Newest 'azure-active-directory' Questions - Stack Overflow

Questions tagged [azure-active-directory]

Microsoft Azure Active Directory (Microsoft Azure AD) is a modern developer platform and IAM service that provides identity management and access control capabilities for your cloud applications. It uses industry standard protocols like OAuth2.0, OpenId Connect, and SAML2.0.

0
votes
0answers
10 views

Postman not connecting to Dynamics365 API using Oauth client credentials, console app working using same details

I am trying to connect with Postman to Dynamics365 CRM REST API. Although I obtain a token successfully without login using Grant Type client credentials I then get a 401 error when doing a sample GET ...
0
votes
0answers
10 views

Cannot set up code repository of Azure Devops for Azure Data Factory V2

I am using my personal Microsoft email account. I have Azure DevOps account and have set up the organization and have some projects. I uses Azure. I have created Azure Data Factory V2 project. Both ...
0
votes
0answers
10 views

In a Single page app, how to call multiple disparate services without asking the user to relogin

I have a single page web app which needs to talk to disparate services. To talk to each of these services, it requires a Oauth token. To acquire this token, I will be forced to ask the user to login ...
0
votes
0answers
11 views

AWS Org & Azure AD SSO - Sign In Issue

after hours of debugging powershell and IAM permission errors, I'm almost done creating an Azure AD to AWS Org SSO PoC. I've been following this guide and the last bit of it is to visit this link http:...
0
votes
1answer
16 views

How to authenticate with Service Principal and get the latest 2-3 Azure repository tags in .NET/Core?

I am writing an API that accesses the Azure Container Registry (ACR), authenticating w/ a Service Principal. The end-goal is to be able to fetch the latest tags of all containers currently in the ...
2
votes
0answers
14 views

Possible to retrieve an access code using broker assisted logins and ADAL?

Is it possible to retrieve an access code (not token) using the ADAL library for iOS & Android, while also supporting broker assisted logins? From what I can tell, all of the following are true: ...
0
votes
2answers
15 views

How to configure Azure AD permissions to access Microsoft Graph from the WebJob console app (using ADAL)?

I cannot access Microsoft Graph using ADAL inside of WebJob (basically console app). I'm getting "Insufficient privileges to complete the operation" error when I try to fetch users from AD. I'm ...
1
vote
0answers
21 views

How to add custom claims from azure portal application settings

Background: I need to integrate azure active directory single-sign-on in my angular 6 app. It is done well. I get a user object after calling the azure authentication service. I am using adal-...
0
votes
0answers
14 views

In what situations will a refresh token be revoked/invalidated?

I am wondering what situations a refresh token can cause a refresh token to be revoked. A Microsoft Account changing their password? Multiple invalid login attempts on a Users account?
0
votes
0answers
14 views

Is there a way to avoid the “select account” prompt while logging out of Microsoft AAD with oAuth?

I'm writing a JS application where the user can do front-end authentication with Microsoft, oAuth2 & openId connect. I need the user to be able to switch accounts, so logout then login another ...
0
votes
0answers
17 views

passport-azure-ad / msal.js and Dynamic Scopes

Azure AD v2.0 discusses one of their advantages as being Dynamic Consent (https://github.com/AzureAD/microsoft-authentication-library-for-js/wiki/api-scopes#request-dynamic-scopes-for-incremental-...
-1
votes
0answers
45 views

How to stop AD users to access Azure console

If I add a new AD user who has access to application. How can I stop him from signining in into Azure Console Details: I have created a web app and published it on azure apps. I have added Azure AD ...
-1
votes
1answer
18 views

Azure B2C access & refresh token costing

We are trying to figure out pricing option for Azure B2C. Few questions: Is it possible to have access_Token expiry time set to 30 days(without usage of refresh token) If we use Azure B2C as IDAM ...
0
votes
1answer
44 views

'DirectoryObject' does not contain a definition for 'DisplayName'

I'm using the Microsoft.Graph.Beta nuget package. I was able to get the user and their manager using the following: var me = await graphServiceClient.Me.Request().Expand("Manager").GetAsync(); ...
0
votes
1answer
35 views

how to fix AAD login error in MVC controller

I am trying to get the user to login with their AAD credential so that i can retrieve their AuthenticationResult UserInfo. I am seeing this error on IIS 10: azure active directory error Showing a ...
1
vote
0answers
17 views

Integration Azure Active Directory SSO in our own asp.net application

We're developing an ASP.NET application for multiple customers and some of the customers want to login with their Azure Active Directory accounts using SSO. My question is: What is the best way to ...
0
votes
1answer
17 views

