Bulk external users as members not as guest
MSDN Redirect. Hi, Update:
User enumeration on Client Credentials authentication flow?
Hi, I'm currently testing a client application where I receive the following error messages from OAuth endpoint "login.microsoftonline.com" that allow for user enumeration: For an incorrect client_id: "AADSTS700016: Application…
Using Active Directory With Sharepoint to use the Excel Endpoints on Graph API
I'm presented with the error "Tenant does not have a SPO license" when using the Graph API listing files on ODrive. I'm well aware of the following article, and Currently at the same point as the poster of the said article. …
Azure MFA and OATH tokens
Unfortunately, we have users who are not willing to install the Microsoft Authenticator app on their personal smartphones and they do not have company-issued ones. Is it at all possible to issue them with OATH hardware tokens to use for MFA purposes? …
azure ad access issue
Hi All, just face issue when i try to login azure port they are saying password not correct i have steup 2 custom domain test@klovesla.com test@org1.kloveslab.com test nishant86dulloogmail.onmicrosoft.com (this default one always…
Azure Hybrid Join - Non-Routable Domain
We are looking to continue to move to Azure cloud services, and were looking at including the AAD Connect Hybrid Join feature. Client is currently and successfully using AAD Connect to sync with Office 365. The current on-prem domain is using a…
Enterprise App group claim
I need to pass all the groups in the token and configure the application to make authorization decisions based on the group claims. I have followed all the doc about configuring group claim with no luck.
MFA automatically enabled on Azure AD B2C tenant
I recently added an Azure AD B2C tenant to an existing subscription. Whenever I want to manage that tenant on portal.azure.com, I have to verify my account: After clicking Next I can only select Mobile app from the dropdown to verify my…
How to properly solve duplicate upn (private and work)
We have some users that created their own Microsoft account (private) using their email-address from work. In many cases this is the same as the UPN. Now two years later we have started using our tenant and given the users their microsoft account by…
Azure Active Directory Connect Issue
Good Morning, I have the following scenario and I need some assistance with ADConnect :- 1) Office 365/AAD accounts configured and successfully connected to local AD (Contoso) 2) ADConnect removed 3) new AD domain created (Contoso.company) 4)…
Issue when trying to add API permissions
Hi there I am working on integrating Onedrive into Nextcloud. Therefore I need to create an app registration in the Azure portal. This works fine. But when I try to change the API permissions, the website gives me two error popups and I can't…
Unavailable subscription Azure plan sandbox
Hi there, I've just created a new customer on a CSP sandbox account, and then I've added the Azure Global product to it. The issue is that when I try to view all the resources on Azure portal, for the newly subscription, it says the there is no…
Process for ISV Azure AD application registration
Hi, We are currently selling some Microsoft Dynamics ISV solutions (Finance and Operations, Sales etc.) that uses OAuth 2.0 Client Credentials Grant Flow to communicate between our ISV solutions on these Microsoft hosted products. Authorization…
Can't add additional Scopes to my AD Application
Hey, I can not add new Scopes to my Azure AD Application. If I try, I get stuck on an infinite loading Screen. A screenshot of it can be seen here: I have already tried using a different Browser, the Azure Portal App, a different AD Application,…
Different functionality in Azure AD in Azure Portal vs. Azure AD Portal
Hi, I have a strange problem. When I login with the administrator account of our tenant in the Azure Portal (https://portal.azure.com) I cannot add a new user or assign a role to a user. If I login with the administrator account of our tenant…
Allowing on all users to login on remote AAD joined machine
Morning! I'm trying to build out new offices with smaller footprints. One of my ideas was to put the machines into AzureAD. I've done that, but what I see is I can only login with the user that's assigned to the machine. Is there a way I can register…
AOBO Admin-On-Behalf-Of flow rest api
Anyone have a coed example for the AOBO flow? What I'm trying to achieve is to manage the resources inside the customer azure subscription as admin. So, I need a rest api flow where I ask to the user a token that authorize the admin to access to…
Azure Active Directory : Sign-in Disaster Recovery
Just wondering if anyone has inputs on how to implement sign-in disaster recovery mentioned in this guide - https://learn.microsoft.com/en-us/azure/security/fundamentals/choose-ad-authn (bottom right decision box in the decision tree diagram). As per AD…
Office 365 URLs and IP address ranges
We have a hybrid Azure/Active Directory environment with Site2Site VPN to Azure. We have issues connecting to some Microsoft services. This could be because of our Firewall policies. We would like to know how other organizations are able to maintain a…
[MSDN Redirect] Getting 400 Bad Request while trying to establish a SCIM Test connection from Azure AD
I am trying to configure SCIM based provisioning to a non-gallery app in Azure AD. The target application is a home-grown SCIM server implementing SCIM V2.0. I can very well establish SCIM connection to my app from other IDM products like OneLogin for an…