How to access azure AD audit log programatically
Hi Experts,I am new to azure, I have requirement to get the notification when user profile properties (Phone number,Job Title etc) in Azure AD changes.I was going through the Azure AD audit log and i...
View ArticleI am owner still I can't create App registrations. It gives the error as...
I want to create a kubernetes cluster in the Azure. For that I want to create a service principle. I was not able to create one from the k8s cluster creation. Hence I went directly to Azure AD and...
View ArticleAAD Connect Soft-match
Hi,I was wondering if soft-matching has changed? Case: A customer has AAD Connect. He has a cloud only admin-account in AzureAD (Username like admin-user@domain.com). The account has a blank...
View ArticleAzure AD B2C on premises app
I can't find any reference to, or examples of, anyone using Azure AD B2C with an on premises web app. Is this possible?If it is possible can it be achieved with out using the [Azure AD App Proxy...
View ArticleNeed admin approval page in azure has options to login as admin account,...
"Need admin approval" page is shown when adminconsent url is logged in by user, which is fine. It has as options to login with admin account. 1. On clicking "Have an admin account? Sign in with that...
View ArticleGetting "403 Forbidden" from Azure AD Graph API trying to reset a user's...
We're trying to reset user password using Azure AD Graph API but receiving a "403 Forbidden" when we try to do the reset operation. The call fails in both the scenario where the user is signed-in with...
View ArticleUnable to Add VM created using Windows 10 Ent desktop preview Image
HiI have created a VM using Windows 10 Ent desktop preview Image. Settings and Accounts doesn't display "work/School" account and thus unable to add the machine to my Azure AD.
View ArticleB2C MFA options
I've seen that Azure AD B2C only supported MFA via SMS back in 2017. The docs say it integrates with Azure MFA. So does this mean it's now possible to use SMS, phone, and Authenticator app as MFA...
View ArticleNo refresh_token returned via OAuth 2.0 code grant flow
I am attempting an OAuth 2.0 code grant flow via electron native desktop client, using PKCE method to I am following the medium article titled: "Azure AD OAuth 2.0 Authorization Code Grant Flow in...
View ArticleCreating Dynamic Groups
Probably a simple question, but I'm somewhat confused.I have created 2 dynamic groups: Grp1 using user.city -contains "DEN" and Grp2 using user.city -match "Den". I have the following users with the...
View ArticleConditional Access, MFA
Hi Everyone,I've been struggling here a bit and there seems to be a big flaw in the Baseline Policy for MFA in the 365 portal.I have enabled the policy and now I can't run lots of the PowerShell...
View ArticleUser gets Different SID When Logging in to AAD Joined Machine
We use O365, and for the last year have a local AD server that is sync'ed to AAD via Azure AD Connect. All works as it should.We're doing a trial of AAD Premium, and decided to try joining local...
View ArticleSyncing existing on-prem AD Users with existing Microsoft O365 users
We have recently acquired a new organization that never had O365, but had an on-prem AD server. We have 1 tenant account in O365 for our existing organization and have added the domain names of the...
View ArticleCreate Custom Role to Access Review
Hi guys,I need to have access to Access Reviews module, but I can't have Administration role to do that.Is there a way to create a specific role just to access this module?Best regards,Ricardo Moreira
View ArticleForce all Azure AD B2C MFA to be phone call and never SMS
Is it possible to force all Azure AD B2C MFA to be phone calls and never SMS?
View ArticleIssues with Helpdesk (Password) Admin resetting passwords
It is my understanding that Helpdesk (password) admins can reset passwords for other users and other password admins; however, I am finding this doesn't always work. When trying to reset another...
View Article2 Active Directory Servers syncing to 1 tenant 0365 account
We have recently acquired a new organization that never had O365, but had an on-prem AD server. We have 1 tenant account in O365 for our existing organization and have added the domain names of the...
View ArticleIs it possible to sync 2 on-prem AD servers to a single tenant in O365
We have 2 Active directory servers for 2 separate domains, and one of the AD servers is currently syncing to our tenant account in O365. Is it possible to have them both sync to the same tenant account...
View ArticleAzure AD Identity Providers
I have been tinkering with the Azure AD API and it has been fairly simple to use via the MS documentation. The API calls are around user management, add/update/remove, in addition to granting users...
View ArticleCloud design patterns
Is there any uniformity when it comes to cloud architecture and design patterns across multiple cloud vendors/Platforms ( say Microsoft Azure, AWS and Google cloud)? As per Cloud Design patterns -...
View Article