Trusting Device Compliance Across B2B Tenants in Intune
Tenant A and Tenant B are B2B connected with device trust enabled, and there are devices registered in Intune for both tenants. The primary login on the devices is from their respective tenants, but users have accounts in both. Currently, when trying to…
Looking for query where we can get the following data from Azure Virtual Desktop under a particular host pool
Looking for query where we can get the following data from Azure Virtual Desktop under a particular host pool. Who has not logged in over the past 30 days For those who have logged in, how many days did they log in What is the amount of time users…
Unknown HTTP error while retrieving PRT token with smart-card logon
We are currently migrating our proprietary smart-card logon system to Entra ID in combination with Entra CBA. Our machines are (successfully) Hybrid Joined. We have the single sign-on system working for password-based logons on the PC. The user gets a…
What are the option for CI/CD Deployment of Entra Governance Lifecycle Workflows
I cannot find a way to automate the deployment or maintenance of the configurations for Entra Governance Lifecycle Workflows. This is essential for CI/CD between multiple environments; especially productions. The available Graph endpoints are superficial…
AAD B2C user Email authentication methods always disabled
It seems Email is always "Disabled by policy" and it's not possible to change the policy for B2C. Although it says "Non-usable" here, I tested and confirmed that email can be used to authenticate for MFA or password reset. Is the…
How to disable Windows Hello for Business PIN on AAD Joined laptop?
Good afternoon, We're looking to have AAD joined computers, however, I'd like to know how to disable Windows Hello for Business PIN logon for AAD. We do not currently use Intune but would still like to have our PCs AAD joined. Thank you!
My personal email address is tied to an ex- company work tenant and I cannot log into Azure as a result
Many years ago I worked for a company and I do not remember too many details, but it seems my personal email address got somehow tied it with my company email and associated with that company's Azure tenant. I have had a Microsoft personal account…
Issue with Acquiring Access Token silently in android with scope "Teams.ManageCalls"
Hello, I'm developing an Android (kotlin android compose) app using Azure Communication Services to enable calls from the app to Microsoft Teams users. To initiate these calls, I need a teamsAccessToken. I’ve set up MSAL to acquire the user’s access…
Azure Entra ID Groups written back (Distribution group & Mail Enabled Security group)
Dear Community We are currently using AD Connect to sync on-prem resources to Cloud we also want to implement group writeback from Azure AD to on-Prem AD, so we can use the Microsoft 365 groups (Security groups, Mail Enabled Distribution groups,…
Getting two MFA prompts when logging into Azure, but only one prompt in Authenticator App
Hi, I am unable to log into my Azure Subscription. I enabled MFA and now I am getting 2 consecutive MFA prompts when I try to log into Azure. I receive the first alert in my Authenticator phone app and enter the sign in prompt number, but I never…
Cant able to get all properties of user by using Graph API in C# ?
Code Line => User user = await graphClient.Users[userObjectId].Request().GetAsync().ConfigureAwait(false); I can able to fetch Green highlighted one but other than that getting null in "user1" (code line) object. question => Is…
Cant able to get all properties of user by using Graph API in C# ?
Code Line => User user = await graphClient.Users[userObjectId].Request().GetAsync().ConfigureAwait(false); I can able to fetch Green highlighted one but other than that getting null in "user1" (code line) object. question => Is…
IConfidentialClientApplication.AcquireTokenForClient returning request timeout exception sometimes
Hi, I'm doing a migration from AuthenticationContext.AcquireTokenAsync to IConfidentialClientApplication.AcquireTokenForClient, because we use the former method to get a token from Azure and access some KeyVault secrets, but recently it started to fail a…
How to migrate power page from ADAL to MSAL
We have a power page that uses azure b2c for authentication and authorization. We have identified that our Dynamics solution uses the Active Directory Authentication Library (known as ADAL), a code library for authentication and authorization against…
I have two application configured with FRONT CHANNEL LOGOUT but AzureB2C does not seem to be triggering Single Sign Out
I have two applications configured in AzureB2C A Web Application (ASP.NET Web Forms application) - APP 1 A SPA Application (Angular client side) - APP 2 For both applications I have enabled the front channel logout URL . When I login into APP 1 and…
I have a problem change password with user removed from synchronization
Good morning, I removed Entra ID Connect from synchronization to make some users cloud-only, but when changing the password at first login or manually changing it from error 12100 and from the logs you can see that it tries to write back the password,…
no_tokens_found: No refresh token found in the cache. Please sign-in.
Hi, I try to sign-in to Azure Portal, but I get error "no_tokens_found: No refresh token found in the cache. Please sign-in." and I can not access Portal. An Interaction required dialog is dislpayed but it keeps popping. Any Ideas how to…
Azure custom passwords
For the management of my users in Azure Microsoft Entra ID I need to set a series of characteristics to the passwords of my users: length, allowed characters, expiration, not being able to use x previous passwords, etc. where can I do this or how can I…
What is the significance of the 127.0.0.1 IP address in sign-in logs?
In my sign-in logs, I noticed the IP address 127.0.0.1. What is the meaning of this IP address, and why is it showing up in my logs?
What is the significance of the 127.0.0.1 IP address in sign-in logs?
In my sign-in logs, I noticed the IP address 127.0.0.1. What is the meaning of this IP address, and why is it showing up in my logs?