1,218 questions with Active Directory Federation Services tags
Can we change the access token lifetime in AD
Can we change the access token lifetime in AD?
Create custom CloudAP plugin to authenticate to windows machine which is entra Joined?
My domain is federated with custom inhouse IDP and when the user tries to login in the entra joined machine as IDP CloudAP authenticates the user right? Is it possible to create custom CloudAP Plugin so after user enters the password our idp can enforce…
Domain user getting: The sign-in method you’re trying to use isn’t allowed
Domain user getting: The sign-in method you’re trying to use isn’t allowed I'm troubleshooting a problem with a domain user who when trying to log in to his domain account gets the message "The login method you are trying to use is not…
Prompt for credentials when different user tries to login with Microsoft Single Sign On using SAML
We have a below mentioned requirement on our login screen. User enters emailId in our application and selects Microsoft to login with that email Id. User logs in to our platform with Microsoft SSO using SAML. User then logs out from our application,…
having an error reactivating Access to Azure Active Directory subscription
failed reactivate Access to Azure Active Directory subscription
When attempting to modify files within the Netlogon folder in Active Directory, I've encountered instances where files are use and cannot be change
Dear Experts, I'm seeking assistance with aspects of Active Directory (AD) management and troubleshooting. Specifically, I am encountering a error that the files are in use and cannot be change in the Netlogon folder. When attempting to modify files…
DNS Zone Locks and Propagation Delay in Active Directory
Dear Experts, I'm seeking assistance with aspects of Active Directory (AD) management and troubleshooting. Specifically, I am encountering a DNS zone lock and propagation delay issue within the Active Directory environment. When I trying to make changes…
Single Sign On to different O365 tenants
Hi everybody, I have the following situation: Single Active Directory domain (domain.local) 2 Office 365 tenants (domain1.com, domain2.com) 2 ADFS Servers one of them syncing users from one OU1 to domain1.com and handling SSO. Users have UPN…
How to connect to on-premises SharePoint using ADFS authentication in a .NET 8 application
Since OfficeDevPnP.Core is not supported in .NET 8, are there alternative libraries or approaches to connect to on-premises SharePoint using ADFS authentication in a .NET 8 application? Current Situation: Existing applications written in .NET Framework…
Configure federation between Google Workspace and Microsoft Entra ID error AADSTS51004
Hello, After follow the steps of this guide https://video2.skills-academy.com/en-us/education/windows/configure-aad-google-trust I'm testing the login. I am getting the redirect to google when try to sign in but after that I get this error: Request Id:…
how to copy the permission from on prem share folder to Azure storage bucket
Hello Team, We have huge share data at the on prem servers which we wanted to move on azure file share . at the same time when we are moving share data to azure file share, we want the same permission which are there on the on prem share folders. please…
ADFS 3.0 - CAPTCHA enable in ADFS sign - in page
As a VAPT Pointers , needs to enable CAPTCHA on ADFS SIgn - In page is it possible?
ADFS - OWA - ECP automatically signs out when loging from custom IdP
i have a problem. Im logging into adfs with Keycloak as an IdP, everything works well. Im redirected from Keycloak to ADFS and then im getting redirected to OWA the to the ECP with signout request. Token is sent to LS and /ls is redirecting to logoff…
ADFS - [Windows Hello - Certificate Provisioning Service]
Hello, I would like to configure ACL in ADFS to not keep anything in "Permin Everyone" but there is one App with name "Windows Hello - Certificate Provisioning Service" that I cant remove or even find. Could someone please describe…
New User not syncing from On Premise AD to Office O365
Our organization uses a hybrid cloud model. Just as it says in the title. I have a new user starting, I created the account in AD then sync to Office 365, but the user does not show up at all. There are no errors noted but I did see them listed at…
ADFS login failing for a specific user in .Net 4.5
I have an MVC application utilizing ADFS authentication. Authentication for a specific user has been failing over the past few weeks. The SAML response status is 200, indicating successful authentication from the server. Upon inspecting the SAML response…
SSO for IIS web server in Azure over Application Proxy
Hello, in Azure there is a VM on which an IIS server with Windows Authenticatiob (NTLM) authentication is installed. This server has membership in an on-prem domain, which is also a VM in Azure. Azure has an Application Proxy configured to publish to…
OWA ADFS connection
Hello, I have a problem related to OWA. I receive a SAML request from the keycloak, which is my IDP for ADFS. ADFS later sends a WS-Federation request to OWA. The page is redirected to the endpoint…
ManagedIdentityApplication.AcquireTokenForManagedIdentity("api://AzureADTokenExchange") giving error in local machine.
Hi, I am implementing the "Federated Identity Credential" along with User Managed identity in .net core 3.1 web api. Getting the error code: "managed_identity_unreachable_network" with error message "A socket operation was…
Getting Error in Saingle application (Darwnbox) 401 unauthorized access
Hi Team, We are getting error in Drwinbox application when user click on site , its working on SSO and when we check the Attribute editor in that proxy its showing incorrect email address. can we have any resolution on this.