Recent Discussions
Entra ID logins to Azure VMs.
Hello everyone. I've posted a much longer, more detailed question about this on the Azure support forums, but I'm trying to get more people to look at this. Basically, I'm trying to set up Entra accounts that can log into an Azure-based Windows VM, using the instructions Microsoft have put here: https://learn.microsoft.com/en-us/entra/identity/devices/howto-vm-sign-in-azure-ad-windows I've treated the Microsoft instructions as a checklist, in order to be as precise as possible. My own notes and records from 2024 seem to indicate I built a similar system then, following the same instructions. I was surprised that it didn't work as easily this time. Does anyone know of changes that were made to Entra ID since 2024 (or 9 months ago, when most of the newest YouTube tutorials were made) to make it much harder to use? In addition to Microsoft's instructions, I have also experimented with alternative configurations (a lot of them) detailed on YouTube, none of which worked. My VM (and Entra itself) both seem to indicate that my Entra accounts are valid, and that the VMs are correctly joined to Entra. I am still able to log into the VMs with local accounts, so the VMs are correctly connected to Azure. I've tried both with and without a Bastion, with the same results. Local accounts work, but Entra doesn't. I've so far been unable to log the Entra accounts in at all, as the passwords (all of them valid, and double-checked) have been rejected. I think if I could find one method of using the Entra accounts which worked, I would settle on it, but so far I haven't found a single configuration that works. Does anyone have a theory of what's blocking me? I do have more test data, but I don't want to flood this post. Thanks.14Views0likes2CommentsLooking for guidance on designing an Azure data analytics pipeline for reporting
I’m working on modernizing an old reporting workflow that currently runs on a few on-premises databases and scheduled scripts. The current process collects operational data from multiple systems, performs some basic transformation and aggregation, and then generates reports for different business teams. As the data volume is growing, the existing setup is becoming difficult to maintain and slow to refresh. I’m looking for an Azure-based architecture that can ingest data from different sources, store both raw and processed data, run scheduled transformations, and make the final datasets available for reporting tools like Power BI. Would appreciate any suggestions on the recommended architecture, especially around data storage, transformation, refresh performance, and cost control. Thanks4Views0likes0CommentsCI/CD pipeline for microservice.
Hi All, We are new to Azure DevOps and start managing our project and planning to have CI/CD pipeline from our microservice. We are planning to have the below flow for each service: 1. Whenever the main branch is updated, run the Azure Pipeline (Build/Test/Review) 2. If Build succeeded, decide whether to deploy the changes on UAT by running the UAT Release pipeline manually. 3. Test on UAT. If everything works fine then ready to deploy on Production. 4. Create a release tag for the particular commit for which we created the build and tested it on UAT. 5. Run the Production Release pipeline manually to deploy the release on Production env. Is our flow correct? Please give us suggestions. We also have some questions: 1. Do we create branches for Releases or use tags? And when to create it, before deploying to UAT or after deploying on UAT? (Note: we are not sure whether we will deploy the changes to production immediately after deployment and testing on UAT, there may be a possibility that we will add some more features to the on UAT and then deploy on Production). 2. Should we create and push Docker Image in the Azure pipeline or Release pipeline? And how many image tags should we create? (say one with the release tag and one with the latest tag). Thanks Saurabh1.2KViews0likes1Commentazure devops work item duplicates when inserting csv
I am moving from one ADO Board to another. So I have downloaded the CSV from the old board via queries and tried uploading. For all items which arent 'New' I have to manually edit which I have accepted will be a manual effort. The main problem is for every workitem which is 'new' and doesn't have an error duplicates itself. This is the same case for all 'new' work items. Sometimes it can be duplicated 8 times. How do I stop the duplicates936Views0likes1CommentThe default azure-pipelines.yml is broken
