AAD B2C user Email authentication methods always disabled
It seems Email is always "Disabled by policy" and it's not possible to change the policy for B2C. Although it says "Non-usable" here, I tested and confirmed that email can be used to authenticate for MFA or password reset. Is the…
How to disable Windows Hello for Business PIN on AAD Joined laptop?
Good afternoon, We're looking to have AAD joined computers, however, I'd like to know how to disable Windows Hello for Business PIN logon for AAD. We do not currently use Intune but would still like to have our PCs AAD joined. Thank you!
My personal email address is tied to an ex- company work tenant and I cannot log into Azure as a result
Many years ago I worked for a company and I do not remember too many details, but it seems my personal email address got somehow tied it with my company email and associated with that company's Azure tenant. I have had a Microsoft personal account…
Issue with Acquiring Access Token silently in android with scope "Teams.ManageCalls"
Hello, I'm developing an Android (kotlin android compose) app using Azure Communication Services to enable calls from the app to Microsoft Teams users. To initiate these calls, I need a teamsAccessToken. I’ve set up MSAL to acquire the user’s access…
Azure Entra ID Groups written back (Distribution group & Mail Enabled Security group)
Dear Community We are currently using AD Connect to sync on-prem resources to Cloud we also want to implement group writeback from Azure AD to on-Prem AD, so we can use the Microsoft 365 groups (Security groups, Mail Enabled Distribution groups,…
Getting two MFA prompts when logging into Azure, but only one prompt in Authenticator App
Hi, I am unable to log into my Azure Subscription. I enabled MFA and now I am getting 2 consecutive MFA prompts when I try to log into Azure. I receive the first alert in my Authenticator phone app and enter the sign in prompt number, but I never…
Cant able to get all properties of user by using Graph API in C# ?
Code Line => User user = await graphClient.Users[userObjectId].Request().GetAsync().ConfigureAwait(false); I can able to fetch Green highlighted one but other than that getting null in "user1" (code line) object. question => Is…
IConfidentialClientApplication.AcquireTokenForClient returning request timeout exception sometimes
Hi, I'm doing a migration from AuthenticationContext.AcquireTokenAsync to IConfidentialClientApplication.AcquireTokenForClient, because we use the former method to get a token from Azure and access some KeyVault secrets, but recently it started to fail a…
I have two application configured with FRONT CHANNEL LOGOUT but AzureB2C does not seem to be triggering Single Sign Out
I have two applications configured in AzureB2C A Web Application (ASP.NET Web Forms application) - APP 1 A SPA Application (Angular client side) - APP 2 For both applications I have enabled the front channel logout URL . When I login into APP 1 and…
I have a problem change password with user removed from synchronization
Good morning, I removed Entra ID Connect from synchronization to make some users cloud-only, but when changing the password at first login or manually changing it from error 12100 and from the logs you can see that it tries to write back the password,…
no_tokens_found: No refresh token found in the cache. Please sign-in.
Hi, I try to sign-in to Azure Portal, but I get error "no_tokens_found: No refresh token found in the cache. Please sign-in." and I can not access Portal. An Interaction required dialog is dislpayed but it keeps popping. Any Ideas how to…
Azure custom passwords
For the management of my users in Azure Microsoft Entra ID I need to set a series of characteristics to the passwords of my users: length, allowed characters, expiration, not being able to use x previous passwords, etc. where can I do this or how can I…
What is the significance of the 127.0.0.1 IP address in sign-in logs?
In my sign-in logs, I noticed the IP address 127.0.0.1. What is the meaning of this IP address, and why is it showing up in my logs?
Employees having issues with 3rd party vendors Microsoft login page
Good evening! I am running into a brain buster. I am having an issue with some of our users where a 3rd party vendor has provided them with separate credentials to their Microsoft tenant. We have SSO and passthrough auth implemented which works great…
What is the difference between revoking a user session and revoking user MFA session in Entra ID
Hi, I'm trying to understand the difference between revoke sessions option in a user overview page and revoke mfa authentication sessions option under authentication methods. From testing, revoke sessions will sign a user out from all devices and require…
Trusting Device Compliance Across B2B Tenants in Intune
Tenant A and Tenant B are B2B connected with device trust enabled, and there are devices registered in Intune for both tenants. The primary login on the devices is from their respective tenants, but users have accounts in both. Currently, when trying to…
Azure App Proxy - Unable to add internal URL
Hi, I created an application in EntraID and configured app proxy details like Internal URL, connector group and then I deleted the app, later I restored the app and I see the Internal URL is missing from app proxy details in Enterprise application. When…
what is the actual regex pattern used in validation of Identifier (Entity ID) field in Basic SAML Configuration section in Microsoft azure ?
requirement : I have to write a code for validation of Entity ID through regex. problem : Cant able to identify how the textbox validation is handled because the textbox excepts "a" and also it accepts "//hello/world?" but not this…
MFA works with portal.azure.com but not entra.microsoft.com
When I use MFA for my admin account, it works with M365 and other places like portal.azure.com, but it doesn't work when I try to go to entra.microsoft.com. I get a message that says You didn't enter the expected verification code. Please Try again.…
I am not able to assign contributor permission to the new user
I am trying to assign a contributor permission for the new user created , for pay as you go subscription