Adding guests to group error
As the bulk guest invite function is currently disable i am having to add new guests individually. However i cant add them to a group at either the invite stage or afterwards within the group membership preview pages as i just repeatedly get the same…
Download Azure AD Powershell Module v 8362.1
I am looking to obtain a downloadable version of Azure AD PowerShell Module v8362.1. I found this site that list all the historical versions and links to their downloads but all links that I can find are dead links. …
Unauthorized Error on calling Web API from Native Client
I am using the Todo List sample of Web API & WPF. Registered the Client App & API App in Azure. Login is successful. But Service Call is failing with Unauthorized.
Avoid switching to Enforced after enrolling
Hello We are starting to use MFA in our company, but we do not want to use Enforced method, only the Enabled. I understand that after the registration users switch to Enforced, but how can i avoid that? Even if i register the phone for them before…
Integrate web app with VM over internal vnet?
Hi, Issue: I want to place a web service from a VM behind a Azure AD sign on portal. Attempted solution: Set up a simple Nginx proxy with Web app for container and let this proxy redirect to VM though Vnet integration. From azure web app service…
Device Administrator Role not populating on older devices.
I have come across an issue with adding the device administrator role to our team any device that was joined before that role was added does not seem to elevate their permissions. Any device that was joined after they have been added works as intended. I…
Lack of device info causing Conditional Access rule bypass
Some of our Windows mobile devices are quite old and can't install the current version of Outlook application so rely on ActiveSync and native mail apps. Whilst we update these we created a conditional access rule that blocks ActiveSync on Android and…
fails to map to azure file drive when computer is azure ad joined
i have a problem to map to azure file drive when my computer is azure-ad joined but not join to domain. it prompted for my windows hello pin and after entered, it will get below message. i already done the steps mentioned at below link but still…
Got error "no account or login hint was passed to the acquiretokensilent call" in the second visit
Hi, I got the error "no account or login hint was passed to the acquiretokensilent call" when I visit my page in the second time. This error occurs in the call GetAccessTokenOnBehalfOfUserAsync(scope). The first time is fine. If I clear the…
Application doesn't prompt for login (instead, it use the account from different Azure tenant which I have logged in previously)
I have access to four different Azure tenants. Tenant A includes: account A001, registered app A_App001 (supported account types: my organization only) Tenant B includes: account B001, registered app B_App001 (supported account types: my organization…
Any document/resource to help us understand how cookies works in AAD authentication? (OAuth))
I am interested in how AAD use the cookies. There is the link describes cookies definition for AAD B2C. https://learn.microsoft.com/bs-latn-ba/azure/active-directory-b2c/cookie-definitions But this link does not include all of the cookies I have…
Multi factor authentication
I have an azure global administrator and has 1 phone number registered as a multi factor authentication. How do i have another phone number register for the same azure global administrator account??
AD Connect reinstall and reconfigure
Hello Everyone, I had a server with AD connect installed used to sync my on-prem AD users to Office 365. The server was formatted without migrating the AD connect to another server. Can I reinstall AD connect on another server and reconfigure it?…
service account in Azure
Folks, Question about service account in Azure AD. I have MFA enable. I need an account to run my Microsoft flow (to create Azure user account and add user to Azure SG group). Issue is when I create AAD account, it uses MFA. What is the best way to…
What is best practice to secure admin script account in AAD?
Looking for best practice ideas to secure an elevated account used in scripts. MFA really isn't an option. THX> Eric
Why am I not receiving responses from posts via email?
I'm not receiving responded email messages from Forums> maccount@microsoft.com from my posts since Tuesday. Tuesday I received a response. But since none, there has been responses I just do not get them. I have checked my spam filter. nothing there.…
Consume a web ASP.NET Core App api with Azure AD authentication from a console application
Hi, I published a Web ASP.NET Core App with Azure AD authentication successully on our Azure subscription. The business logic of this web app is developed as api route, with json objects as input and output parameters. I would like to expose this…
Local server authenticating Azure AD users
hello, I am trying to find a way where an onpremise server such as a file server is able to accept azure AD credentials but itself not being azure AD joined. we are moving new devices do azure AD and still require local server access for files etc. …
Domain Controller in Azure also need FW rules to allow on-premises authentications
We are extending our domain into Azure. I am setting up an AD site for Azure and deploying a domain controller there. I have always thought the best design of AD is to allow any client to authenticate to any DC. That way if a DC goes down or there is…
Web apps call web api on-behalf-of signed in user: Missing solution for pure web front-ends
Hi, I have a razor web page that calls a web api and display the result on the page. The razor page signs the user in and calls the web api on-behalf-of the user. The authentication is done via Azure AD. I have read the section on "web apps call…