Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
808 questions
1 answer
What is the min IAM role required to create Azure Policy and Blueprint
I have contributor access to a subscription. But i am not able to create Azure Policy and assign it to a particular resource group under the subscription. What is the role i needed to be assigned to if i need to create an Azure Policy and apply it to a…
asked 2020-02-11T22:52:56.39+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(0, 7.000000000000001%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPC%3C/text%3E%3C/svg%3E)
Pallab Chakraborty
401
Reputation points
answered 2020-02-12T05:56:22.457+00:00
AmanpreetSingh-MSFT
56,346
Reputation points
1 answer
One of the answers was accepted by the question author.
Azure AD Express Authentication
I am using Azure AD Express Settings for Authentication for an Angular App. It is working fine. I need to put 30 minutes idle timeout for the ID/Access Token how i will set idle timeout in express settings? will there be automatic extension…
asked 2020-02-10T17:21:09.283+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(300.8, 95%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKA%3C/text%3E%3C/svg%3E)
Kevin Azure
141
Reputation points
accepted 2020-02-12T00:28:56.757+00:00
Kevin Azure
141
Reputation points
3 answers
One of the answers was accepted by the question author.
Is it possible to edit an Excel file located in onedrive using Microsoft Graph API from an app without having to sign in?
This idea may seem crazy, but is it really possible? I have found Excel API which can be used to edit an excel file located at onedrive, given that, I first sign in to my microsoft account. But I have also found this doc:…
asked 2019-11-01T17:21:08.573+00:00
Muzib
21
Reputation points
answered 2020-02-11T22:13:04.287+00:00
Jeremy Thake
6
Reputation points Microsoft Employee
2 answers
How to automate the connection to a SharePoint site with multi factor automation for Azure Development Pipiline
We are trying to organize an Azure Development Pipeline where the deployment and some development process would be automated. The SharePoint sites we are currently working with require a multi-factor authentication, which mean the site access…
asked 2019-12-09T16:49:06.797+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(182.40000000000003, 93%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EM%3C/text%3E%3C/svg%3E)
Mikhail
41
Reputation points
answered 2020-02-11T11:58:44.297+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(28.799999999999997, 86%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EOS%3C/text%3E%3C/svg%3E)
ocean specialists
1
Reputation point
1 answer
[MSDN Redirect] User provisioning from Azure AD to AWS will not start
Following the instructions in the AWS blog post entitled "The Next Evolution in AWS Single Sign-On", I have created an Enterprise Application in Azure Active Directory and changed the identity source in AWS SSO to be Azure AD. As an initial…
asked 2020-02-07T04:58:39.027+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(249.60000000000002, 39%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESM%3C/text%3E%3C/svg%3E)
SwathiDhanwada-MSFT
18,036
Reputation points
answered 2020-02-10T23:43:37.24+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(214.4, 81%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMT%3C/text%3E%3C/svg%3E)
Marilee Turscak-MSFT
35,116
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
Azure Active Directory Token Get after Login
Hi Experts, I have an Angular App, registered with an App Service, authentication enabled through OOTB Azure Portal > Authentication Blade > Express Settings (not through code) Enabeld ID Token & Access Token for "App Reg 1". …
asked 2020-01-08T18:54:46.473+00:00
Kevin Azure
141
Reputation points
commented 2020-02-10T17:04:22.213+00:00
Kevin Azure
141
Reputation points
2 answers
Why is dynamic group not working?
My dynamic group isn't assigning my tablet after enrollment. I tried following the docs as much as possible, also communicated with a chat supporter who asked me to post it here for an expert answer. I have some screens to give insight in how things…
asked 2020-01-30T14:44:20.55+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(25.6, 12%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVC%3C/text%3E%3C/svg%3E)
valentin christensen
1
Reputation point
answered 2020-02-10T16:38:40.993+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(316.8, 52%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJF%3C/text%3E%3C/svg%3E)
Joshua Fritz
1
Reputation point
2 answers
AD connect Sync option
We are currently only syncing Users and groups from on-Prem AD to our Azure Tenant We see that some of our Windows 10 machines and some users personal devices show as Azure AD registered in Devices section of AAD Dow e need to sync Our AD joined…
asked 2020-01-07T13:35:29.403+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(89.60000000000001, 91%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVH%3C/text%3E%3C/svg%3E)
Vivak Hangloo
91
Reputation points
commented 2020-02-10T16:36:25.993+00:00
Joshua Fritz
1
Reputation point
4 answers
How to Synchronize/Migrate AAD B2C in O365 Azure AD B2B integration?
