Forum Widgets
Latest Discussions
Error in Manager data synchronization via SCIM
Hello! My name is Alex Moiseev, and I am experiencing an issue with user synchronization via SCIM with Azure Active Directory. Well, actually with manager synchronization. As far as I understand, the approach of provisioning of the user is the following. Step 1. Provisioner tries to get info about the user by id with GET User resource request. Step 2. Based on information received, Provisioner decides should the whole information about the user be sent or there is a need only to update certain fields. Step 3. Provisioner send POST or PUT/PATCH request with user details to create/update user on the receiver side. And everything works more or less ok, but the managers. In user data to provide there is one field, which is used for manager info: urn:ietf:params:scim:schemas:extension:enterprise:2.0:User:manager When there is no manager on consumer side assigned to the user, everything works perfectly. The provisioner sends manager info in both cases - with existing and with non-existing user. If the manager is changed on Azure AD side, we still receive manager data in the field mentioned in PATCH request in order to overwrite stored manager. But when the manager is removed on Azure AD side, we didn't receive any information about it - urn:ietf:params:scim:schemas:extension:enterprise:2.0:User:manager field doesn't exist in PATCH request. We thought, that may be because we didn't add manager information in GET User resource response. We tried to add manager information there according to the documentation (https://docs.microsoft.com/en-us/azure/active-directory/app-provisioning/use-scim-to-provision-users-and-groups) by adding "urn:ietf:params:scim:schemas:extension:enterprise:2.0:User": { "manager": "0" }, We use "0" in order to make the provisioner to send us information about the manager in each request. But we've got an error there: Error message We are not able to deserialize the resource received from your SCIM endpoint because your SCIM endpoint is not fully compatible with the Azure Active Directory SCIM client. Here is the resource we received from your SCIM endpoint: { "schemas”: [ "urn:ietf:params:scim:schemas:core:2.0:User", "urn:ietf:params:scim:schemas:extension:enterprise:2.0:User" ], "externalId": "Worker", "id": "1548197", "userName": "email address removed for privacy reasons", "name": { "familyName": "Ker", "givenName": "Wor" }, "emails": [ { "value": "email address removed for privacy reasons", "type": "work", "primary": true } ], "title": "Developer", "locale": "nl", "timezone": "CEST", "urn:ietf:params:scim:schemas:extension:enterprise:2.0:User": { "manager": "0" }, "active": true, "displayName": "Wor Ker" } Please refer to the Azure Active Directory SCIM provisioning documentation (https://docs.microsoft.com/en-us/azure/active-directory/app-provisioning/use-scim-to-provision-users-and-groups) and adapt the SCIM endpoint to be able to process provisioning requests from Azure Active Directory. We have reviewed the documentation referenced, and the format for specifying the manager is exactly as indicated in the documentation. If the "manager" field is removed from the data, the error does not occur. So, the questions are: 1. How should we provide manager information in the response of GET User resource call? 2. How should we catch the removing of the manager in Azure in a proper way? I would appreciate your assistance in resolving this issue. I'd like to know what is causing the error and how to correctly transmit manager information via SCIM. Thank you in advance for your attention and help! Yours sincerely, Alex MoiseevalexstrangeJan 20, 2025Copper Contributor321Views0likes1CommentCreate Azure Virtual Desktop for temporary private use for learning purposes?
Is possible to create Azure Virtual Desktop for temporary private use for learning purposes? My goal is to learn how to deploy one Virtual Machine with 3 users. I have already Azure subscription, Microsoft Entry ID, Network Which license would be the best choice for this project, eg. Mircosoft 365 E3? But on other hand, I don't need any Office applications for this project. My attentions is to follow this user guide. https://learn.microsoft.com/en-us/azure/virtual-desktop/deploy-azure-virtual-desktop?tabs=portal Does this make any sense to do for learning purposes?Ken_EkholmJan 19, 2025Copper Contributor198Views0likes1CommentRandomly 401 errors accessing AZ Devops artifacts
Hello! We are experiencing random 401 errors during maven download artifacts. The token is valid. It happens randomly. We're not sure whether there is something wrong on Azure Devops. Is anybody experiencing the same issue? Thanks!sacuccurulloJan 18, 2025Copper Contributor232Views0likes1CommentService Trust Portal no longer support Microsoft Account (MSA) access
Dear all, We need to access certain documents (i.e., SOC 2 or ISO 27xxx) on the Service Trust Portal. To download documents you need to be signed in first. However, when I click on "sign in" (using the same email/account as for our azure account) I get the error message "Service Trust Portal no longer support Microsoft Account (MSA) access." (see screenshot below). It seems that I am not the only one since other users had similar issues but they also could not find a solution (or at least it was not mentioned in their post): https://techcommunity.microsoft.com/t5/security-compliance-and-identity/cannot-login-to-service-trust-portal/m-p/3632978 I have been trying this now since more than a week and also created a support ticket (which has not been assigned to a support agent yet). It is quite cumbersome and I hope some of you could have an idea since getting these documents is quite crucial for us.konstantinrinkJan 17, 2025Copper Contributor1.7KViews0likes5CommentsAzure certification practice tool legality
