty Conditional Access Policy
Hello, Due to a faulty Conditional Access policy, not all of our admin users can access our tenant. We need to remove one of our global admin users from the exclude this policy. The case has been escalated to higher authorities but still no progress has…
How to set Microsoft Graph API permissions on Azure Managed Service Identity with bicep template
I have a requirement to set Microsoft Graph API permissions on Azure Managed Service Identity with bicep template to automate the deployment. Also I don't have access to azure portal to configure anything manual
Removed all permissions and adminrights in hope it would delete the org now im stuck
For quite some time ago i got fired so i tried to delete this whole shabam but that was harder said then done. In anger i deleted all my own everything and wrote an angry ticket somewhere .. well i dont think ticket lead anywhere coz org seems to be up…
How to change token expiration time in Azure portal - AAD
When I access my web app that is registered in Azure AD, it first sends my app to Microsoft login page and after successful login it returns an id token which is used to retrieve the data from backend server. The expiry time of token is approx. 30 mins…
Unable to get Get a client ID in Microsoft Graph quick start
I am trying to download a sample at https://developer.microsoft.com/en-us/graph/quick-start? but after clicking Get a client ID and successfully login with organization account (with Multi-factor Outlook authentication) I am keep getting errors like…
Azure AD token Issuer
Hi What is the difference between sts.windows.net login.microsoft.online issuers in token ?
Azure Connect on premises
Hi, Please can some one assist, We have installed Azure connect on our on premise server and the accounts have been duplicated. The admin portal was created with the same setup as the server username@domainname.co.za for some time now and we recently…
On Prem AD to Azure AD Sync
Hi guys, i have recovered an On-Prem DC from backup that had AAD sync, however users who were created in the last 6 month are missing, but they do appear on the Azure AD. I have re-created the last 6 months users on the On-Prem AD, now i want to sync…
Connect-OrganizationAddInService using Entra ServicePrincipal ID
I am trying to find if someone has successfully done this, basically automatize the deployment of an Add-in to Office 365 Client Secret: "1111111111111111111" (This is a secret that should be protected and not shown, I am having a look how to…
How to give external customer accounts in a entra external id tenant access to a a web api in my internal tenant?
I have an internal tenant A where I have internal resources (web api, functions, database, admin website etc). Recently I created an external tenant B with Microsoft Entra External id for customers. There I have registered a SPA app where external…
event though azresource graph module installed giving error search-azgraph is not recognized
event though azresource graph module installed giving error search-azgraph is not recognized, I have used below commands but still did not work Get-Module -Name PowerShellGet Install-Module -Name Az.ResourceGraph -Repository PSGallery -Scope CurrentUser
Not able to use the function startswith in graph API even with Advanced query parameters
Need to filter only a few directory roles from a list of 50+ based on displayName. Is there a way to achieve this? As I am unable to use multiple one filter condition at once in the URI Working…
Enabling SSSO through AADC is not working.
I'm having trouble setting up seamless SSO in our hybrid environment. I'm trying to do pass-through AAD authentication, not AD FS: all of our clients are WIN10 and above all of our devices are synced to Azure port 9090 is not blocked AADC is the…
Obtaining details for creating an Azure subscription using Rest API and Terraform
Hello! I have been trying to create an Azure subscription using Rest API and Terraform but I am not sure what the following parameters mean: billingAccountName, billingProfileName, invoiceSectionName. Could someone point me in the right direction on how…
403 Forbidden - Request forbidden by administrative rules
I work in the UK. On Microsoft Azure/Microsoft Entra ID, my colleagues who are Member users have their user location set to the UK. Even for those that work for our company who live in the US, Canada and India. When 2 of my colleagues went to China they…
What permissions are needed for an Azure Runbook to execute the SQL command CREATE USER FROM EXTERNAL PROVIDER
I have an automation account that creates an Azure SQL database and attempts to provision a user from Microsoft Entra Id with access to the database My automation account is configured with a system assigned managed entity and a user assigned Managed…
Error enabling SSO for Zendesk
Has anyone else been able to get SSO working with Zendesk and Entra/Azure? I've followed the instructions several times, but keep getting: Request Id: 2a544d1b-70be-4981-be0c-9a30d2886f00 Correlation Id: 7495218c-b173-4a11-a6a9-1ba4699e4e89 Timestamp:…
Persistent Error 80090034 "Cannot be Encrypted" in Company Portal and Azure VPN Sign-In
Hello, I'm facing a persistent issue with the error code 80090034 "Cannot be encrypted" across multiple devices when trying to sign into the Microsoft Company Portal or Azure VPN. This error seems related to the Trusted Platform Module (TPM)…
How to troubleshoot 'Bad Request' error when using 'startswith' to filter groups in Microsoft Graph API?
I'm using the following endpoint to query the Microsoft Graph API, tracking changes by delta and filter groups by displayName using…