Create a new project. Create an azure repo and clone it with ssh. Run go mod init and create a main.go file in the cloned repo. Commit and push the changes. Create a pipeline using your repo. An azure-pipelines.yml is created as shown below. Run the new pipeline. It gives the error below. My go.mod has go 1.19 and if I change the .yml to 1.19 it gives the same error with /usr/local/go1.19. How do I fix this, and where do I file a bug against the Pipeline default .yml file? 2022-11-01T03:06:15.6247802Z [command]/usr/bin/bash --noprofile --norc /home/vsts/work/_temp/d62a4714-ede5-408d-9b1f-efbae06e65a3.sh 2022-11-01T03:06:15.6248305Z go: cannot find GOROOT directory: /usr/local/go1.11 2022-11-01T03:06:15.6248734Z go: cannot find GOROOT directory: /usr/local/go1.11 2022-11-01T03:06:15.6249112Z go: cannot find GOROOT directory: /usr/local/go1.11 2022-11-01T03:06:15.6282871Z ##[error]Bash exited with code '2'. Here is the .yml: # Go # Build your Go project. # Add steps that test, save build artifacts, deploy, and more: # https://docs.microsoft.com/azure/devops/pipelines/languages/go trigger: - master pool: vmImage: ubuntu-latest variables: GOBIN: '$(GOPATH)/bin' # Go binaries path GOROOT: '/usr/local/go1.11' # Go installation path GOPATH: '$(system.defaultWorkingDirectory)/gopath' # Go workspace path modulePath: '$(GOPATH)/src/github.com/$(build.repository.name)' # Path to the module's code steps: - script: | mkdir -p '$(GOBIN)' mkdir -p '$(GOPATH)/pkg' mkdir -p '$(modulePath)' shopt -s extglob shopt -s dotglob mv !(gopath) '$(modulePath)' echo '##vso[task.prependpath]$(GOBIN)' echo '##vso[task.prependpath]$(GOROOT)/bin' displayName: 'Set up the Go workspace' - script: | go version go get -v -t -d ./... if [ -f Gopkg.toml ]; then curl https://raw.githubusercontent.com/golang/dep/master/install.sh | sh dep ensure fi go build -v . workingDirectory: '$(modulePath)' displayName: 'Get dependencies, then build'1.6KViews0likes1CommentPrint Spooler on AVD hosts doesn't start when booted up
This just came about today, any host that was turned on via Nerdio the print spooler was off. All these hosts were provisioned on Oct. 7 and haven't had this issue until today. Azure issue? AVD issue? We've changed nothing configuration wise that would cause this, no new patches either. These are 16vCPU boxes, with 64GB of RAM, again only happened today and we've been running this image since Oct 7th without issue and AVD since July in prod. Print Nightmare patches are installed.817Views0likes1CommentAzure App Service Environments Internal and External access
I am looking to deploy a internal Intranet site and an external internet site and i would like to try and use Azure Web Apps to do this. The intranet should only be accessible from internal networks however the public facing website will obviously need to be accessible from anywhere. At the moment it is looking like i would need to deploy an App Service Environment and host the intranet site in there but it would be nice if i could then create a separate app and host that from within the same ASE. I suspect i could do it if i put a web application gateway on the network with a public IP but i want to try and avoid that as it is additional management and overhead. How have others done this? Do you just host Web Apps using multiple app service plans?2.7KViews0likes1CommentTrying to get list of commits using ADO API from specific tag ("Release ..."), not seeing the option
Trying to get list of all commits for a GIT repo in ADO from a specific tag (Release ...), not seeing the option in Management API https://learn.microsoft.com/en-us/rest/api/azure/devops/git/commits/get-commits?view=azure-devops-rest-7.0&tabs=HTTP1KViews0likes1CommentVisual Studio Sign In Issues (Restricted IE)
Hi, Does anyone know how to get around the VS sign in issue when your organisation restrict the use of Internet Explorer for external sites? I get a blank screen as connection is blocked. Changing the default brower in VS doesnt seem to effect the sign page either. Thanks1.1KViews0likes1CommentWhich Azure service do you find yourself using the most, and why?
