Forum Widgets
Latest Discussions
Unable to connect Azure Desktop
Yesterday I installed OPENVPN and configured it to run without user interruption, after restarting the machine unable to connect azure desktop. Under the host pool all health showing good except. UrlsAccessibleCheck Failed This health check verifies that the required AVD service and Geneva URLs are reachable from the session host, including the RdTokenUri, RdBrokerUri, RdDiagnosticsUri, and storage blob URLs for Geneva agent monitoring. If this check fails, it may be fatal. To resolve this, you'll need to reconfigure your networking, firewall, or proxy settings to unblock the following inaccessible URLs: 607547e3-415a-4da6-bfcd-719dc9d86871.rdbroker-g-us-r1.wvd.microsoft.com 607547e3-415a-4da6-bfcd-719dc9d86871.rdbroker.wvd.microsoft.com 607547e3-415a-4da6-bfcd-719dc9d86871.rddiagnostics-g-us-r1.wvd.microsoft.comaniliriFeb 10, 2025Copper Contributor16Views0likes0CommentsEntra: Lock screen help.
Hi guys, I need some assistance with entra regarding the lockscreen images. We had a previous lock screen which displayed the company logo and users were not allowed to change the lock screen, we needed it to be disabled and I deleted the script as well as the policy for the lock screen to try and remove it. However this hasn't worked, the lock screen is still displaying on all devices, and users cannot change the lockscreen. I do not want to perform a reset, because we have so many machines. Any advice on how to enable the users to edit the lock screen again or load a new policy, will be highly appreciated. What I have tried: Removing registry key for lock screen. (Key just pops up after restart) Loading a new script (Fails to load, no reason given, I suspect because it conflicts with old one) Disconnecting from entra and trying to edit the lock screen. Thanks.Ziyaad_007Feb 10, 2025Occasional Reader4Views0likes0CommentsAccess Denied Due to Deny Assignment
I am encountering an issue with a deny assignment that is blocking my access to perform actions on my Azure resources. Despite having the Owner role for my subscription, I receive the error "DenyAssignmentAuthorizationFailed" when trying to manage resources. The error message indicates that a deny assignment with the name '[UnusualActivity] Full Deny assignment on dbd6664d-4eb9-46eb-99d8-5c43ba153c61 for user 00000000-0000-0000-0000-000000000000 at root added' is preventing access. I have tried removing the deny assignment using Azure CLI and PowerShell, but I receive a "Forbidden" status code. Additionally, I have verified that I do not have any managed applications. Any assistance in resolving this issue would be greatly appreciated.amine_moussa2000Feb 10, 2025Occasional Reader9Views0likes0CommentsAzure Databricks - SQL query - Configuration not available
I spun up a FINO's Legend Studio instance locally, and I was able to establish a connectivity between the application and my Azure Databricks resource. However, when I run a SQL query from Legend Studio, which is supposed to execute on Databricks, I get a "Configuration legend_databricks_http_path is not available" error from Databricks: By going to the "Query History" on Azure Databricks, I can confirm Legend Studio is reaching Databricks, but this is responding with the error mentioned above. The "See error" button doesn't provide any additional error details. Is anyone familiar with the "Configuration is not available" type of error in Azure Databricks SQL queries?damiangelisFeb 08, 2025Copper Contributor18Views0likes1CommentWhy Microsoft Azure Certification Matters for Cloud Careers
In today’s rapidly growing IT landscape, cloud computing is a critical skill for most organizations. Microsoft Azure certifications are designed to equip professionals with the knowledge and expertise required to thrive in this domain. By pursuing Microsoft Azure Certifications, you gain hands-on skills with various cloud-based services and demonstrate your abilities to potential employers, making you stand out in the competitive job market. Whether you are a beginner exploring the fundamentals or an experienced professional seeking career growth, Azure certifications can open doors to better job opportunities and help you advance in your current role. These certifications are recognized worldwide and are a solid step toward staying relevant in the ever-evolving cloud computing industry.breewickFeb 07, 2025Copper Contributor44Views0likes1Commentazvpn->expressroute->on-prem
Hi, I'm using azvnp to vpn to azure. I have an expressroute directly connected to my on-prem out of azure. bgp is used to route and is working for the other vnet in azure however, i don't see my network within that bgp routing. I want to hop through expressroute to my on-prem via the azvpn I'm using for management purpose. Is this even possible? I apricate some helpStefanMooreFeb 07, 2025Copper Contributor15Views0likes1CommentHow to Achieve Coupe of functionalities in Azure Data Factory Dyanmically.
