How to extract an Active User Listing with identifier columns for "Groups/UserGroups" & "License Type"?
Hi Team, I've been going back and forth between the Admin and Entra Portals. I am trying to extract a comprehensive Active User listing for my organization with an indicator of the following: Full Name User Email Group/UserGroup Department License…
How to disable MFA and Microsoft Authenticator for all users
Hello Please i would like to know how to disable MFA and Microsoft authenticator for all users within the tenant?
How do I remove an org linked to my account?
Hi, So I recently reopened my Azure account and I noticed that I am under some organization that I think I joined like years ago. Now, I wanted to remove/leave the organization (BTS INC) entirely on my whole microsoft account but I cannot find the way…
I get AADSTS50139 when logging into a desktop application
I am using Kusto desktop client. When it tries to log me in, it throws the following error. How to resolve this? Failed to connect to the cluster. Do you want to add this connection anyway? Connection attempt resulted with the following error: Kusto…
Fetching Azure AD details of Members when signing using Clerk
Hi, I am building an app using NextJS, Clerk for authentication, Prisma as ORM, postgres as DB. I want to sign in using Azure/Entra AD as I'm building an app for my company and I want to fetch the details of users when they sign in using clerk and how do…
SecureMFA QR code is not working to register users
When our users access applications those requests are redirected to our ADFS server . Post Authentication as we have enabled MFA, our request is redirected to https://chart.googleapis.com to generate the QR code and with that users registered in their…
Unable to upgrade to Entra ID P2 Tier from my Azure Free Account.
Hello There, I am currently studying for my AZ-104 exam. So I had a free Azure account registered with an email id, say user1@outlook.com. I was accessing it for a month until I wanted to create & manage tenants and explore Entra ID. Now, I…
Adb2c password reset custom policy -Reset password using username
Hi, I am working on Adb2c custom policies and am stuck in the password reset policy where I need to reset the password using a username instead of the email address. The below screenshot is for User flows where it is provided that we can create a reset…
How do we find the orphaned managed identities which are not assigned to any azure service
From a list of managed identities present in azure subscription for my account, how can I identify the managed identities which are created but does not have any roles or resources attached to it. I want to find the list of all the managed identities…
How to diagnose "'AADB2C90289: We encountered an 'invalid_client' error connecting to the identity provider."
We have a Blazor application hosted in Azure which uses Microsoft Identity to authenticate the user. This has worked without incident for several years. As of last Friday night, any user trying to log into the system receives the following error after…
How to create a Teams meeting for all to join with their personal accounts?
In a personal Teams meeting, the login option isn't displayed. However, personal accounts face restrictions when attempting to join business Teams meetings via browser or desktop. Is there a workaround? Can the Graph API facilitate this process? And can…
Document Intelligence Studio Label Data Key based authentication error
Hi, i have set up a storage account with a container. i have disabled key access and added my Entra id to the roles with storage data contributor and added the system assigned identity of document intelligence identity with storage reader role to storage…
Directory Harvest Attck
Hi Everyone, we will soon be upgrading our Azure subscription to Security but right now we are getting thousands of SPAM emails can anyone please tell me if there is a way to create a conditional access policy in Entra to stop Directory Harvest…
password reset custom policy issue while resetting password
I am using custom policy to signin and reset password. I created sigin policy and able to run and signin using my uersname(created by Graph API ). But while resteting the password and after verifying the code while clicking on Continue button I am…
Workday/Entra ID - Soft delete users without the "Delete" action selected?
We currently have Workday to Entra ID user provisioning enabled with the "Create" and "Update" actions allowed and "Delete" is not enabled. I'm wondering if anyone is able to clarify whether the integration is able to soft…
SSO login error
Hi all, I'm configuring SSO from Google Workspace to Entra ID following the documentation below and I'm receiving an error: Error message: AADSTS5000811: Unable to verify token signature. The signing key identifier does not match any valid registered…
Creating a naming convention for local user profile name when singing in with a M365 user
Hello, as far as I'm aware, the name used for the local user profile when logging in to an Entra ID joined device for the first time is the first 20 letters of the M365 display name with special characters and spaces removed. We would like to keep the…
How to fix error "AADB2C90046" returned back by ACS endpoint of Azure AD B2C?
Users are encountering an error after successful authentication through SiteMinder (external IdP). Following authentication, SiteMinder sends a SAML Response to Azure AD B2C's ACS endpoint, but B2C returns the below…
How to delete an Azure Distribution List
I have a test group that was created in local AD and migrated to Exchange Online - no longer needed. I have deleted it in local AD and did a number of syncs but it remains in AZURE as a distribution group as well as show up in Exchange as a distribution…
Can a single Entra P1 license be used to collect account configuration data within a tenant without requiring P1 licenses for every user?
I am trying to evaluate a tenant's user accounts for proper configuration of conditional access policies, MFA registration, and more. I've found that a single service account with a P1 license can query the graph API for this information, but I'm unsure…