Whether it's Virtual Machines, Storage Accounts, App Services, Azure SQL, Key Vault, Azure Monitor, or something else, I'm curious to know which service has become essential in your day-to-day work. Share your experience, tips, or lessons learned.15Views0likes1CommentDevOps Wiki: How to enable download of attachment
Hello, I do have a git based wiki in ADO with the following structure: | ---- REAGME.md | ---- .attachments | ---- config.xml Within README.md I want to reference config.xml in a way that: 1. enforces the file to be downloaded and not opened 2. ensures a meaningful file name proposal for the download For "common" markdown this would be something like: ... [Config](./.attachments/config.xml?download=true&name=config.xml) ... unfortunately ADO performs some URL-encoding to this relative link and tries to find a file named: - ./attachments/config.xml%3Fdownload%3Dtrue%26name%3Dconfig.xml This file cannot be found (why should it, such a file does not exist) My questions are: 1. How to properly format the relative link in ADO markdown to make the attachment downloadable 2. How to properly format the relative link in ADO markdown to define the attachments name Exclusion: - The answer "Use an absolute link like https://..../" is not an option as no-one will ever be able to maintain this across multiple branches Thank you in advance 😉3.7KViews0likes6Commentsretreiving security form d365 CE ?
Hi ! I wondered if someone found a way to retrieve the Row security level of D365 (both CE and F&O) in the data lake export. I don't see how to manage that. security in D365 CE (aka dataverse) is prety complex. Any record belong to one user, one Business unit and one Team. moreover it can be shared with other users. how can I be sure to get this security in my powerbi reports based on the export to data lake ? Finops seems a little bit easier as thez security is based on the legal entity the user belong to. Any welp would be greatly appreciated.695Views0likes1CommentLooking for guidance on transferring my Learning Room (Azure Integration + AI)
Hi everyone, I’m Konstantinos, the host of the Learning Room Modern Development with Azure Integration and AI in the Microsoft Learn Skills Hub. With the Learn Expert program being retired, all Learning Rooms will close at the end of June. I’m hoping to keep our room alive by transferring it into an existing Tech Community space — but this can only happen if a community owner approves the move. 🔗 Learning Room: https://techcommunity.microsoft.com/group/a16aab22-66d5-4fc2-8539-b6a382916bda Focus: Hands‑on Azure integration patterns, modern development practices, and applied AI — supporting learners building real‑world solutions. If you are a community owner, moderator, or know who manages a relevant Azure space (Apps on Azure, Azure Architecture, Azure AI, Integration, Developer Tools, etc.), I’d be grateful for any guidance or introductions. Even a quick pointer to the right contact would help. The Tech Community team will handle the transfer if approved — I just need confirmation from the destination owner. Thank you to anyone who can help steer this in the right direction. I’d love to continue supporting learners within the Azure community. Konstantinos40Views0likes1CommentPortable Azure topology and documentation snapshots with OSIRIS JSON
Ciao everyone, I’m working on https://github.com/osirisjson/osiris, a vendor-neutral specification for describing infrastructure resources and their relationships as portable point-in-time snapshots. To proof that the specification could work in real-scenarios I already built an initial https://osirisjson.org/en/docs/producers/hyperscalers/microsoft-azure in Go. You run on-premise and it connects through the Azure CLI, reads Azure subscriptions and emits an OSIRIS JSON document that can be used for documentation, topology diagrams, audits, configuration drift analysis, CMDB/IPAM/DCIM workflows, or controlled AI/context workflows without giving those platforms/tools direct access to Azure. The producer currently covers several Azure areas, including networking, compute, storage, identity, databases, containers, integration, observability, backup, automation, management groups, and cross-resource dependency edges such as Private Endpoint to PaaS targets, App Service to Application Insights / Log Analytics, AKS to subnets and node pools, and backup vault relationships. It supports two output purposes: documentation: minimal high-level projection for diagrams, inventory dashboards, and architectural documentation audit: deeper projection with readable properties and extensions after sensitive-field redaction This is not intended to replace Azure tooling, Azure Resource Graph, IaC, Azure Policy, or any existing governance/control-plane workflow. OSIRIS JSON is simply a read-only external producer that generates a vendor-neutral snapshot of the observed Azure environment. I would really appreciate feedback from Azure architects, cloud engineers, and