Home

Azure Active Directory

229 Conversations

Latest Activity

Custom List Message Item

We are planning to implement our enterprise application as an MVC 5 application (intranet site), which will be deployed on Azure. We do not want any sort of login page. We did some research about Azure Active directory, but we are not sure whether followi

... Read More
6 Views
0 Reply

Hello

 

I manage quite a few Office 365 setups each using Azure connect synchronizing local AD to Office 365.  When something is wrong with synchronizations I get alerts which is good however if password synchronization stops working then no alerts occur.  

... Read More
33 Views
1 Reply

Hi Darren,

 

There are a number of Event ID's related to Password synchronization that are written to the application event log on the server running Azure AD Connect. 

 

https://support.microsoft.com/en-us/help/2855271/how-to-troubleshoot-password-synchronization-when-using-an-azure-ad-sy

... Read More

Hi All,

We have Azure AD joined machines, coniditional access and with Windows hello enabled, all our applications work with AAD Proxy single signon.

 

Currently outlook (office365) is our biggest problems, when you launch outlook for the first time (and als

... Read More
16 Views
0 Reply

Hello,

Just a quick one, I know this might not be something new but was wondering if anyone can help.

 

Scenario:  

Company A is a start up company who wants a cloud only infrastructure with Office 365 and Azure. They don't want to build on-premises servers e

... Read More
170 Views
8 Replies

Hello Gian,

 

Microsoft is trying to help customers simplify their cloud networks by building more services in the cloud. Before AAD DS, many customers used to build AD D

... Read More
Best Response

That's not really a use case for AAD DS. It's intended to be more of an "extention" of on-premises AD, and not a standalone directory service. Think of it as "managed" AD

... Read More
AAD DS is not really for on-premises machines, it's for cloud-hosted servers.
Local machines will scan the network for a domain controller, and if one is not found then th... Read More

I have been reading a lot about this for a highly available environment. It states that the Staging Server reads all Azure AD changes so that it is ready for production. Does this mean that a staging server will also act as a highly available server for P

... Read More
136 Views
1 Reply
Update: After labbing and testing this scenario - Installing the second staging server works to handle PTA requests. Even thought the second Azure AD Connect server is in... Read More

Hi Team,

 

I need clarifications for the following things

1) Whether azure AD can be authenticated using LDAP 

2) Alternate ways to authenticate AD users in Azure and Onprem

 

Thanks

Vetrivel S

Read More
47 Views
1 Reply
Hi Vetrivel,
There's plenty of ways how you can "federated" authentication with Azure AD, and thus "offload" the authentication elsewhere, for example an on-premises direc... Read More

I know the ability to apply licenses to groups is in preview, but it there any functionatliy that would allow us to apply admin roles to groups?  For example, we have an AD Group for everyone in a SPO Admin role.  I'd like to auto assign the SPO Admin rol

... Read More
31 Views
1 Reply

Not that I've heard of. But it's easy enough to do via PowerShell - expand the group membership and pipe it against the Add-MsolRoleMember cmdlet.

We’re continuing to make progress on converging the Azure AD and Microsoft account identity systems. One of the big steps on this journey is to redesign the sign-in UI so both systems look consistent. We're happy to announce that this updated design is in

... Read More
326 Views
8 Replies

Hi @Eric Starker, is there a way to force the new experience and remove the option to go back to the old one?

 

My team and I are launching our new SPO-based intranet at th

... Read More

Can I revert back to the old signin? This morning my Office desktop apps do not recognize my Office 365 credentials. I want to revert back to see if the issue is the new

... Read More

Middle of July we received a notification in the O365 admin portal that we would be upgraded to AAD Basic.

 

How can we verify that we've upgraded?

 

"Azure Active Directory Basic for Education will be included in your Office 365 subscription
MC109721 (July 14
... Read More
118 Views
2 Replies

If it's been added to the tenant, you should see an option to assign AAD Basic licenses to users from the Office 365 portal, or perhaps see the service listed under Licen

... Read More
Best Response

Hi,

 

I have a visual studio account https://XXX.visualstudio.com/ owned by my user XXX@compucity.it but if I'll try to login to the visual studio portal I recieve an unauthorized error. (detail)

 

So I'll tryed to login with another admin YYYY@compucity.it t

... Read More
20 Views
0 Reply

Hi Everyone! I just wrote a new blog post on how I use Microsoft 365 (specifically Azure AD Join) to rebuild my PC in under an hour and a little bit about my workstyle that allows me to do this and would like to share with the community. If you have feedb

... Read More
57 Views
0 Reply

All,

While testing new Office 365 features for a customer of  mine, I came across the following situation, which kind of puzzles me.

 

My test tenant has synchronized users from my Domain Controller.

Password synchronization is enabled. 

