When using the Microsoft Azure Groups | All groups screen to get a listing of ad groups, is there a way to add a column to the screen which will show the numbers of members in the groups?
I know I can click into a particular group to see the number of members in it, but from the Groups | All groups screen I would like to see the number of members in each group. So if i filter for the ad groups I want to target, and then it shows me a…
SSO for IIS web server in Azure over Application Proxy
Hello, in Azure there is a VM on which an IIS server with Windows Authenticatiob (NTLM) authentication is installed. This server has membership in an on-prem domain, which is also a VM in Azure. Azure has an Application Proxy configured to publish to…
we are using Azure B2C Trust-framework policy for the JWT token, how do we manager the JWT Session and Refresh Token
Hi Team, we are using Azure B2C Trust-framework policy for the JWT token, My question below: we want to keep JWT token expiry for 15 min, if user was active need to use the Re-refresh token to regenerate the token which ever user was active for 15 min…
NPS MFA issue, users not advancing to OTP screen after entering the credentials
Hello Guys, Would appreciate your help in resolving this issue, Thanks in advance. After entering user credentials at IdP, it is not moving to OTP step. Azure MFA with NPS configured. Verified, NPS service is running and certificate not expired. Getting…
Passwordless MFA Authentication
Hi, We are in the process to enforce users to setup their MFA (Most probably many already have it) but we need to use the preferred method wich is passwordless in Conditional Access. So I am testing on couple of accounts, yet am having issues and few…
How to remove all License-based subscriptions linked to an Entra ID tenant?
Hello, I'm trying to remove an EntraID tenant which I created ages ago, probably via teams. Unfortunately, when I try to remove it, I get a warning on "License-based subscriptions" but I cannot figure out which subscription I might have. I…
something went wrong when joining device to microsoft entra id
I disconnected the work school accounts so that the device no longer shows in entra id and intune portal. I want to "join this device to microsoft entra id". I get the error something went wrong 8018000a "THIS DEVICE IS ALREADY…
External identity cannot accept the invitation
This user ([saadi@onminerets.onmicrosoft.com]) was invited to this tenant cfeee0c4-dbf3-44f7-b6c7-361ade5b4555 though without mailbox but was sent the invite link and when clicks the link he get this: When he clicks switch accounts, he gets this:…
Conditional Access policy to require one of two MFA options?
We have Duo mfa configured and in use in our org. Duo works just fine as an mfa provider for Azure AD auth. We've been told my MS that a CA rule can be set to require Duo or MS mfa during auth. Has anyone actually tested this out and can describe the…
unable to reset password 'due temporary issues'
when i try to reset password for users in my domain i getting this error"we're sorry, we're not able to reset this user's password right now. this may be due to temporary issues on our end. please wait a few minutes and try again" kindly…
Microsoft authenticator applicaiton for windows 10 OS
Hello, Did anyone know if a windows 10 version of the Microsoft Authenticator application is available? Currently, the app is only for ios and android platforms. Thank you
We have P2P certs on our clients and servers seems to have been deployed via Azure without us intentionally doing anything?. Causing SCOM alerts because issuer not trusted!
Use case seems to be limited to RDP in same tenant between devices. BUT cert in the AAD Token Issuer folder MS-Organization-P2P-Access [2021] used for issue certs locally not trusted by ROOT CA causing SCOM ALERTS! What is the correct way to solve this?…
You are not eligible for an Azure Free Trial Subscription
I tried with a old and 2 new Microsoft accounts to register and try out Azure free trial, but always get the message "You are not eligible for an Azure Free Trial subscription", all the information was not used before on azure free trial…
search graph query not able to recogniz
Even az resource gaph module is already there it is giving error as below 'Search-AzGraph' is not recognized as an internal or external command
How to skip OrchestrationStep related to MFA (ClaimsExchange) if login prompt was not displayed
Hello Team, We have CombinedSignInAndSignup step which shows login prompt if the session is not active and this is followed by ClaimsExchange which does phone SMS or call) authentication. In case of an active session (either 'Keep me signed in'…
How to skip OrchestrationStep related to MFA (ClaimsExchange) if current session is already active
We have a CombinedSignInAndSignup step that displays a login prompt if the session is not active. This step is followed by a ClaimsExchange, which handles phone SMS or call authentication. When there is an active session (whether ‘Keep me signed in’ is…
Authentication Issues using AAD Kerberos for Azure file shares
I have ran and re-ran through the prerequisites. "The Azure AD Kerberos functionality for hybrid identities is only available on the following operating systems: Windows 11 Enterprise single or multi-session. Windows 10 Enterprise single…
Issue with authenticating API management with Azure OpenAI services using managed identity
Hello, We are trying to connect API management services with one or multiple model deployments on Azure OpenAI services. Basically we are trying to do some version of what is shown in this repo (and this blog post). Following the instructions, we have…
How to remove a 'dangling' Access Control (IAM) assignment for User Access Administrator?
A User profile was set as User Access Administrator, the mistake was recognized, and the User profile was deleted... However, after the deletion, there is a 'dangling' Access Control (IAM) entry indicating ("Identity not found") which makes…
Use Okta MFA claim with Security Defaults (not Microsoft Authenticator)
We have multiple tenants, one of which is licensed and is configured to provision users from Okta. Our other tenants are free-tier and have Security Defaults enabled to enforce MFA. We invite employees at their Okta user email to become B2B Collaboration…