User Profile
stewartgscott
Copper Contributor
Joined 6 years ago
User Widgets
Recent Discussions
Re: Exception in conditional access policy for "Windows app - macOS"
Hi maxim6300 I have a similar/same issue. I'm fairly CAP literate...however specifically, where in CAP config did you use "Resource" and not the "Application" in the conditional access policy exception? Many thanks68Views0likes1CommentRe: Azure Virtual Desktop - Restricting Access based on the Remote Desktop Client App Version
Ive had for some time a CA policy that restricts using "Mobile apps and desktop clients" However, to allow a user (eg on their home/personal computer) to use the local AVD desktop client on their home personal Windows machine , we Excluded the specific AVD/Remote Desktop apps (in other words, this CA policy is not assigned because the app was excluded, and the user happily uses the windows AVD client on Windows device. This has also been in place for some time. Now, when instead using the new Windows App, we added to the excluded apps in the CA Windows Cloud Login with app ID "270efc09-cd0d-444b-a71f-39af4910ec45" , and we also added Microsoft Remote Desktop ID "a4a365df-50f1-4397-bc59-1a1564b8bb9c" . However, the CA policy does not seem to "see" the connection arriving from either of these two apps, thus the policy does NOT evaluate the user access as this new Windows App on thier windows device as one of these excluded apps, and they are blocked. Is there another app id i should add to my excluded list?204Views0likes0CommentsRe: AVD and the new Windows App - CA policy
Hi and thanks for the link. We have already had these three app-id's as a part of our CA policies that to expressly identify AVD access. We've always had these three. However it seems we can not determine what the appid(s) are to add to our CA policies that expressly identify the new Microsoft Windows App (https://learn.microsoft.com/en-us/windows-app/overview) . THis is MSFT's evolution of the client side app to connect to AVD. Looking at some articles, along with the id's in the article you provided we have added two. But neither of them, in the CA policy identify and evaluate the client app . THe two we added are Microsoft Remote Desktop a4a365df-50f1-4397-bc59-1a1564b8bb9c Windows Cloud Login 270efc09-cd0d-444b-a71f-39af4910ec45 But during signon/access. these are not evaluating the windows client side app as the new Windows App, thus the CA policies are not applied (e.g. to enforce MFA, to allow this windows native app (ie this new Windows App )235Views0likes0CommentsAVD and the new Windows App - CA policy
Hi. Short backgroud: We've been using AVD for several years. We have a CA policy that essentially blocks access to cloud services when access originates from native windows application. When we started using AVD a while back of course we added to this CA policy and "excluded " AVD client apps. In other words, AVD client apps (on Windows devices is exclued , thus the policy is not assigned, thus users can connect to AVD using the thier windows desktop AVD client app. Now - with the new Windows App we are testig it and stuck. We thought to simply add to this CA policy the additional AVD clients app id's as per msft windows app documentation for Windows App. But, on Windows devices, using the new Windows App, the CA policy doesn't seem to recognize it as excluded (therefore the user is blocked as per this CA policy). nb: the new windows app on macOS works fine and the CA policy recognized the native windows app client as excluded and allows access...so we know the policy is bahaving as expected. But - not when using the windows app on an windows device os device. ) What app i missing in my CA policy (in our case, on the excluded list of cloud apps) ? Currently i have : Microsoft Remote Desktop a4a365df-50f1-4397-bc59-1a1564b8bb9c Windows Cloud Login 270efc09-cd0d-444b-a71f-39af4910ec45 Windows Virtual Desktop 5a0aa725-4958-4b0c-80a9-34562e23f3b7 Windows Virtual Desktop 9cdead84-a844-4324-93f2-b2e6bb768d07 Windows Virtual Desktop Client fa4345a4-a730-4230-84a8-7d9651b86739 Many thanks406Views0likes2CommentsRe: Azure B2B guest users licensing question
redmantauk Can i aske a similar question with a twist. I have B2B External users also. Howerver they authenticate externally (of course, they are external) in thier local M365 enviroment. On my side , thier External user accounts I have converted thier UserType from "guest" to "member". (for a variety of good and useful reasons... think M&A integration ) In otherwords in my M365 tenent theyt are External-Member (as apposed to External-Guest). My qestion then is, is thier M365 license (from where they came) recognized on my side (as External-Members in my tenant). e.g. do they bring that with them thier license when B2B-ing into my tenent). Or perhaps since they are External- "Members" , i need to assign my licences (if and as required) ?22KViews1like2CommentsBecause of a protocol error (code: 0x1151), the remote session will be disconnected.
Has anyone experienced this error (subject line), it's cause or remedy?. This for no apparent reason am now experiencing this on all attempts to start a WVD session. The seession seems to start for a very brief moment, when the error message box appears. The More Details includes: Remote Desktop Because of a protocol error (code: 0x1151), the remote session will be disconnected. Please try connecting to the remote computer again. Error code: 0x3000018 Extended error code: 0x115117KViews0likes3CommentsRe: Booking 1 meeting room to book 2
Tom Robey Did you ever solve this. I have the exact same question Tom Robeywrote: I know that subject sounds odd. We have one meeting room that is capable of being split into two meeting rooms. Meeting room A is the one large room then Meeting Room B & C are the two smaller rooms when split. I am trying to figure out if its possible to set up the "resource" so that when you book Meeting Room A that it blocks off Meeting Room B and Meeting Room C. And to make this a little more complicated, if someone just needs to use Meeting Room B then its not possible to book Meeting Room A because one half of that room is being used. As anyone tried this? My first thought is that staff just has to learn if they want to block off the larger room they have to block off both rooms at the same time. But our staff seems to struggle with just booking meeting rooms properly as it stands now. Any assistance would be greatly appreciated.12KViews0likes1Comment