Can I get Metadata of Files, or Stats of Files, Stored on Azure Databricks

As I mentioned in the title, I'm curious to know if I can get metadata on a bunch of files, basically all the files in a blob, which are loaded on Azure Databricks. I'm hoping there is some kind of ...
1
vote
1answer
26 views

Microsoft Graph Explorer returning empty businessPhones for Users

Is there a special permission necessary to read the businessPhones of a User? Calling https://graph.microsoft.com/v1.0/users/myuseridaud@mydomain.com/ works just fine from when I use the Microsoft ...
0
votes
0answers
25 views

Customizing the login flow for Azure AD B2C - using it without user/pass

I've been looking at options for authentication for a REST web api (.NET Core, but that's besides the point). In particular I'm looking at Azure AD B2C. I have two use cases: 1) An app. In the app ...
0
votes
0answers
20 views

Running Azure SQL stored procedures as logged in AAD user

I'm trying to connect to a SQL database on Azure from a web app in such a way that the currently logged in Azure AD user is passed to the database and the stored procedures are executed by said user ...
1
vote
1answer
42 views

Azure PowerShell script does not work when change to a different Azure Subscription

I am experiencing a very strange problem. I recently switched Azure subscription from free trial to pay-as-you-go. The PowerShell script i wrote to create Azure Resource Group, Azure Data Factory, ...
0
votes
1answer
14 views

How to Correlate an Object ID from Activity Log to a User, SPN Claim or UPN Claim

Looking through my Azure Audit Logs and see someone deleted a bunch of services. I see under "Initiated by" is a Object ID (GUID). Documentation says this is also refered to in JSON as “caller”. ...
0
votes
1answer
15 views

Query on Azure SQL database on behalf of user in a REST-API

I am building a REST-API that talks to an Azure SQL database using .NET core 2.2 and C#. The API runs as a webapp on Azure. The user-access rights are managed by the database itself. My API requires ...
0
votes
0answers
7 views

Reading msRTCSip attributes of a User in Microsoft Graph

I'm in an O365 Tenant where we sync the on Premise Skype for Business attributes (msRTCSip-* attributes in LDAP) to AzureAD. How can I read these attributes? The Microsoft.Graph SDK Nuget package has ...
0
votes
1answer
23 views

Get Token for Azure ADv2 Rest Api Protected

I create an WebApi using visual studio and the wizard, for a protected api. The result was an new application in the Azure Portal, and a configuration file jsonconfig (I am using netcore 2.2) The ...
0
votes
1answer
26 views

Javascript AzureAd Consume Rest Service

RestAPI: I have a Rest API running Asp Core with AzureAd Authentication. WebApp: I have a separate WebApplication running Asp Core as backend, with Javascript frontend. The WebApp backend ...
1
vote
1answer
46 views

Azure AD / MSAL.js - is it safe to include the tenantId?

Is it safe to include the clientId and tenantId in the msal.js implementation? I believe i read Joonas Westlin say that embedding the ClientId is fine (I can't find the post now). There is a place ...
0
votes
1answer
42 views

Azure monitor REST API throwing invalid token error

I created a native APP with Client credentials AuthenticationContext authContext = new AuthenticationContext(AUTHORITY, false, service); ClientCredential clientCred = new ...
0
votes
0answers
15 views

Using msal.js with Azure AD app in SharePoint online team site classic page gives error in IE. How to resolve it?

We are using Azure AD app and msal.js to connect to Yammer API in SharePoint online. The SharePoint online site is based on classic team site template so IE mode is IE 10. The connection and script ...
1
vote
2answers
45 views

Azure Web App written in Node.JS with AD security, who is the user accessing this page?

Azure Web App written in Node.JS with AD security, is there a environment variable that can tell me who is accessing this page? Created Azure Web App. This works well. Enabled Azure AD security. ...
1
vote
1answer
36 views

azure how to move resource group from azure ad tenant/subscription to new B2C tenant

We have azure iot solution with 3 resource groups and lot of various services/resources created under these groups. Currently we are using default Azure AD for users and authentication. Now we have to ...
0
votes
0answers
24 views

403 Forbidden on IIS - ASP.net using Azure AD Single Signon - It is working locally

I have created a bare-bones ASP.net web application in C# (ASP.NET MVC). I am authenticating the users using our company's Azure Active Directory. I am able to successfully authenticate when I build ...
1
vote
1answer
41 views

