question

ITGeek82-8422 avatar image
0 Votes"
ITGeek82-8422 asked BrianLThomas-6442 answered

OneDrive Storage Account in Adobe and DUO MFA (Conditional Access)

Hi guys,

I'm trying to add OneDrive storage account in Adobe Acrobat using Office 365 work email address.

20323-onedrive.jpg


20294-onedrive1.jpg


However, when I click Accept I get the following error

20230-image.png


My work email address has to go through DUO MFA verification for the following apps in Conditional Access.
Office 365
Office 365 Exchange Online

Tried to exclude OneDrive but still getting error.
Fiddler revealed this

25082-onedrive4.jpg



If someone knows how to fix it please share he solution

azure-ad-conditional-access
onedrive4.jpg (19.5 KiB)
· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

@ITGeek82-8422 Can you go to Azure portal to your tenant and check in Azure Active Directory > Enterprise Applications > Adobe Acrobat > Permissions and User Consent tab if user consent is coming as shown below.
25305-image.png

Also, once you click Users link under "Granted By" column you could check if the permissions have been granted to the user you are logging in with.
When you consent through the popup you have received while adding the account on Adobe Acrobat reader, all these permissions are added against the user on Adobe Acrobat application in your tenant.



0 Votes 0 ·
image.png (90.0 KiB)
ITGeek82-8422 avatar image
0 Votes"
ITGeek82-8422 answered ITGeek82-8422 edited

@SaurabhSharma-msft

In Azure Active Directory > Enterprise Applications > Adobe Acrobat > Permissions and User Consent tab I can see exactly the same.
If I expand details I can see:
Permission type - Delegated. Delegated type means that this application may act on behalf of a user as the user him or herself for this particular permission.
Permission granted through - User Consent. A permission granted through user consent means a user signed in to this application with his or her organizational credentials and granted it the particular permission.
Granted by - 1 total user (this is myself)

If I check Conditional Access fro Adobe Acrobat there no DUO MFA policy applied
This makes me think when I enter my business email address and password then it is not Adobe that prevents me from adding account but something related to O365 services.
Should I exclude OneDrive or SharePoint Online?


· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

@ITGeek82-8422 I suggest you please open a support ticket with Microsoft to look into your environment and further analyze your fiddler traces to understand the rootcause. Please let me know if you need any help with opening a support case and I will raise a one time free support ticket for you.

0 Votes 0 ·
ITGeek82-8422 avatar image
0 Votes"
ITGeek82-8422 answered SaurabhSharma-msft edited

@SaurabhSharma-msft ,

I've already raised it with them but after some investigation on their side I was advised to contact Adobe.
I'm not sure if Adobe has anything to do with this issue.

· 2
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

@ITGeek82-8422 I am checking internally with the products team on the same and let you know in case if they have any other opinion.

1 Vote 1 ·

@ITGeek82-8422 Sorry for the delay. As per products team this is because OneDrive uses services that would apply to Exchange Online. Same goes for MS Teams. So you can't just exclude Onedrive and have it applied to exchange.

0 Votes 0 ·
BrianLThomas-6442 avatar image
0 Votes"
BrianLThomas-6442 answered

I'm experiencing this same issue. I do not have a solution, and although I'm still looking for one, I do have a work around. In Adobe you can connect to OneDrive if you choose add an account, then choose SharePoint instead of OneDrive. Put in the URL of your OneDrive and it will connect.

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.