To help with studying, I’ve created a web app that uses Azure AI to generate practice questions for Azure certifications. So far, I’ve only used it for my own preparation, but some of my colleagues have shown interest and would like to use the tool as well. I’m considering releasing it to the public, but I’m concerned about potential legal issues. To the best of my knowledge, this doesn’t violate Microsoft’s exam Terms of Use since their policies prohibit sharing, publishing, or distributing official exam content. The questions in my app are original content generated by an LLM, not copied from any official material. Can anyone provide insights on whether releasing such a tool would be legally okay? Id appreciate any guidance!barthemJan 17, 2025Copper Contributor11Views0likes1CommentRunning self hosted agent in interactive mode on on-prem server
I have a scenario, Where I have some UFT Developer Automation Tests cases that carry UI automation of Facets Application. I have them running on TFS release pipelines but the test cases are failing because the agent is not able to find the Facets window as it is running as a service and we need to configure the ADO agent to run in interactive mode for UI test. Instead of manually logging in to the server and trigger the agent to run in interactive how can we automate that because i need 50 agents to run in the interactive modejayendharreddy24Jan 17, 2025Copper Contributor138Views0likes1CommentAnnouncing the winners of the December 2024 Innovation Challenge
The Innovation Challenge hackathon brings together developers from groups who are underrepresented in technology to solve for AI use cases from Azure customers. We’re proud to be supporting these organizations who helped to prepare the participants of our most recent hackathon: BITE-CON, Código Facilito, DIO, GenSpark, Microsoft Software and Systems Academy (MSSA), TechBridge, and Women in Cloud. In order to qualify for the hackathon, participants had to earn a Microsoft Applied Skills credential or one of these Azure certifications: Azure AI Engineer Associate,Azure Developer Associate,Azure Data Science Associate. Our goal for everyone who participates is to help them open up doors to new career opportunities by demonstrating highly in demand skills and the ability to work with a team to deliver a working proof of concept under a deadline. The winning projects worked to solve for a range of real world AI challenges. Observability for AI systems: ensure that systems operate effectively, ethically, and reliably by identifying issues like model drift, bias, performance degradation, and data quality problems. VoiceRAG: how do you implement retrieval-augmented generation (RAG), the prevailing pattern for combining language models with your own data, in a system that uses audio for input and output? Accessibility for state and local government websites: How can AI be used to ensure that both web content and documents that can be downloaded meet the Web Content Accessibility Guidelines (WCAG) international standard? Hallucination detection and context validation: How could output automatically cross-reference with a reliable knowledge base or API? How do you provide confidence scores and explanations for detected hallucinations? Role-Based content filtering for AI outputs: create an AI output moderation system that filters or adjusts generated content based on user roles and access levels to prevent misuse or exposure of restricted data. AI search innovation: our industry has only just begun to get started combining AI search with RAG. What can you build that demonstrates the possibilities for improving the ways we interact with information online? There were many very strong projects and the judges had to make some hard decisions. We’re sure that every team that submitted a project will be doing epic stuff in the near future! Here are the projects awarded by the judges First place $10,000 Azure Insight Lens: Model Monitoring and Observability a comprehensive AI model monitoring and observability solution, designed to enhance model performance and optimize efficiency Second $5,000 Edu Echo a voice-first education platform designed to help 4th, 5th, and 6th grade students excel in math and language arts AbleSphere an AI-powered educational support application that empowers students with disabilities by providing real-time, personalized assistance Third $2,500 FAITH : Framework for AI Integrity and Testing Hallucinations an Azure AI based web application used to find hallucinations and ensure integrity among various AI models and LLMs along with confidence scores, complete reasoning, detailed analytics and visualizations by comparing with external knowledge sources Content-o enables organizations, whether in the financial, health, or service sectors, to offer their employees, associates, and third parties a point of access to receive information aligned and adjusted to their roles AI Search for Agricultural Planning and Control an AI-powered assistant tailored to the Brazilian agricultural sector, adhering to local legislation We’ll have our next hackathon in March 2025! Looking forward to getting inspired by what this community can do!macaldeJan 16, 2025Microsoft552Views2likes0CommentsList eligible roles with PowerShell
Hi guys, does someone knows or has a script (or other thing like CLI commands or others) to List all eligible roles in Azure. And, finally, list these eligible roles from a specific user to be able to assign them to another user that must have the same profile with same rights? Thanks in advance.Olivier_LumeauJan 16, 2025Brass Contributor10Views0likes3CommentsApplication Gateway WAFv2 Custom Rules disappeared.
Hello All, We have a AGW with WAFv2 running. A while back we were working on adding new custom rules, but after saving the new rule, all of our existing WAF custom rules were deleted. Checking with Azure support, we came to know that the delete operation also works as a PUT operation for updating and/or deleting details. But we couldn't get a clear picture on what caused our rules to be deleted instead of adding the new rule. We are still in the process of exploring options to understand what could have caused this anomaly. Have any of you faced any such scenario(s)? Any insights or suggestions are welcome and much appreciated.Anusha_617Jan 16, 2025Copper Contributor44Views1like4Comments
Resources
Tags
- azure2,220 Topics
- Azure DevOps1,384 Topics
- Data & Storage379 Topics
- Networking224 Topics
- Azure Friday220 Topics
- App Services196 Topics
- blockchain168 Topics
- devops150 Topics
- Security & Compliance138 Topics
- Analytics130 Topics