Managed Identity Roles Needed for Azure Functions
I cannot figure out how to give my APIMS instance authorization to execute my Azure Function. When I try to test the Azure Function I get a 403 unauthorized error. I have an instance of Azure API Management Service (APIMS) Development Tier. I also have…
AAD B2C Custom Policy | How to fix TOTP/MFA flow for new user to have MFA code step only once? User is prompted to enter MFA code twice in the Set Password journey for new user.
Hello Team, We've deployed a user authentication flow using Azure AD B2C Custom policy. Our process entails sending an email notification to new Local B2C users, prompting them to set a password and enable MFA (Multi-Factor Authentication). Here's the…
Issue with browser back button invalidating the session from Azure AD login page
I'm using Azure AD for my login and forgot password pages. These two pages are custom html pages, hosted in azure blob storage. From the login page, when I click on "Forgot Password" link, the page goes to below url for a…
Entra ID patch sending Add instead of Replace
i'm working on setting up scim provisioning. I got creates to work and now running into issues with updating users. Specifically some fields are sending Add instead of Replace for the values. In this example below, I sent the create request with an…
How to implement Register and login in Azure AD B2C using Custom UI and APIs
How to implement Register and Login in Azure AD B2C using Custom UI and APIs and without using User flows. Instead of redirecting to the Microsoft domain and authenticating the user on the custom UI defined in Azure, we want to call the the Azure AD B2C…
An Internal problem has occured
I have tried to upgrade Azure AD but was reporting error and i decided to uninstall it and install the new installation file that i download from Microsoft AzureAD. After the installation and when AzureAD starts i am getting the below error: It appears…
What the Required MFA announcement means?
What does it impact and what does not?
AzureAD group membership
Hi All In our hybrid environment, all users are initially created on-premises and then synced to Azure AD. I've created five security groups within Azure AD. Specifically, I've granted ownership of these five AD groups to a user, let's call them user1.…
AD is not syncing with Entra
Whenever my users change their password, they are locked out of their email account.
Azure Container Apps - built-in OIDC for SPA?
From Azure Container Apps Docs, it claims to support codeless authentication for apps through configuration (easy auth). I deployed 2 apps to ACA, one Angular SPA, one API used by SPA, both without any code to support authentication as I want to utilize…
unable to find the kid in the list of keys to validate the id token
I am getting id token once i click on the user flow in azure ad b2c. Now i simply need to validate that id token using the kid from the token header But I cannot find key ids in discovery/keys url which matches with the kid of token header. I have…
No License Found - Microsoft Defender
Hi there, I am seeing the following message when opening Microsoft Defender on a Mac (deployed via Intune). We do have Defender license assigned to user via Business Premium. We already have set section 1 set to Windows 10 and 11 in Microsoft Defender…
Some users which belongs to another teenant are not able to login using our app with SingelSignOn
How can another user login using our app using Singel Sign On. When User login then admin need to give permission. Question: What is needed for admin to give permission to our "app" and how to do that? The app is registered and works for some…
Some users which belongs to another teenant are not able to login using our app with SingelSignOn
How can another user login using our app using Singel Sign On. When User login then admin need to give permission. Question: What is needed for admin to give permission to our "app" and how to do that? The app is registered and works for some…
Unable to join Windows Server 2022 to domain using Microsoft Entra domain services
I am trying to join my Windows Server 2022 to my domain using Microsoft Entra domain services. However, I am unable to find the correct DNS server addresses to join my device to the domain. I have searched online extensively but have not found any useful…
Entra Connect cloudsync (entra ID -> AD sync)
Dear, I am trying to do cloud syncronization from Entra ID to Active Directory via entra website. However this is not working. In the opposite direction it does (AD -> entra ID). Does anyone have any idea how I can solve this? I can press the…
How to delegate permissions to Service desk team for managing MFA in Azure Active Directory
How to delegate permissions to Service desk team for managing MFA in Azure Active Directory. just MFA reset (revoke and re-register) rights. please suggest
We have plan to move on-premise AD to Entra ID, how to move the windows file server to Entra ID?
We have a plan to move on-premise AD to Entra ID. The target is: Remove all local AD DC servers, move devices/users to Intune/Entra ID, all users have M365 now. Move on-premies fileservers to the cloud Join Windows servers (on AWS) to Entra ID The…
Passkeys for Android devices
Hello, Referring to this article: https://learn.microsoft.com/en-us/entra/identity/authentication/how-to-register-passkey-mobile?tabs=Android What's the difference between "Passkey" and "Passkey in Microsoft Authenticator" as…
Locked out of Azure
I think I've made a silly mistake. I was trying to join the Partner program at Microsoft and it kept telling me I was using my personal account. I went to the Entra page and noted that my user was setup as external. I saw an option to turn it into an…