How can I seamlessly change an App Registrations "Application ID URI" domain?
I have a published teams app which includes tabs. The tabs point at Domain A to authenticate the user using "microsoftTeams.authentication.authenticate" and "microsoftTeams.authentication.getAuthToken()". The teams manifest.json…
Forcing user logout after password change in Azure B2C
Hello, I have two separate applications - a SPA-web application and a mobile application. I have set up user journeys and technical profiles that redirect users to reset their passwords when needed. However, I'm having trouble figuring out how to log out…
Entra ID Hybrid Join without Entra ID Connect sync
Hi, We have recently taken over IT support of a customer and found the following configuration: Users logon to devices joined to an on-premise Active Directory The is No Entra ID Connect sync installed/configured Most users have a corresponding…
Unable to upgrade to Entra ID P2 Tier from my Azure Free Account.
Hello There, I am currently studying for my AZ-104 exam. So I had a free Azure account registered with an email id, say user1@outlook.com. I was accessing it for a month until I wanted to create & manage tenants and explore Entra ID. Now, I…
Unable to Sync accounts using API-driven Provisioning to on-prem AD - HybridSynchronizationActiveDirectoryProviderNotFound
I am trying to deploy an API-Driven Provisioning to on-premises AD so that using a PowerShell script I can extract user information from a Third-Party DBMS, convert it to SCIM format and then send it to Azure AD API-Driven provisions for logging and…
Entra ID as SP for SAML SSO
Hello I am trying to set up Entra ID SSO using SAML. All the i can find is how to set it up as a Idp but i am using Entra ID as SP using SAML. Has anyone used EntraID as SP using SAML? Can you please help
Adding Entra ID authentication to a web app that utilizes Web PubSub in Azure
I'm trying to simply add Microsoft Entra ID for authentication to an Azure web app. I have a javascript chat-app using Web PubSub that worked perfectly using this…
Non interactive login in B2C
Hi All, I'm trying find a solution is get access_token and id_token using non interactive login in B2C. I already tried ROPC which does provide the access token only and when I decoded the token, output claims is not has my SIGNUP_SIGNIN output claims. I…
How to register an app in microsoft entra id using visual studio professional subscription
I'm getting you don't have access when trying to register an application with microsoft entra id although I have visual studio professional subscription
b2c prompt=login not working as expected
We are noticing an odd behavior with the prompt=login option using B2C custom policies and could use some help from this support forum. My requirement is to force re-auth for the following use case: “Sign in as a different user” or “Hi John Doe! Not you?…
Unable to Read/Write B2C Custom Domain Settings in Entra Admin Center
I'm following along the Azure Add your custom domain name steps and trying to navigate to the Settings>Domain name. I have global admin for the tenant which is also linked to an active subscription But there is no Setting under Identity.
The portal is having issues getting an authentication token. The experience rendered may be degraded.
An Invoice of 109 USD was generated for my new azure account for Azure support. i was unable to view or login to the portal with my azure account. The portal is having issues getting an authentication token. The experience rendered may be…
How to delete an Azure Distribution List
I have a test group that was created in local AD and migrated to Exchange Online - no longer needed. I have deleted it in local AD and did a number of syncs but it remains in AZURE as a distribution group as well as show up in Exchange as a distribution…
Unable to generate access token. invalid_grant error, AADSTS65001:The user or administrator has not consented to use the application with ID
Context: I'm building a web app that intends to provide insights and analysis on user's Sharepoint and OneDrive data. Users should be able to come to my web app, connect their Sharepoint and OneDrive data by going through some oauth flow and agreeing to…
What are the benefits of the existing single forest AD Domain to convert or upgrade the AD Domain Controllers from FRS to DFSR?
What are the benefits of the existing single forest AD Domain to convert or upgrade the AD Domain Controllers from FRS to DFSR? https://learn.microsoft.com/en-us/windows-server/storage/dfs-replication/migrate-sysvol-to-dfsr FFL & DFL: Windows Server…
Use certificate/FIC for Azure Data Explorer service connector on ADO
Hi team, our current azure data explorer service connector uses service principal key and secrets to authenticate. However, in response to a security incident we're solving, we need to convert the service connector to use SNI and certificates for…
How to clean up "Sign-in with your passkey" options
Hello, I have enabled FIDO2 as sign-in method and enforced it with CA policies for a pilot group. One of the users is seeing his phone as device with a saved passkey. Where did this option come from and how to disable it? The desired option is ONLY…
We have a password expiration policy set in Entra ID that forces users to change password every 90 days, but we have a subset of users with expired passwords that are not being prompted to update.
It seems that there is some commonality in the successful authentications which is that they are signing into application title: Apple Internet Accounts per sign in logs. Client app is Mobile Apps and Desktop Clients in same log. Curious if there is…
FIDO2 NFC Security key vs Android phone
Hello, I have configured FIDO2 as the only sign-in method for my tenant. It is also enforced through CA policies as phishing resistant MFA. Our FIDO2 keys are NFC compatible. The NFC experience from an Iphone is similar to the browser and works great:…
We wanted to do SAML authentication with Azure, so essentially Azure will be the Service Provider and RSA will be the Identity Provider. I need help with integrating the SAML authentication.
We wanted to do SAML authentication with Azure, so essentially Azure will be the Service Provider and RSA will be the Identity Provider. I need help with integrating the SAML authentication.