Microsoft Entra (Azure AD)

I am trying to reproduce this configuration where links are added to the label of the “terms of use” attribute in the signup.   It seems I can’t add a…

Hi  Can someone please help...  I have configured AWS IAM Identity Centre  Enterprise Application, this works fine for internal users but I can not get external users working correctly as…

Hey guys, I have an interesting situation at a customer. He utilizes a third party MFA provider while being on a federation. That means new computers never will have a…

Can we retrieve deleted Security Group?

As part of a revised naming scheme for user accounts we're planning to roll out, I'd like to disallow Exchange Online email addresses and proxyAddresses from being used instead of…

Dear Microsoft, I would like to suggest the feature of Dynamic Groups to support the employeeType attribute.   As dynamic groups are used by features like Identity Governance Auto-Assignment policies…

Hi everyone,   we're facing an issue which we can't solve correctly: Scenario: Users are accessing M365 Content from Windows, iOS and Android Devices.Conditional Access is configured to block Logins…

Hey guys, we are just in the middle of an AD migration - OnPrem to OnPrem. The former M365 tenant stays the same, but for sure the migrated computer objects…

Setting up a new Entra Cloud sync agent for a customer who already has an established on-prem AD and Azure AD with a mess of non-synced accounts and passwords between…

Is it possible to access Dataverse and Microsoft Graph api by single token using AAD auth?

What are the phishing resistant MFA options for Entra ID B2B guest users who authenticate from an IDP that is not configured for inbound cross tenant trust?  From our testing,…

By Shobhit Sahay (ENTRA)   We’re excited to announce the general availability of Microsoft Entra Suite—one of the industry’s most comprehensive secure access solutions for the workforce. With 66% of digital attack…

By Jarred Boone   The Microsoft Security team is excited to connect with you next week at Authenticate 2024 Conference, taking place October 14 to 16 in Carlsbad, CA! With the rise…

The Microsoft Security team is excited to connect with you next week at Authenticate 2024 Conference, taking place October 14 to 16 in Carlsbad, CA! With the rise in identity…

We’re excited to announce the general availability of Microsoft Entra Suite—one of the industry’s most comprehensive secure access solutions for the workforce. With 66% of digital attack paths involving insecure…

We have 2 domains in our org, with these being added and verified in our Google Workspace and M365 tenants.   We've setup federation between our Entra ID (SP) and…

My client invited his hotmail account as a guest, deleted it on September 30 and can still send messages in Teams from hotmail to his colleagues work accounts. How is…

Hi everyone, I'm looking to create a Conditional Access policy in Azure AD that targets non-interactive sign-ins based on the user's location. Specifically, I want to restrict non-interactive logins if…

Right now when I reach out to "https://login.microsoftonline.com/{myAppId}/v2.0/.well-known/openid-configuration" I get the following options in my json:   "claims_supported": [ "sub", "iss", "cloud_instance_name", "cloud_instance_host_name", "cloud_graph_host_name", "msgraph_host", "aud", "exp", "iat", "auth_time", "acr",…

Hi, I am in charge of a school, having one tenant. The tenant includes both staff and students.   I have enabled Password reset (SSPR) for a selected security group…

I have seen a post on here with the same error but it didn't seem to help me so rather than hijack the thread I'd ask again. More specifically, I…

Hi All,   I would like to understand the limitations of having Idle session timeout policies for Enterprise applications in Entra ID. Although we do have Session based sign-in CAP…

if anyone could help me with compliance and configuration it would be greatly eciated

Hi All,   We are looking to add a second Azure AD Connect to our environment to have users synchronized to a new tenant(second tenant different domain). According to Microsoft…

Hello  we are CSP provider for a customer. In the past we create an azure plan and 3 subscriptions for him. After that customer has transferred other 6 subscriptions from…

Hello All,   Situation: Admins are being forced to authenticate with Smart Cards or Certificates, but we did not make this change. So now not only am I blocked from…

Hello, I have published an application with SAML SSO. from internal, it works fine. When I connect to https://myapp, all is ok.   I have set up an external Url  :…

We've noticed on 24' Sep. 9, Microsoft gave such heavy update. This update asks all dynamic group members to be equipped with Entra P1 to stay in the group. We…

The traditional network security models are becoming increasingly ineffective in a world where remote work and cloud services are the norm. Conventional technologies like VPNs, while popular, offer limited protection…

By Anupma Sharma   With the rise of hybrid work, identity and network security professionals are now at the forefront of protecting their organizations. Traditional network security tools fall short in…

By Kaitlin Murphy   This fall, we are bringing the Microsoft Entra Suite Showcase to cities worldwide. Join us to explore how our latest advancements in secure identity and access management…

I have a test environment where the Staging Mode server was not kept up to date with the Active Azure AD-Connect server.   When I export the configs on each and…

Yesterday in the middle of the day, the group writeback option for Azure AD (Entra ID) security groups and M365 groups was removed from the properties section for each group. …

Hello,   We have MFA enforced for all employees through Conditional access. Recently, we started enrolling our company laptops (Windows and Mac) to Intune and also setup 'Windows Hello for…

With the rise of hybrid work, identity and network security professionals are now at the forefront of protecting their organizations. Traditional network security tools fall short in meeting the integration,…

Hello   I am currently implementing Entra ID Domain Services with one customer (he has no on-premises active directory). We now face the issue that an Entra ID joined client…

Hello Team,   We are facing an issue with our on-premises Active Directory (AD) integrated with Active Directory Federation Services (AD FS). We have correctly configured Microsoft Entra hybrid join…

Hi   I had Entra Connect running for a long time without issues. Out of the blue Connect Sync started to report Duplicate Attribute on 3 users User Principal Name.   The…

I have developed few API and its using on behalf of user flow. We get the delegated access for respective users to perform action. But we have several background jobs…

By Ngoyal   n July, we announced the general availability of the Microsoft Entra Suite and Microsoft’s Security Service Edge (SSE) solution which includes Microsoft Entra Internet Access and Microsoft Entra Private Access.  …

Hi, Microsoft has updated the B2B sharing policy, so we now need to invite externals to our Azure AD before sharing files with them. Is there any way to create…

In July, we announced the general availability of the Microsoft Entra Suite and Microsoft’s Security Service Edge (SSE) solution which includes Microsoft Entra Internet Access and Microsoft Entra Private Access.…

Token lifetime limit issue We have a requirement to set token session limit to 3 months. Is there any way we can do it?On portal it's showing we can set…

Hello all,   I'm looking for information regarding Hybrid Join process because it is not clear for me, this is what I have:   Entra Connect syncs what I have…

Hi all, I have a customer asking the below questions on Entra access packages. I’ve asked some of our local experts, but I’d be grateful for any of the collective…

Hi,I have a client who would like to manage PIM eligibility and approval for role elevation for GDAP partner service techs. Essentially even though GDAP gives the Exchange administrator role…

Hi all,   Is there a documented list of built-in user attributes in Entra ID with data type and maximum length? If this information can be extracted using MS Graph…

I would like to use Entra External ID with Apple ID and also Microsoft (eg Hotmail). In Azure B2C, Apple ID integration was possible. But in Entra External ID only…

Hello, We are creating an app for our customers.  We have created an External ID Tenant for our customers to live in.  We have set everything up and things are…

All our devices are Intune joined. MFA turned on with a conditional access policy: Grant Access to: Require multifactor authentication;Session only configured Sign in frequency: x days. When majority users…