User Profile

JordyBlommaert

Brass Contributor

Joined 6 years ago

9 Posts3 Likes2 Solutions

View All Badges

User Widgets

Recent Discussions

Re: Hybrid Azure AD Join Implementation Check
DNEel StuartK73 You should not remove those Azure AD registered devices. This happens when a user add his work or school account towards his/her device. When you enable Hybrid Azure AD Join the Azure AD registered devices should automatically be removed when a device become Hybrid Azure AD Joined. We've implemented this at multiple customers and didn't removed the Azure AD registered devices prior to enabling Hybrid Azure AD Join
Sep 30, 2020 Place Microsoft Entra
1.1KViews
0likes
0Comments
Re: Conditional Access Policy - Persistent Browser Session exemptions
vas_ppabp_90 You can implement your conditional access policy to exclude devices that are compliant in Microsoft Intune so that they are not prompted for MFA in that specific condition. Another solution is to grant access in the policy and use the OR scenario which means PASS the policy when a user performs MFA prompt or is compliant in Microsoft Endpoint Manager:
Sep 30, 2020 Place Microsoft Entra
12KViews
1like
2Comments
Re: How to change Azure AD B2C Domain Name
MohammadAliItani It's the same when you create a new Office 365 tenant. Once created you cannot change the .onmicrosoft.com address as this represent the identity of your tenant. It's not possible to rename a tenant. It's only possible to add custom domains names.
Jun 17, 2020 Place Microsoft Entra
11KViews
1like
0Comments
Re: Two "tenants", two ADs... Teams Membership.
malt10102 Try to run following powershell commands Install-Module AzureAD Connect-AzureAD Get-AzureADUser -SearchString "UPN of user" Get-AzureADUser -SearchString "UPN of user" | Set-AzureADUser -UserType member This can convert a user Guest type to a member type
May 13, 2020 Place Microsoft Entra
781Views
0likes
0Comments
Re: Azure AD Sign-ins Logs
Do you see those sign-in logs towards a lot of users? Or only specific users? I think it's not a generic application but a custom developed one.
May 13, 2020 Place Microsoft Entra
90KViews
0likes
1Comment
Re: Azure AD Sign-ins Logs
Betty Stolwyk Microsoft reported this as an internal error code and can be ignored. Reference Article https://github.com/MicrosoftDocs/azure-docs/issues/10766
May 13, 2020 Place Microsoft Entra
91KViews
0likes
0Comments
Re: Dynamic AD group
Roger Roger I agree with the comment of Victor Create an O365 Group and use Dynamic User: Use following dynamic query:
May 12, 2020 Place Microsoft Entra
1.6KViews
0likes
0Comments
Re: Azure AD Sign-ins Logs
Office 365 Shell WCSS-Client is the browser code that runs whenever a user navigates to (most) Office365 applications in the browser. The shell, also known as the suite header, is shared code that loads as part of almost all Office365 workloads, including SharePoint, OneDrive, Outlook, Yammer, and many more The other apps can be apps that are registered in Azure AD. For example developers that are creating Apps in connection with Azure AD. Therefore they need to create an app registration. If you go to Azure Active Directory -> App Registrations you get an overview of all registrations that are connected towards your Azure AD tenant.
May 12, 2020 Place Microsoft Entra
92KViews
1like
9Comments
Re: Conditional Access Reporting
gd-29 You can use Log Analytics to create your own alerts I've found following article how to implement your custom alerts: https://tech.nicolonsky.ch/conditional-access-and-azure-log-analytics-in-harmony/ They also requested this feature on uservoice but it's still not implemented: https://feedback.azure.com/forums/169401-azure-active-directory/suggestions/19331617-change-tracking-for-conditional-access-policies You can also use Azure Sentinel. connect your Azure AD Data Connector: https://docs.microsoft.com/en-us/azure/sentinel/connect-azure-active-directory And implement your own Rules
May 12, 2020 Place Microsoft Entra
11KViews
0likes
1Comment

Recent Blog Articles

No content to show