Hi Team. I have below scenarios as part of my business requirement. These requirements has to achieved dyanmically using Azure Data Factory Data Flows or Pipelines. Note : Requirement is not to using Function Apps, DataBricks or any other API calls. I have a blob storage which holds the CSV files with varying headers(I mean the headers and content inside it will change all the time) in it all the time. I want to move these CSV files to Parquet file by performing couple of validations, which are as mentioned below. Need to loop through each file from source blob folder. Need to get the count of rows inside the file dynamically. Use the count as conditional logic to continue to next step. In next step i need to validate the CSV data to find any invalid rows. For Example, i'm using the comma(,) as column delimitor in my dataset. So if any string which is not enclosed in double-quotes("") and has a comma(,) with in it, will be treated as new column without any header column name. These type of column names should be treated as invalid rows and should be moved to another blob storage folder as a ".CSV" For example the source CSV file may look like this. TestColumn1,TestColumn2,TestColumn3 BUDGETS,-1431654712,jgdsgfj,sdfds BUDGETS,-1431654712, BUDGETS,-1431654712,AjayGopuFeb 06, 2025Copper Contributor161Views0likes2CommentsAzure B2B External Identity Provider Claims Mapping
I'm setting up federation to multiple external identity providers for my Azure ASP.NET Core App (App Service with Enterprise App/App Registration setup) in my Azure Tenant. I have external clients, some will have Microsoft Entra and some have custom IdPs where I'll setup SAML/WS-Fed External IdP on my tenant. This documentation is pretty clear how to federate/trust. I'm having trouble understanding or finding documentation that clearly shows how I can have the external IdP send custom attribute values from their side (via SAML token) and map/transform them into my own access token claims with a different name so I can parse out the claim value and use it my code (i.e. front-end or backend code). I do not want to call an external API (i.e. Custom Authentication Extension/Claims Provider) during authentication flow. This would require my external clients to build custom API for me to call. I simply want ability (in real-time) during the built-in user flow to transform the attribute values from IdP SAML token into my access token so my application code can use them by reading the token values. I'm okay calling/building my own code hosted on my tenant to do that if needed. I also don't want these values stored in my tenant. Meaning if the user logs in a few days alter their attribute value changes, my application will see the new values. Scenario: My application code reads the claims from the access token (issued by my tenant for my app) after user authenticates with external IdP and is redirected back to my application and I need to find a claim value called "AccountNumber" and use this to query our database. Because I'm federating with multiple IdPs, they may call their attribute value something different (i.e. AcctNum or CustomNum), but my application must use our attribute name so we are not adding custom logic per IdP federated. Is this supported in B2B? If supported in B2B, where is the mapping done? Do I tell the external IdP to add the attribute with my required attribute name to their SAML token (they map it)? If so, does Azure automatically handle putting that claim attribute in my access token because the name matches? I do understand I'll have custom/optional claims attributes setup on my Enterprise App so my app has access to this claim attribute in my access token. But how is it mapped during federation? If not automatically mapped to my custom claim, where in the Enterprise App to do map this? Single Sign-On section? Or is this something I do in my Azure tenant? Is so, where/how? I keep seeing documentation about using the Single Sign-On section on on the Enterprise App -> Edit Claims -> Add new claim. But I can only select built-in claims from Azure AD/Entra. I was expecting ability to specify the external IdP's attribute name (free form type). For example, "AcctNumber" as source (the attribute name from external IdP) and map to my name called "AccountNumber". Any help would be appreciated. Thanks I've read through all the documentation, watched videos, and I can't seem to find example of anyone doing this? Videos and articles keep talking about Enterprise App -> Single Sign-On -> SAML, but that is for adding an app from the Gallery and telling that App to use my Tenant as the IdP instead of the app developer's built in IdP. For example, lettering my tenant users user their own AD/Entra account to get access to the external App. That documentation shows claims mapping in the Enterprise App - Single Sign-On, which is fine because I have an internal App using OIDC instead of SAML. But how do I map the claims attributes from the external IdP into my OIDC access token when user authenticates?devronyFeb 06, 2025Copper Contributor519Views0likes1CommentAD B2C Custom policy
Good evening, We've developed a custom login and sign-up policy on AD B2C. The login process had three pages: 1. Phone number entry, 2. Country code and phone number(Phone number is added automatically from step 1) entry, and 3. OTP verification leading to token generation. We want to optimize this flow. Now, we aim to eliminate the first page and directly present page 2 (Country code and phone number). Although we've updated the journey and technical profile accordingly, the HTML rendering isn't functioning correctly. Is there something we overlooked? Is there any other way to do it?agour2410Feb 05, 2025Copper Contributor301Views0likes1Comment
Resources
Tags
- azure2,225 Topics
- Azure DevOps1,385 Topics
- Data & Storage379 Topics
- Networking224 Topics
- Azure Friday221 Topics
- App Services196 Topics
- blockchain168 Topics
- devops150 Topics
- Security & Compliance139 Topics
- Analytics130 Topics