Microsoft Entra (Azure AD)

Hi Everyone   I would like to know if it possible to create a dynamic group based on user last login date and if they have an E1 license, I…

By Levent Besik   I'm thrilled to announce that Microsoft Entra External ID, our next-generation, developer-friendly customer identity access management (CIAM) solution will be generally available starting May 15th. Whether you're building applications for…

Hi I have a cloud-only Microsoft 365 Tenant, 40 devices all EntraID joined and I want to only allow users to access SharePoint Online from the EntraID devices and not…

Hello    Please i need your help on this issue.    When trying to run audits, results are not showing.   I would like to know how to audit public…

By Joseph Dadzie   Hi everyone,    I’m excited to announce the general availability of Microsoft Entra ID multi-tenant organization platform capabilities!    As your organization evolves, you may need to integrate multiple…

The Graph Activity logs are great and we are already exporting them to our Elastic SIEM for alerting and threat hunting, but the lack of display names in the logs…

Hello Team,   Since SAP IDM is going to retire, can Entra ID be a possible replacement for it ? In some blog post from SAP they recommend themselves to…

Hi everyone,   i was using https://github.com/AzureAD/AzureADAssessment for some time now to easy get a good list of all high privileged users and enterprise app. But it does not work anymore because…

My leadership is looking to roll out a new company policy that will forces shorter MFA duration times on specific users based on various criteria. Not looking for changes to…

We have apps in Azure and AWS. These cloud apps are IP restricted. Staff can only access these apps if they're working in the office or connected to the office…

Hi everyone,   I'm trying to get the app roles assigned to a certain group but I'm only able to get the ObjectId, ResourceDisplayName and PrincipalDisplayName and not the actual…

Hi,   I connected our on-premise AD with Entra ID with Azure AD Connect Cloud Sync. Agents are active, but User and group sync is quarantined with the following error.…

Hi All,   Is it a must to use conditional access when migrating MFA server to Entra ID? My cu would like to save costs for not buying Entra ID…

We have a number of extension attributes that we sync from our on-prem AD to Entra ID. One of these attributes is roomNumber, which is a multi-value attribute.   We…

By jmantu   Hello friends,      I’m pleased to announce General Availability (GA) of the Organizational Branding role for Microsoft Entra ID Company Branding.    This new role is part of…

I'm stuck - my local domain (on-premises Active Directory) has a different DNS name then my Tenant DNS name, how to set the Kerberos object server using the powershell command?

I have a personal Microsoft account as a guest account in my work Entra. This account has MFA enabled as a requirement to log in to Azure during the login…

By Shobhit Sahay   With more than 800,000 organizations depending on Microsoft Entra to navigate the constantly evolving identity and network access threat landscape, the need for increased transparency regarding product…

I'm thinking of scenarios that I've supported using MIM in the past where there is a primary HR system that would feed the user provisioning but there were also one…

How do I change the ownership of an Access Review when the Change Owner or the Properties options are not available. I've activated the PRIVILEGED ROLE ADMIN-PIM-NON-APPROVAL role, but these…

By Kristopher Bash   We’re excited to announce the general availability of Microsoft Graph activity logs! Microsoft Graph activity logs give you visibility into HTTP requests made to the Microsoft Graph service in…

Is there a Microsoft IAM/MDM assessment available? I found that there are on-demand assessments in Azure, but was needing one specifically for IAM and MDM.

