AD Connect behavior when removing UPN suffix?
Greetings all. I have a client with an existingO365 tenant which is synced to their local AD. That legacy AD is being migrated to a new one however the UPN suffix on the legacy domain happens to exactly match the domain name of the new domain to which…
G-suite SAML app for Azure
We want to enable guest users for a particular domain to login with their G Suite accounts. I have setup the direct federation. I am having doubts in how the attribute mapping part of SAML app at g-suite end is configured. Can any one please help me…
MS Graph: /me/photo/$value --> returning application/octet-stream MIME type
About: My solution (a middle tier api) is accessing the MS graph endpoint https://graph.microsoft.com/beta/me/photos/$value with an on-behalf-of access token. Reuquest headers: headers: { 'Authorization': Bearer ..., …
Export / Import SAML attributes for a given enterprise app?
Is there an easy way to export / import SAML attributes for a given enterprise app?
Protect Angular SPA with Azure Ad authentication
Hi, I need to protect my Angular SAP and Node JS API with Azure AD Authentication. which flow should i use? Auth Code Flow or Implicit Flow? Where can i find the sample apps ot tutorials that show steps to implement the suitable flow in both…
How to avoid external users from being affected with an existing conditional access policy?
I was tasked to find ways (if any) to have external users NOT be affected with existing conditional accesses in the company WITHOUT modifying said existing policies. We have 1 policy that prevents any user from accessing the company's tenant content…
Move G Drive with mover
I was looking to contact with on of mover support team to understand a couple of points of mover service. Now we are using G suite product, we do have many separated accounts in G suite but we would like to move to Microsoft Business 365 (one account for…
Authentication Issue using Graph API's and read only scopes
Customers want to authroize an app with Application Administrator or Global Reader permissions, however, can only authenticate with Global Admin, Can somone confirm that using Graph API's you must have global admin credentials to authenticate an…
Adding ws-fed identity provider to b2c instance?
The msft docs demonstrate adding a new OIDC identity provider to a b2c instance. However, I would like to add a ws-fed identity provider to the b2c instance. Can this be done? Are there any tutorials or docs for doing this?
how to fetch mail content without old mail data in ms graph mail api
Dear all, We are using MS Graph API for a web application. we need to fetch all mails based on the conversationId, mails are replying with the same email they received. they will not delete the mail content when they replied. so the replied mail has…
Azure AD Connect when moving users from one AD to a new AD
Hello, Today we have one AD forest with two domains with users in them. They are synced to Azure AD with Azure AD Connect matching with msDS-consistencyguid as per MSFT recommendations. We use an AD attribute to filter which should be synced to AAD -…
How to Push customised office template to all users using GPO
Hello, I have 4 customised office templates that need to appear when all users open new document. We are using Office 2016 - template already added to GPO Please can you put me in the right direction Thanks Niyi
AzureADPasswordProtectionProxy exception error after failed setup
Good morning, I messed up when going through the Authenticator process when installing the Azure ADPasswordProtectionProxy setup. Now when I attempt to use my admin account again I get "Cannot process argument because the value of the argument…
Script configuration of audit logs for AAD to an event hub
I am trying to write a script we can use company wide, across all our Azure accounts, to properly configure all the audit logging for centralized monitoring. I am struggling, however, to figure out how to script configuring Active Directory audit logs…
Office 365 outlook stopped sending notifications
Hi All, I am using O365 on my Mac, iPhone and iPad. Since yesterday, O365 outlook is not showing notifications on my Mac and on ipad and iphone I need to open the app and refresh to see if there are new email. And across devices also it is not…
On-premises authentication device enrollment failure
After we configured the MDM discovery URL of the On-premises MDM application in azure portal, and then tried to "join this device to Azure Active Directory" we got the error message above. We have completed the MDM discovery URL according…
Authentication with Microsoft for existing users
I'm developing a Webapp with (ext)ASP.NET that already has users registered. I'm trying to add Authentication with Microsoft (OpenID Connect). My problem is, that I don't know how I should connect the existing users to their respective Microsoft…
Can Event id change?
Hello everyone, We have a hybrid model of native appointments merged with appointments from our clients Outlook fetched by using the Microsoft Graph API. [https://learn.microsoft.com/en-us/graph/api/resources/event?view=graph-rest-1.0event]() …
Azure AD user provisioning with G suite
Hi Team, We are facing some issues on Azure AD user provisioning with G suite below is the error "Not Authorized to access this resource/api" } ], "code": 403, "message": "Not Authorized to access this…
Azure AAD Creation - Network Error
When trying to create a new Azure Active Directory, clicking on the Create a New Resource, then AAD, I get a Network Error: Extension Microsoft_AAD_IAM Content ActiveDirectoryOverviewBlade Details The request either timed out or your browser…