Hello, We have a SharePoint on-premises application that uses Azure Active Directory - B2C for single sign on and other security features. At present we are planning to move to Microsoft cloud and require to know the solution to synchronize/migrate…
asked 2020-02-03T15:49:39.93+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(307.2, 66%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDC%3C/text%3E%3C/svg%3E)
Dipti Chhatrapati
11
Reputation points
answered 2020-02-10T13:47:49.52+00:00
Dipti Chhatrapati
11
Reputation points
2 answers
[MSDN Redirect ] ADConnect shows Domains as 'Not Added' but they are verified in Azure AD
Hi community, I have successfully verified my Domain Names in Azure Portal and all of them have the green tick VERIFIED but when I go to AD Connect to configure Pass Hash the Azure AD Domains are marked as 'Not Added'. I have tried uninstalling and…
asked 2020-02-07T04:59:59.957+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(220.8, 62%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKM%3C/text%3E%3C/svg%3E)
KetanChawda-MSFT
1
Reputation point Microsoft Employee
answered 2020-02-10T02:29:58.003+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(246.4, 45%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGP%3C/text%3E%3C/svg%3E)
Gabriel Porto
1
Reputation point
1 answer
Mail Enable an Existing Azure User
Greetings, I have existing Azure users that I would like to mail enable. I want to be able to add them to a mail enabled security group that I'm using to grant access to an Admin role in our EXO subscription. I can add them to the role, but I'd…
asked 2020-02-07T15:22:52.32+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(300.8, 91%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETG%3C/text%3E%3C/svg%3E)
Travis Gallagher
1
Reputation point
answered 2020-02-09T18:56:36.557+00:00
Vasil Michev
97,386
Reputation points MVP
1 answer
[MSDN Redirect] Hybrid federated domain with AAD Connect and SAML Auth
We are hybrid with Azure and sync onprem AD via AAD connect . We don't have password hash sync turned on. So all authentication are via on-prem ADFS-3. Question is, can we use Azure AD as SAML IDP to authenticate users instead of using onprem ADFS for…
asked 2020-02-04T22:44:23.923+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(204.8, 44%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESS%3C/text%3E%3C/svg%3E)
Saurabh Sharma
23,766
Reputation points Microsoft Employee
answered 2020-02-08T04:59:07.68+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(60.8, 0%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EFM%3C/text%3E%3C/svg%3E)
FrankHu-MSFT
976
Reputation points
1 answer
Limit User managed identity to be used within a Subscription
We have multiple teams within our organisation. Each team have their own Azure subscription under the same AAD tenancy. Our requirement is to Create User managed Identity and permissions assigned. Limit the usage of the User managed…
asked 2020-01-31T01:33:32.197+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(19.2, 2%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGV%3C/text%3E%3C/svg%3E)
Gaurav Verma
1
Reputation point
answered 2020-02-07T11:20:05.527+00:00
Somnath Shukla
411
Reputation points
1 answer
How to authenticate against AD from custom app service api code?
We have a custom web service hosted on an OnPrem windows IIS server. This api when called, logs off or breaks the signed in user session(user signed in to Sharepoint online-O365), and tries to authenticate the user again, against OnPrem AD using windows…
asked 2020-02-05T03:25:25.32+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(230.39999999999998, 95%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERS%3C/text%3E%3C/svg%3E)
Roby Skariah
1
Reputation point
commented 2020-02-07T05:34:58.127+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(304, 2%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESM%3C/text%3E%3C/svg%3E)
soumi-MSFT
11,746
Reputation points Microsoft Employee
2 answers
On-Premises Windows Active Directory migration to Azure
Hello, Can someone explain the scenario below and what is the best way to approach this? We have a strategy for moving On-Premises AD objects out of the regional OUs (Boston, Seattle, Detroit) and up to the corresponding top-level OUs. We need to…
asked 2020-02-05T21:55:54.9+00:00
Rehan Masood
1
Reputation point
commented 2020-02-07T05:22:52.38+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(278.4, 57.00000000000001%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESS%3C/text%3E%3C/svg%3E)
Shashi Shailaj
7,581
Reputation points Microsoft Employee
1 answer
Publishing Cloud Printer asking for MFA
I have set up a server as a Print Server which I connected to Azure using a connector to set up a cloud printing system for users on intune. I followed the below guide and it seems that the setup went smoothly until I got to the part to publish a…
asked 2020-01-31T08:27:57.15+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(233.6, 28.999999999999996%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERT%3C/text%3E%3C/svg%3E)
Ryan Theuma
1
Reputation point
answered 2020-02-07T04:24:31.307+00:00
FrankHu-MSFT
976
Reputation points
1 answer
Azure AD Multi Tenancy
I would like to setup a directory that enables us to have attach other directories under our one. A bit of a backstory to explain... We have a customer that has over 100+ tenants who wish to authenticate with our enrollment system for a 802.1X WiFi…
asked 2020-02-06T11:38:16.63+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(288, 90%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EWM%3C/text%3E%3C/svg%3E)
William Morrow
1
Reputation point
answered 2020-02-07T01:07:13.38+00:00
Marilee Turscak-MSFT
35,116
Reputation points Microsoft Employee
1 answer
Azure AD Connect
Hi All So we are migrating to SSO using AADConnect, my question is currently users have a O365 password and also there local domain one. If i hard match the user so the GUID in AD and Azure are the same, do i need to get the user to change the O365…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(272, 59%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EW%3C/text%3E%3C/svg%3E)
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(64, 57.00000000000001%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ES%3C/text%3E%3C/svg%3E)
1 answer
One of the answers was accepted by the question author.
Unable to delete Synced user form AAD
I haved removed ADconnect Server from Azure , but missed to delete AzureAdconnect related user account from AAD. Now when I try to remove I get Delete User Failed Error (PF). Please let me know ho do I delete this.
asked 2020-02-03T09:56:59.73+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(220.8, 4%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPK%3C/text%3E%3C/svg%3E)
Prajith Karumathil
41
Reputation points
commented 2020-02-06T10:58:47.7+00:00
Prajith Karumathil
41
Reputation points
2 answers
Securing Azure virtual server w/ Intune and CA
Hi I have a virtual server resource (Linux server) in Azure, is it possible to secure access to this Azure recourse using Intune's Conditional Access? We have M365B licenses. If this is not possible, is there any other way to secure Azure virtual…
asked 2020-02-04T10:13:22.723+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(19.2, 69%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EI%3C/text%3E%3C/svg%3E)
IMK
421
Reputation points
answered 2020-02-05T15:37:02.777+00:00
soumi-MSFT
11,746
Reputation points Microsoft Employee