I have security keys enrolled for the users on my organization. Now I want them to sign in to an app with delegated access. They are able to open the…

Setting up the scoping filters to use OU's (Save), no issues. When I go to enable the configuration, it shows "Object scope filters Al Users" not the OU filter. I…

Hi,   I would like to connect on-premise AD with Entra ID. Users exist in both. Some users' UPN are the same in the on-premise AD and in Entra, but…

Hello everyone,I would like to leverage the usage of Azure Monitor, and build a report across the estate with any and all  Enterprise Application and App registrations that have or…

Hi,   I'm having trouble accessing my RDS server via my proxy application.   Configuration: 1x Server in Windows 2022 with all roles installed (Broker, GTW, etc...)   I used…

helloguys

Hi,   I understand in Global Secure Access "365" I can use a Conditional Access Policy to block access to 365 if not from a "All Compliant Network locations" to…

Hello everyone,   I have a user who couldn't sign in to Teams, the issue was CAA50021, I've tried removing the device from Azure AD join and then rejoining the…

We are try to add Azure Application Proxy - wildcard application as when add then Add application segments gray out and not allow to click to add function Internal Url :…

We try add wildcard application as when add then Add application segments gray out and not allow to click to add function Internal Url : https://*.test.com External Url : https://*.test.com  

How can a user from Tenant A access their mailbox in Tenant B?   My current situation: I have set up B2B collaboration in Microsoft Entra External IDI invited a…

By Shobhit Sahay   Managing the myriad settings and resources within your tenant can be daunting. In an era of escalating security risks and an unprecedented global threat landscape, organizations seek…

I am trying to use API-driven provisioning to create new user accounts from my HR system. One of the fields that you should be able to map is the Manager…

By Kristopher Bash   In June 2023, we shared an update on the completion of a three-year notice period for the deprecation of the Azure Active Directory (Azure AD) Graph API service. This…

By Shobhit Sahay   With the ever-increasing sophistication of cyber-attacks, the increasing use of cloud-based services, and the proliferation of mobile devices, it’s essential that organizations secure access for both human…

By Kristopher Bash   In 2021, we described our plans to invest in Microsoft Graph PowerShell SDK as the PowerShell provider for Microsoft Entra and transition away from Azure AD and MSOnline PowerShell…

By nadimabdo   Microsoft Entra is not only the identity system for users; it’s also the identity and access management (IAM) system for Azure-based services, all internal infrastructure services at Microsoft,…

By Anupma Sharma   At our latest Microsoft Ignite event, we announced and demonstrated new capabilities within Microsoft Entra Internet Access, an identity-centric Secure Web Gateway (SWG) solution capable of converging all…

By Nichole Peterson (SHE/HER)   You’re probably familiar with Microsoft Entra documentation and What's new / Release notes for Entra ID. And perhaps you’ve also explored training for Microsoft Entra, Microsoft Certification for identity and…

Hi.   I'm trying to configure our Entra domain to federate to our existing IdP, following the guidance found here and am having real problems when it comes to using the Microsoft…

We're looking to rollout MFA for all our users, specifically just for any access to their Exchange Online and Microsoft Teams. I've followed the the instructions from Microsoft's Knowledge article: https://learn.microsoft.com/en-us/entra/identity/authentication/tutorial-enable-azure-mfa…

Increasing Secure Score Ensure multifactor authentication is enabled for all users. I wanted to enable this feature in my organization but faced this issue. Posting it if it helps someone.…

How can the externalUserState be accepted while both LastSignInDateTime and LastNonInteractiveSignInDateTime have no value? ExternalUserState LastSignInDateTime LastNonInteractiveSignInDateTime----------------- ------------------ --------------------------------AcceptedAcceptedAccepted             22/03/2024 11:15:11AcceptedAccepted           …

In a previous blog in the Data Exfiltration series, we discussed different types of tenant restrictions policy. In this blog, we’ll discuss migrating from tenant restrictions v1 to authentication plane tenant restrictions…

We have enrolled MFA for parts of our company (Guests, IT department, parts of the administration) so far and are slowly pushing forward. MFA is controlled by a Conditional Access…

As part of our Secure Future Initiative, we announced Microsoft-managed Conditional Access policies in November 2023. These policies are designed to help you secure your organization's resources and data based on your usage…

The introduction of cross-tenant access settings for Microsoft Entra External ID marked a pivotal shift in how organizations manage security and collaboration across different tenants. This blog post dives into…

Hi, We have a developer community who require the ability to perform app registration in an automated fashion but the IT group say there are objects in Entra ID which…