Password writeback is

... Read More
83 Views
1 Reply

That's actually the expected behavior.

 


An administrator can manually reset your password by using Windows PowerShell.

In this case, the new password overrides your synchro

... Read More

Just released yesterday - version 2.0.0.137. 8 new cmdlets in total, all dealing with Office 365 groups lifecycle.

 

Add-AzureADMSLifecyclePolicyGroup

Get-AzureADMSGroupLifecyclePolicy

Get-AzureADMSLifecyclePolicyGroup

New-AzureADMSGroupLifecyclePolicy

Remo

... Read More
49 Views
1 Reply

thanks for the heads-up.

A mouth ago, I have run the following command to make which security group's user only can create Office 365 Group.

 

「Control who can create Office 365 Groups」

https://support.office.com/en-us/article/Control-who-can-create-Office-365-Groups-4c46c8cb-17d0-44b5-9776-005fced8e618

... Read More
84 Views
4 Replies

If you already have the settings template created, you simply need to change the property. It depends on which module you are using, but the idea is the same.

 

$setting =

... Read More
Best Response

Today I’m writing to provide some background about a change in how conditional access policies will soon be enforced when users access Office.com. Notifications about this change have been sent out, but several of you have asked for additional details.

 

... Read More
202 Views
1 Reply

Will this apply to PowerBI, Flow and PowerApps that use SPOnline lists?

Hi,

 

I'm very new here and I didn't find anything for a similar solution.

 

Does anybody know or still got a solution to connect a Radius Server (like NPS or maybe Fortinet MERU / FortiOS - FortiConnect / FortiAuthenticator) via AAD DS?

 

Or is it just that si

... Read More
47 Views
2 Replies
Unfortunately not as far as I know. We asked Fortinet, but the only Thing they came up with, was to buy FortiConnect or FortiAuthenticator, but even unfortunately without... Read More
Does it not support AAD on its own? I know Aruba supports AAD credentials for guest users.

I am working on an app which uses Microsoft Graph APIs. I need to give my app permissions to access the Graph APIs in Azure AD.

 

When i try to give permissions to my enterprise app in the new Azure Portal, i couldn't see any option. If i go to old Azure po

... Read More
26 Views
0 Reply

We presently have a domain controller and ADFS server in Azure. We're about to migrate our local learning management system (LMS) to an externally hosted SAAS. How can we set up the the Azure environment as the LDAP authentication method for the SAAS? We

... Read More
60 Views
0 Reply

Hello all,

 

I am looking to roll out some surface tablets that will rarely, if ever be in the office / connected to our network.  As a result, my plan is to Azure AD Join (and enroll in EMS) these devices but not join them to on-prem ADDS.

 

I have been doin

... Read More
55 Views
2 Replies

Azure AD Join does *not* support GPOs. Azure AD Domain services does, and is limited to the one as you've read. The two are different features however, we discussed this

... Read More

Hi All,

We have deploy Azure AD connec to Azure VM with DC role, but AAD connector prefer AD DC is on-premise DC.

We found when user have password change request, the AAD didn't receive the change request and update to Azure AD with in 2 mins.

 

Any Suggestio

... Read More
65 Views
5 Replies

Hi John,

 

Is your DC a Global Catalog ?

 

The best architecture to archive your goal is to have a DC separate to AD Connect, please refer to this architectures that describe

... Read More

I am working on a SPA application using the implicit flow with oauth 2 and B2C. I configured B2C so my users can log in using local accounts (email/password). Because of the nature of the implicit flow, users must be redirected to the log in page in order

... Read More
25 Views
0 Reply

According to this Microsoft support doc, what I am trying to do is supported:

https://docs.microsoft.com/en-us/azure/active-directory-domain-services/active-directory-ds-admin-guide-join-windows-vm

But I am unable to join a VM (Server 2016) to my AAD domain

... Read More
30 Views
0 Reply

Hello,

 

I have Azure AD subscription with premium trial enabled and assigned license to users so that they can do password reset by themselves. 

 

I also configured the option under password reset settings so that "All" in an organization can reset the passw

... Read More
165 Views
10 Replies

Is the Azure AD premium license still valid and did you check if the azure ad selfservice settings are correct? I dont know if you have an AzureAD synced environment if t

... Read More

How are your users managed, are they created directly in the cloud or sourced from AD? Also, what is the authentication method used?

I am not sure I can help, as I haven't got this setup though I did look at this feature a couple of years a go but have you seen these steps, there a few more things to d

... Read More

Hi,

New to Azure, so please bear with me...

I've created a new domain (registered a domain within Azure) and then activated AD Domain Services for that domain.

So far so good.

I have created a new VM which I want to join to the AD domain and use it to adminis

... Read More
45 Views
0 Reply