Issue with Syncing the new "onmicrosoft.com" Fallback Domain as Alias in Azure AD Connect
Hello Team, I am experiencing an issue with Azure AD Connect in my hybrid environment. I have recently added a new onmicrosoft.com domain to my Microsoft 365 tenant and made Fallback domain. I want to add this domain as an email alias for my…
How to add Custom user attributes to user's property in Azure AD (Microsoft Entra ID )
I have created the attribute from the " Custom user attributes " screen in Entra ID.Now I want to display that attribute in the user's properties. Please show me the steps to set that custom attribute to display in the user's properties Thanks
register FIDO2 security key as sign in method without the need to install Microsoft Authenticator app
Hello, Here's briefly about policies across the tenant: Enabled FIDO2 security key as sign - in method for the user under. FIDO2 is the only enabled sign-in method for this user. Disabled Windows Hello for Business using Intune configuration…
AAD Custom Policies - Password change confirmation email
Context We have configured a journey where the user would be able to change his password if he wishes to do so. We use Sendgrid to have a custom email verification according to the documentation provided here :…
Not able to retrieve user profile after signing in with passport-azure-ad and session cookie sameSite strict
I am building a NodeJS application with passport-azure-ad and openidconnect strategy for Microsoft login. Despite setting the cookie session sameSite to strict, I'm not getting the user profile after sign-in. It works fine with sameSite=lax.
Azure B2C Custom Policy donot honor login prompt
I have B2C Custom Policy and it works great except only one issue. If I pass login prompt then it doesnot work and shows select account but If same code is used against standard userflow then it works without any issue
Necessary permissions to query /users/{user}/manager?
Hi there! I've got an Entra ID app with permissions on User.Read and User.Read.All, and want to fetch the supervisor (/users/{user}/manager) of a given user on command. I've got the OAuth2.0 workflow running and am receiving a valid tokens for the Entra…
Microsoft graph api to list custom role
Hi Team, Is there any API available to get the custom Azure active directory Role using Microsoft Graph API. ?
Improper permissions for Azure ad connect sync?
So we have our azure ad synced with our on prem. We have an issue where our sync agent service stops. We have had this multiple times. I noticed that the "Log On As" is listed as "ourdomain\adconnectuser" instead of NT Service\System …
Intune Devices showing as 'not active' in compliance settings regardless of clicking 'sync'
We have a hybrid set up, with Intune MDM. I just pulled a report for all non-compliant devices and wanted to make sure that they were set to compliant. We have a user with a non-hybrid device, but intune enrolled. Intune is saying it is 'inactive' even…
How to delete tenant "Default Directory"
I am trying to delete (or exit) my only Organization. after pressing "Delete": The problem is, I don't have any Licenses or Subscriptions. Also, I am the only one in the Organization. What do I do? Help
I changed my account to an internal account by accident on Azure
I was playing around with permission in Azure and ended up changing the main account to internal instead of external. I cannot access my account any more, and can't even create a request and a phone call to my regional office just told me me to create…
Integrating proprietary directory users with Microsoft Entra ID
Hi, our company has an Entra directory of users and a proprietary directory of 3rd party customers. In the case of the 3rd parties, we want to take advantage of Entra's capabilities. However, we've hit a roadblock as they have emails in multiple domains…
KeyChain Failed Mac for AzureVPN Client
Hi, I've been trying to set up the Azure VPN client for a customer but I'm being met with the following Error getKeyChainSecret: Failed to retrieve KeyChain secret. Status code -25300 16/04/2024 09:58:35 Warning removeClientAuthLoginCredentials: Failed…
Your organisation has deleted this device
Hi, one of our admins has deleted 200 AAD registered devices, that were registered on user initiative (add work or schoolaccount). As a result, these users can no longer access office.com. Error: Something went wrong Your organisation has…
How to give access to user-assigned managed identity on registered app on Azure?
I am trying to give access to a user-assigned managed identity to be able to create or delete secrets on a registered app on Azure. So far I have not been able to find a way to do so as registered application does not have any resource group.
How do I upload an xml file to an Enterprise App in Entra?
Trying to configure SAML on an application. I've been provided the metadata.xml and would like to upload it to Entra and the Enterprise application I have configured. My problem is simple, where do I upload the file?
Azure AD Connect service fail to start after ASR
Hello, I've recently added our Azure AD Connect server to Azure Sit Recovery. It was fully replicated recently, and I just completed a test failover in an isolated environment. For a few reasons it is not acceptable to allow this failover test version…
How to Resolve issueAuthentication fails with an error stating "The requested federation realm object '< Object ID >' does not exist"
I am trying to add OKTA as an Identity Provider in the Entra ID. and i keep getting this error " Authentication fails with an error stating "The requested federation realm object '< Object ID >' does not exist" I have gone through…