governance practitioners on the mapping model: Which Azure resources and relationships are the most important for documentation and topology generation? Are the current connection types useful for real-world architecture views? What should be prioritized in next releases? Would a documentation/audit split be useful in enterprise environments? You find the current Azure producer documentation here: https://osirisjson.org/en/docs/producers/hyperscalers/microsoft-azure I would really appreciate any feedback, suggestions, edge cases, or ideas from people who operate, document, audit, or govern Azure environments and I also welcome anyone who want to participate on development. Ciao from Italy, Tia37Views0likes1CommentCannot access my account after code from Authenticator App does not work after I change my mobile
Dear all, I have been trying to access Microsoft Support, the problem is I cannot login because of code cannot verified from my Authenticator App after I change my mobile. I am asking if there is a way for me to contact a real huan support in Microsoft because right now, the call, the support chat is all control by AI, and the cannot answer my request to disable my Authenticator App. I have nowhere to turn as I cannot find any answer to this problem in web, and their move to change all support into AI ether from call or chat make it worse183Views0likes3CommentsHow do I send Azure APIM product subscription approval to different email adresses
I am trying to identify if we have a Azure APIM instance shared between different teams then how can I send approval emails to different email addresses for different APIs/Products. I need to send approval emails for each product to the respective team's approver. How can this be achieved because by default APIM instance will send the approval to the APIM administrator's email address.135Views0likes3CommentsFPGA vs ASIC for AI at the Edge: What factors influence your hardware choice?
As AI continues to move closer to edge devices, choosing the right hardware platform has become an important design decision. While both FPGAs and ASICs have their strengths, the best choice often depends on the application's requirements. Here are some of the key factors that engineering teams typically evaluate: Performance and latency requirements Power efficiency Development cost and NRE Time-to-market Production volume Need for future hardware updates FPGAs offer flexibility for rapid prototyping and evolving workloads, making them well-suited for early-stage development. ASICs, on the other hand, can provide significant advantages in performance, power consumption, and cost efficiency for high-volume production. I recently came across a technical article that explains these trade-offs in a structured way and found it useful as a reference: https://www.signoffsemiconductors.com/asic-vs-fpga/ I'd be interested to hear how others approach this decision. Have you migrated a design from FPGA to ASIC? What factors influenced your choice? Are there workloads where you would always choose one over the other?15Views0likes1CommentRegistering an application return quota limit error.
I have a brand new Microsoft 365 Business Premium tenant with approximately 490 users and 137 service principals. I am a Global Admin with a Business Premium license assigned. I have verified a custom domain. The "Users can register applications" setting is enabled. When attempting to register an application I receive: "The directory object quota limit for the Principal has been exceeded." I ran the following PowerShell to check the tenant quota: Connect-MgGraph -Scopes "Organization.Read.All" $org = Get-MgOrganization $org.AdditionalProperties["directorySizeQuota"] The total value returned is 500. This appears to be a provisioning issue where the tenant's directorySizeQuota has not been updated to the standard 300,000 object limit despite having a verified domain and Business Premium licensing. M365 support directed me to Azure support, and Azure support only allows billing tickets without a paid support plan. Paid support plan options do not populate and the portal goes non-responsive. Hoping someone here can advise or escalate.134Views0likes3Comments
Events
Move AI agents from experimentation to production with trusted architecture, governance, and operations. Many organizations have made progress with AI prototypes, but struggle to turn early success i...
Monday, Jul 27, 2026, 08:00 AM PDTOnline
0likes
88Attendees
0Comments
Recent Blogs
- We've entered an era where AI agents autonomously invoke tools — reading and writing files, calling APIs, querying databases. Convenient as this is, without a mechanism to control who can call what, ...Jul 02, 202624Views1like0Comments
- Dynamic thresholds are extended to query-based metric alerts in Azure Monitor, allowing to detect and alert on anomalies in Azure Monitor managed Prometheus metrics and OpenTelemetry metrics stored i...Jul 02, 202619Views0likes0Comments