Azure B2C Password does not match error bad behaviour
We have developed a project with Azure B2C and by testing we have detected that when registering, when the passwords do not match, the browser does not go up directly to show you the error message, it remains at the bottom of the page screen, with other…
In Blazor Web App Server authentication Azure missing iss claims
Hello, I followed this guide to create a Blazor Web App (server) with azure athentication https://learn.microsoft.com/it-it/entra/identity-platform/tutorial-blazor-server and it works. here the authentication…
Azure AD Joined Device and Office365 -SSO
How to configure SSO between Azure AD joined devices in Tenant A to Office365 in Tenant B, so that when a user logins into Windows Device using Tenant A onmicrosoft.com id ,they should be also able to login into O365 domain.com hosted in Tenant B…
How do I fix Azure Trusted Service Account error while signing certificate
I'm getting this error when trying to use SignTool to sign my msix file. I've verified I have Trusted Signing Certificate Profile Signer role assigned in Azure. I also verified the publisher name of the AppxManifest.xml in the msix matches my certificate…
Some users which belongs to another teenant are not able to login using our app with SingelSignOn
How can another user login using our app using Singel Sign On. When User login then admin need to give permission. Question: What is needed for admin to give permission to our "app" and how to do that? The app is registered and works for some…
An Internal problem has occured
I have tried to upgrade Azure AD but was reporting error and i decided to uninstall it and install the new installation file that i download from Microsoft AzureAD. After the installation and when AzureAD starts i am getting the below error: It appears…
Encrypting ID token in openid connect protocol.
I want to encrypt the ID token using a public certificate. I have updated my application's manifest file to utilize the certificate for encryption. Still it is not working,
GIT Hub EOC APP
Hello, I have a question; I'm deploying the EOC Teams app from git hub https://github.com/OfficeDev/microsoft-teams-emergency-operations-center/wiki/Deployment-Guide on step 4. I'm adding the Redirect URI but im a bit confused as it states to add the…
How to clean up "Sign-in with your passkey" options
Hello, I have enabled FIDO2 as sign-in method and enforced it with CA policies for a pilot group. One of the users is seeing his phone as device with a saved passkey. Where did this option come from and how to disable it? The desired option is ONLY…
SCIM validation tool (https://scimvalidator.microsoft.com) PATCH tests are failing because data is submitted in a different format
Hello, I'm working on implementing SCIM endpoints with Microsoft Entra ID, and am trying to use the validation tool at https://scimvalidator.microsoft.comto test the implementation. I noticed that all of the test cases which submit requests to the PATCH…
Proxy.pac for Internet access profile
I'm trying GSA and I have a question about how to handle exceptions in the Internet access profile How can I set exceptions in the Internet access profile like in Proxy.Pac?
Some users which belongs to another teenant are not able to login using our app with SingelSignOn
How can another user login using our app using Singel Sign On. When User login then admin need to give permission. Question: What is needed for admin to give permission to our "app" and how to do that? The app is registered and works for some…
AAD Sync errors 8344 on export for a small number of accounts
Good morning hive mind! I am struggling to find what is causing error 8344 on just 8 accounts on Export sync with AAD, getting error 8344 "Insufficient access rights to perform the operation" we have enabled inheritance on the MSOL account,…
Azure AD B2C Login returns 400 after long idle time (with no error shown on UI)
After keeping the Azure B2C login screen idle for the whole night (put to sleep), and then logging in with the same login page the next morning, it returns 400 bad request, silently failing without showing any errors on the UI. The same issue is…
How to fix a users identity from "mail" to "ExternalAzureAD"?
I invited 3 users to our tenant, 2 of the users have been assigned "ExternalAzureAD" while the other is showing "mail". This is causing blocks as that user also needs to have the identity of "ExternalAzureAD".
Azure Single Sign On with SAML - IDX10214: Audience validation failed issue
Hello, I have a sample application that is trying to facilitate single sign on using SAML and I am able to authenticate the user, but when I am getting the SAML response back from Azure, I am facing the below error: IDX10214: Audience validation failed.…
Issue with using browser back button from login page that uses MSAL authentication on Azure Services
I use azure portal to manage all web resources including login and forgot password pages. These two pages are custom html pages, hosted in azure blob storage. But the form HTML templates are from azure, meaning the custom html page has…
When using the Microsoft Azure Groups | All groups screen to get a listing of ad groups, is there a way to add a column to the screen which will show the numbers of members in the groups?
I know I can click into a particular group to see the number of members in it, but from the Groups | All groups screen I would like to see the number of members in each group. So if i filter for the ad groups I want to target, and then it shows me a…
Is anyone else experiencing issues with access packages not fully delivering access?
I am writing to seek assistance with an issue we are experiencing related to access packages not fully delivering access to our employees. In our current process, an employee uses ‘My Access’ to request access to a group in Azure. This request…
exporting query output report to csv
I have executed below query and it worked and i want to export report to csv, what parameters I should add? 'az graph query -q "Resources | where type =~ ''Microsoft.Compute/virtualMachines'' | project name, properties.storageProfile.osDisk.osType…