Deactivating accounts automatically if their credentials are leaked
We recently moved to the Microsoft E5 license so receive email alerts if any user's Office 365 credentials are leaked on the dark web which are categorized as high risk. Can we set up a rule so that if we receive an alert that a user's credentials…
Does AD Connect sync account needs to have global admin in office 365?
Hi all, As title says Does AD Connect sync account needs to have global admin in office 365? I took over tenant from previous admin and I notice that account that is used in azure ad connect has global admin role assigned. Problem with this is that…
AZure AD Enterprise Applications API
Hi, Is there an API available that allows us to retrieve the applications available to the currently logged in user? We have a requirement to display the list of apps ( for the current user ) in a SharePoint site. There doesn't appear to be an endpoint…
GCC High / GCC / On-Premise
There are two questions Can we connect from on-premise AD to GCC High Azure AD Can Azure AD IDP Services established/deployed within GCC be utilized by Application services deployed within GCC high. What are our options if our services are in…
Unable to read the modified values from PATCH request from Portal Azure provisioning
Tutorial - Build a SCIM endpoint and configure user provisioning with Azure AD If I Created a User in Portal Azure it's creating a User in my Non-Gallery application, But if I have updated any fields then the Portal azure sending a Request like below…
Authorize with Key Vault in Powershell
Hey everyone I am trying to get an overview over our O365-Licences in PRTG. I was able to see all licences after running this script on a sensor in PRTG: https://github.com/debold/PRTG-O365Licensing The problem is that I had to run the skript…
Office 365 MFA in Outlook 2016 on RDS Server
I have enabled MFA in Office 365, now when a user opens Outlook 2016 on an RDS server, they need to re-enter their credentials when they connect to a new server. The issue starts happening after MFA is enabled in Office 365 for a particular user. The…
How to push bookmarks to Chrome through Endpoint Manager
Hi, I'm trying to set up Google Chrome bookmarks through Endpoint Manager (our organization is not hybrid, we're Azure only), and I've set up a device configuration profile in Endpoint Manager that looks like this: Name: Chrome – ADMX –…
PowerShell won't accept my Azure credentials
I'm trying to get rid of AD Connect settings in Azure. Support has given me this link +, however, PowerShell won't accept my credentials as provided in step 3. The credentials are correct, I've checked, and they work fine for logging in to Azure through…
Microsoft Identity - Seeking best practices/recommendations for roles, claims, and policies in ASP netcore web api
I am new to Microsoft Identity Platform and want to get an idea of best practices and guidelines on Roles, Claims, and Policies. I have watched the videos from Matthijs Hoekstra (MSFT Microsoft Identity Platform Team) and the 'ASP.NET Core Authorization…
Pulling attributes from Azure AD user accounts, custom
My user accounts are setup with on premise AD servers but sync to Azure AD. I need a custom application to query Azure AD to get some standard field like name, manager, etc. I also need to have it pull custom attributes from on prem OR custom…
In Azure AD, how to access an API registered as multi-tenant(Tenant-A) from another tenant (Tenant-B)
We have created API in Tenant-A and exposed a scope (api://tenant-A/app.read) ,we have created Web Application in Tenant-B. Now we are trying to register permissions of Tenant-A in Tenant-B web application. How can we request permission of Tenant-A in…
Is it possible for us to create an app on our azure and can be shared with others to use?
Hi All, We are trying to integrate Onedrive with a WebApplication. Intent is to get the content from Onedrive into WebApplication on any event. We are able to integrate and using the "APP Register" in Azure Active Directory and configuring…
POC on integrating shibboleth to Azure AD
Hi, We are trying to integrate Azure AD with our product via a configured reverse proxy installed in Linux Red Had 8. The web server is already installed with shibboleth plugin and we are trying to connect it to the demo environment of Azure AD under…
HTTP ERROR 502
Hi, When I try to run a normal flow in azure adb2c, I got the error 502. This morning it was working, but now it's failing on all our adb2c tenants. Is there a connection problem with ADB2C today? Kind regards, Kevin Tahon
SCIM provisioning initial cycle provisions only part of users
I use databricks app for scim tests. I created in Azure AD a group with 100K members. When I try to provision this group ( with it's members ) using SCIM, the initial cycle provisions only about half of the members ( ~60K) and not all of 100K. …
Is there any possibility to add multiple users to multiple groups using the Graph Api library methods or using HTTP requests in C#?
Just as the title says, I was wondering if I could use some methods from the Microsoft Graph API library to add multiple users to multiple groups (add members for shortly), or if I could make HTTP requests in c# to be able to add multiple users into…
After delete Azure Active directory user and resync. I lost access to multyple places in AzureDevOps
After delete Azure Active directory user and resync. I lost access to multyple places in AzureDevOps
Azure AD B2C: CORS issue with the metadata endpoint when trying to access from localhost
Hi, I have an application that was working correctly until yesterday. Today, all of sudden with no change done on my side, it started to fail trying to access the metadata endpoint (.well-known/openid-configuration) with CORS. It's not a matter of…
Duplication issue
Hi, we have an issue with some cmdlets if a user was synced with AAD Connect, removed from Azure (including RemoveFromRecycleBin) and synced again. Because of forced removing of the user, he had a new object id. That was expected as well as the…