Authenticator App - can't remove greyed out account
Hello all, I'm stuck in a strange loop using the MS Authenticator App. I'm one of the admins at my school and I've registered my phone via https://account.activedirectory.windowsazure.com/securityInfo using the MS Authenticator App. I wanted to…
For Access Review in Entra ID, is there a way to configure email notification that the reviewer only gets one (1) email notifications for all the reviews pending instead of getting emails for all the users he/she has to review?
I want to configure email notification for Access Review so that reviewers will not be inundated with email notifications and might also miss some reviews because of the torrents of emails.
Cannot see linked subscription under new tenant
Hello everyone, From my main default directory, I created a new B2C tenant, and it was created successfully. My user account has global administrator rights under this new tenant. The new tenant is linked to my Pay-as-you-Go subscription, as shown in the…
Microsoft Entra Id - Provisioning Log API
Hello Team, Provisioning logs contain only user provisioning or it also contains any other provisioning like group, resource etc. I could see only user provisioning logs even though, we had created group provisioning. Group provisioning logs come…
Global Secure Access bypass (Internet and web filtering)
Hi, I understand in Global Secure Access "365" I can use a Conditional Access Policy to block access to 365 if not from "All Compliant Network locations" to prevent a user from pausing the Client. But If I want to use Global Secure…
Connect-MgGraph : Invalid JWT access token. Connect-AzAccount : InteractiveBrowserCredential authentication failed
I need help and a solution to rectify the below error when executing the PowerShell Connect-* command. $TenantID = '22bb9241-65c8-45b4-94f9-7c151e154693' $AzSubscriptionID = 'd487514e-4317-447f-af79-5022d310f6bd' $paramConnectMgGraph = @{ Scopes =…
How do I activate a free Entra ID P2 on my trial subscription
I am trying to go through the instructions here: https://learn.microsoft.com/en-us/training/modules/allow-users-reset-their-password/4-exercise-set-up-self-service-password-reset Go to Microsoft Entra ID > Password reset. Select Get a free Premium…
How to clear the account list in the Web Account Manager list of Accounts displayed by WAM Broker
I have a WPF desktop app that accesses an Azure WebAPI. It uses the MSAL library and when authenticating uses the WAM broker. When the list of accounts is displayed, there is an account of someone that used the computer once when I was logged on to the…
How to allow users to register for MFA from home without excluding them from location based conditional access policies
We have a requirement where in small number of cases users (new starters or MFA issues) need to register for MFA from a remote location. We have a conditional access policy which restricts access to Azure cloud apps from outside corporate office. We…
Problem with "exclude" user/target resource in conditional access policy
Hi, I have been trying to restrict 1 user to access only 1 app on Azure Entra ID, so I use the condition access policy under security tab. I have put the conditions as follows: user: userx@microsoft.com Target Resources: Include All cloud apps &…
How do I add an OIDC identity provider to my new Entra External Id (CIAM) tenant
I have a regular Entra tenant (described now as workforce ?). I now also have an external Id for customers tenant. In the past using B2C, I was able to create a custom policy that allowed a user to sign into b2c registered applications using a federated…
Multiple group Member details download from Azure
From the Azure portal I would like to perform the below job, how can I do that Want to download all members of Group A, Group B, and Group C with group mapping All member details with associated group, from example user1 has member of 5 group ,…
Conditional access & Authentication Strength policy
Hi to all, i am struggling to setup a working authentication policy but i am hitting a wall all the time!.. First of all we have entra P1 license and tenant is registered before 2019.. When i am using per user MFA setting all works fine to enforce MFA…
Error when trying to set up Application ID URI for Double Key Encryption
I am trying to set up Double Key Encryption, following the steps in https://www.youtube.com/watch?v=vDWfHN_kygg. However, when trying to expose an API, I get the following error: Failed to update Application ID URI application property. Error detail:…
How to get azure field in servicenownow
I done the sso integration, but i need without provisioning, how to get fields like city,titile, deparment,mobilenumber in servicenow via sso attribute and cliams, is it [possible to get field
Entra ID - Device registration - Require MFA
Hi There, I have conditional access policies for enforcing MFA during device registration with Entra Id. The policy is currently in report-only mode and during the monitoring phase, it didnt show up any user hits or impact. Keen to know what all can be…
'userRegistrationDetails' graph API not listing all users MFA details
I'd like to get customer's users who do not use MFA. I can do this using PowerShell but I didn't find a method property on graph API to get user's "strongauthenticationrequirements.state". I am using graph API …
We encountered an 'invalid_grant' error connecting to the identity provider. Please try again later
We have added federated login(Sign in with Google) to our application on top of Local Account Sign up. Local Account Sing up is working well and there is no issues but sign in with google we are facing this error **"**We encountered an…
Restrict Microsoft Graph API permission
Hello, one of the applications in the tenant needs permissions to the Graph API AppRoleAssignment.ReadWrite.All with the Application type in order to automatically manage AppRoles assignment in the application. However, these permissions pose a high…
Assigning contributor role for subscription to new user (with company email address) fails
I want to add a new team member to my Microsoft Azure Sponsorship subscription as a Contributor. On portal.azure.com, I clicked on Subscriptions Selected the Microsoft Azure Sponsorship Clicked Access control (IAM) By clicking on View My Access,…