Error 403 on access to AD User from Azure Logic App

I want to manage my AD Users with an Azure Logic App and i have some trouble when i try to "get user" using the connector "get user" of Azure Active Directory. "error": { "code": "...
0
votes
2answers
37 views

how to properly implement Microsoft.IdentityModel.Clients.ActiveDirectory in xamarin 4

After install the nuget package Microsoft.IdentityModel.Clients.ActiveDirectory I try to acquire token via string cloud = "https://login.microsoftonline.com/common/oauth2"; ...
0
votes
1answer
12 views

MSGraphSDK user details API callback not responding back when user password changed in iOS

I tried to get the user details using MSGraph SDK in iOS using below API method. Iam successfully received the user details all the time. But when user charged their password or update their ...
1
vote
1answer
23 views

Change from personal to organizational Account in Azure DevOps

we are using Microsoft Azure DevOps with personal accounts (with company mail-adress). Last month our company switched to Azure-AD and we want to use the companyaccounts to login in AzureDevOps. Is ...
0
votes
0answers
29 views

How to resolve error message “There was an issue looking up your account. Tap Next to try again.” on Azure AD

We added Windows Azure AD authentication SAML into our ASP.NET application for a few years now. Our Azure AD has the application registrations, our web.config has been configured, etc. The setup is a ...
0
votes
0answers
19 views

Authorization header is missing in request from client via Azure AD Application Proxy

I am facing an issue with missing Authorization header with Bearer token in the HTTP request from the client application to REST web service via Azure Active Directory Application Proxy. The web ...
1
vote
1answer
43 views

How to get the creation date of an Azure Application Registration using Azure PowerShell?

I'm trying to find out when an Application Registration was created using Azure PowerShell. The Get-AzureAdApplication cmdlet doesn't have a property to retrieve this information. The closest I can ...
0
votes
0answers
29 views

Azure Active Directory Sign In automatically across multiple domains

We have multiple web-applications, each of them currently has an AppRegistration (unique clientId) in Azure Active Directory. What I would like to do is for when a user logs into one application, and ...
1
vote
1answer
35 views

How do you use service-to-service authentication for local development to Azure Key Vault using Java?

There are lots of questions and articles on how to do this with .NET, but how/is it possible to easily authenticate for local development through Azure AD shared secret credential using Java (Spring ...
-1
votes
0answers
24 views

Fetch LDAP directory OU users using azure function

I have an application hosted in Windows server IIS and the supporting windows service to pull the LDAP Users from the active directory to the local DB. We are migrating the application to Azure. ...
1
vote
2answers
29 views

LDAP Ambiguous Name Resolution (ANR) equivalent on Microsoft Graph

I'm building a tool that can target both on-prem Active Directory and Azure AD that, amongst other things, searches user objects. For on-prem, I can do an LDAP search using ambiguous name resolution ...
0
votes
1answer
33 views

How to check if user still logged in via azure sso (oAuth2), while using my own webapp?

I'm developing an web application with Spring Boot using Azure AD and OAuth2.0 for authentication to secure up the backend. If I log-out via for example the Outlook Web App, my web application should ...
0
votes
1answer
39 views

How updates in Azure AD Graph API or Microsoft Graph API are released

I am using Azure AD Graph API and Microsoft Graph API to communicate the Azure Active Directory . My code parses response received from API and compares error message in some specific error scenarios ...
0
votes
1answer
59 views

Call azure ad-protected API from powershell with username/password

I have an Azure AD-protected web api. My javascript sends a callback-url where the users access-token is sent to https://login.microsoftonline.com/{my_tenant}/oauth2/v2.0/token/?redirect_uri={my_url}...
1
vote
1answer
14 views

Integration of Angular Application and Spring Boot with Azure AD

I am building an application using angular and spring boot. I need to use Azure AD for SSO from frontend then secure the spring boot services using the token. (In short my angular will connect with ...
-1
votes
0answers
20 views

Azure REST API grant RBAC access in Management Group after creation

I perform the following steps: Create and register a Service Principal in the portal (from Azure Active Directory -> App Registration). Have the token Key Use REST API to create a Management Group ...
0
votes
1answer
23 views

.Net Core Azure Active Directory Authentication Problems (photos)

I tried to follow this tutorial: https://www.bruttin.com/2017/11/21/azure-api-postman.html What am I doing wrong? I'm using the default template of .net core web api 2.2 in visual studio 2019 and I ...
2
votes
1answer
55 views

Azure AD prevents adding HTTP reply URLs

When trying to add a reply URL on the Reply URLs settings screen for Azure AD, we are unable to add a non-HTTPS URL. There are previously-entered URLs that begin with HTTP://, but it won't let a new ...