Please turn off App Lock by default for new users
My organisation are about to roll out MFA for all staff by default. The single most common issue reported by the pilot test group is that the App Lock is unnecessary and painful. Some users are unable to complete the process of unlocking the phone and…
I have a login problem
Request Id: 1ed706ba-cfdf-46ad-8356-7461c745a800 Correlation Id: ada99a50-31b3-4f66-8c71-fbe43405f8a8 Timestamp: 2020-11-13T05:35:28Z Message: AADSTS50105: The signed in user '<omitted>' is not assigned to a role for the application…
AADDS User Password expiry date passed 6 weeks ago but was able to continue logging in
Hi there. We have a client that use AADDS to sync their on-prem AD to Azure AD. They contacted us recently about a user that was able to continue logging into their various tools and applications but their password expiry date passed 6 weeks ago. It…
Azure AD B2C - Monitor failed and successful request
Is there a way by which we can monitor How many requests comes for signin, signup and how many of them respond successful and how many failed. If it is there any way then please suggest document so that We can try to apply that.
Invalid SoftMatch
We are syncing a security group. We have 15 members in this group. We have the synchronization errors for 2 users with the message "Invalid SoftMatch" Unable to update this object because the following attributes associated with this object…
Azure AD Connect: Synchronize online to on-prem
Hello, I have the following situation, I have an customer that already has office 365 and a new active directory on Prem will be setup. I already know that the AD connect only synchronizes on-way. …
Why is my sign-ins grayed out?
Hi, As of today, I cannot access sign-ins data. Why is that? Please help. -Glenn Murawski
Conditional Access in Azure Active Directory - Silent Refresh
I have a React-Redux application using redux-oidc in handling the authentication. In my UserManagerSettings on the redux-oidc config, I used an automaticSilentRenew: true config. Will this be affected by the retirement of the configurable token…
Update azure B2C custom attributes with Graph API C#.
Hi, Please help me on how can I update azure B2C custom attributes with Graph API C#. Regards Kripesh
Accounts in any Azure AD directory - B2B
Hi, While configuring the Azure B2B application, Will the option "Accounts in any Azure AD directory" be able to authenticate an organization having only on-premise setup (A guest user registering with his on-premise lotus or exchange mail…
SignIn Events Azure AD Graph API wrong next link. Wrong http usage
Hello, There is a bug in Azure AD Graph API (graph.windows.net). The endpoint for querying sign-in activities is "https://graph.windows.net/tenant/activities/signinEvents?api-version=beta". The next link for sign-in activities has…
Is it possible to delegate user management for an enterprise app to a regular user account?
I tried adding a staff member as an Owner of the application and sending them a direct link to the enterprise apps "Users and groups" page, but they get an error "You do not have access" "User has no admin roles. Current…
UPN claim is missing during authentication with a multi tenant app registration.
I am currently working on a C# webapp that is uses multi tenant authentication via UseCookieAuthentication to authenticate our webapp against Azure AD. The issue that I am encountering is that after authentication, the UPN claim is not populated in the…
I am trying to link my subscription on external identities but getting an error.
In Azure AD -> External Identities I am trying to link to my subscription but keep getting the error: Cannot create resource with location: 'United States'. Please use location: 'Europe' to create resource for b2c directory:…
How to disable email collection during Phone Sign up using custom policy
Hi everyone, I am trying to use B2C phone sign up authentication for my Mobile app (Android and iOS). I am able to get the tokens after the sign up by setting up custom policies as per the docs in …
Setup Microsoft CIAM IDP proxy
Hi, I am new to Microsoft AD CIAM. I wanted to understand how to achieve a phased migration from current Oracle IAM(IdP) to Microsoft AD CIAM. Phased migration means moving the existing Oracle integrated apps to the new Microsoft CIAM platform in a…
Over scanned 2 QR and it lost my Original QR affount
I scanned Qr and then added a new account online which scanned again, but I didn’t add the extra account through the authenticator app, so it over wrote the other account - how do I fix this as I can’t access mti club now
NPS wiht Azure AD for Office 365
Hi, I was wondering if the NPS extension would work with Azure AD for Office 365 the free Azure AD subscription. I do not need any special requirements just MFA no conditional access or something required. Kind regards, Frederik De Muyter.
AAD Group membership approval setting
Hello, Is there MS-graph API for changing the GROUP'S approval setting For eg., if you want to change it from "auto-approved" to "owner approval required" through graph API, can we do that so that next time when any end-user…
Trsust between two o365 AD.
Hi , I have two domain.I want to create trust between this two domain in O365 Azure Active Directory. It is possible and if yes then how? Please suggest me.