I want to leave an organization that I can't login into anymore
I have 2 organizations / tenants attached to my MS work account, but I want to leave one of them. Unfortunately when I try to leave it from my Account I need to login some other account that I no longer can access. How can I leave this tenant?
Azure AD B2C - how to shorten the "state" parameter in the signout url to avoid query string is too long error?
Hi, we are getting a unique query string too long error upon adding one of the standard context parameters. Somehow it is getting added to the "state" property while user logging out. I have no idea why the "state" property is…
How do I setup Interactive Browser Client with nextjs?
I want this nodejs setup into nextjs const sql = require('mssql'); const odbc = require('odbc'); require("msnodesqlv8"); const azureIdentity = require('@azure/identity'); async function myfunc(){ const interactiveCredential = new…
FortiGate with EntraID
Hello! Would it be possible to implement the scenario below? Example: When a user logs into the machine, appears in the FortiGate Firewall and then adds an SSO with DL groups? But this whole scenario with Entra ID. We know it is possible with Active…
error message, after login
my brother use one of my onedrive family account. now he want to add a app in azure, but after login into azuzre, he always get a error message: { "sessionId": "14285eca3b664d9eab673c3d941a3a71", "errors": [ { …
Entra App Proxy setup "Private Network settings - Application operation failed"
Good day community, I'm reaching out to you since I would like to understand if there is a limitation with Entra App Proxy (EAP, aka Azure App Proxy) when creating new EAPs with too many '.' (dots) in the internal URL or '-' (minus) in them as well. …
Why does my Azure AD B2C go into infinite loop on login (localhost)
Followed tutorial (below) to set up a .Net 8 MVC app with an Azure AD B2C signin page. Using a new tenant with user flows. When I test the user flow with reply url, jwt.ms, a token is created. However, when I attempt to test login locally…
Azure Adb2c External IDP Authentication Browser Back Button Click redirects to External IDP Again
We have AD B2C Authentication with .NET 8 MVC Web Application. We configured Open Id Provider with Custom Policy in Adb2c. The authentication is working successfully. But the problem is, after the External IDP successful authentication, the provider…
Unable to Sync accounts using API-driven Provisioning to on-prem AD - HybridSynchronizationActiveDirectoryProviderNotFound
I am trying to deploy an API-Driven Provisioning to on-premises AD so that using a PowerShell script I can extract user information from a Third-Party DBMS, convert it to SCIM format and then send it to Azure AD API-Driven provisions for logging and…
Domain should match the passive sign in uri
I am trying to configure an external identity provider in Entra. When I try to do it I get the error "domain should match the passive sign in uri" I tried editing in the DNS of the domain exactly as its shown in the error: TXT…
Global Secure Access - "Application operation failed" on any Application change?
Is anyone else having issues with any configuration change with Global Secure Access. I keep getting "Network Access Settings" - "Application Operation Failed when I try adding or editing any option under 'Application Segment sections'. …
Can not sign into external tenant. Get error: "IDX20804: Unable to retrieve document from ___v2.0/.well-known/openid-configuration"
I am unable to get external Id tenant to sign in for my .net 8 Blazor (Server) application. I have followed these steps to create the user flow and integrate it into my application. …
Redirect loop in Azure Portal login
When I try to login to Azure portal, after entering the password and the 2FA code in Microsoft Authenticator, I am caught in a redirect loop between login.microsoftonline.com and portal.azure.com. After about 10 redirects, it says "We couldn't sign…
How to create an App registration in Azure AD for sending emails through API
I need to create an API that our vendor can use to send emails with a specific account. How can I create this application in the Azure AD portal? Which API permissions do I need to grant? Additionally, I cannot find an application designed specifically…
Unable to receive the weekly digest for PIM
Right now we're using PIM with just-in-time access for the Global Admins. Before we received that PIM weekly digest every Sunday. What I want to confirm is if we need to have a Global Admin active when the weekly digest is sent or if there's a way to…
SSPR: Administrator Policy: How to control the verification methods, Add FIDO2, remove SMS and Phone calls
Hello team, I have admins that are in scope for SSPR, for them, the Administror policy apply. how can I control the SSPR administator policy to remove SMS and phone calls, add FIDO2
How to exclude Microsoft App Access Panel from the Conditional Access policy?
I want a group of users only to have access to myapps and the app I created (accessible from myapps). I don't want them to have access to the AZ portal or Azure AD Powershell. What I did was to include all apps in my policy and exclude the other two.…
Getting AADSTS501204 Malformed jwt error while logging into Microsoft apps. how to resolve this?
I have changed password for my company account. since then I am facing malformed jwt error when I try to login into Microsoft apps. I am able to login to microsoft apps through browser with new password but unable to login through installed apps. It is…
Entra External ID Disabling security defaults
Hello, I am exploring the possibility of enforcing MFA for either all users or specific groups using Conditional Access in an External Tenant. However, this requires disabling "Security Defaults," which is not recommended. When I try to add the…
Microsoft Data protection
Hi ! I have an issue with my account. The multi factor authentification has been activated to my account and I cannot get a code on the Microsoft authenticator app. I am the only admin of my organisation. this happened on November 16. I have been trying…