The application deployed on Azure portal cannot access the database on the Azure portal.

February 27, 2020, 1:17 am

≫ Next: Global Admin unable to Reset Password

≪ Previous: Unable to start the VM on LCS

$

0

0

I have a database and an application connected to this database. Both are deployed on Azureportal and both are in the same Resource group.

I added the connectionString that Azure produced for the database to theConnection strings in the Configuration section of the application'sSettings section.

I can access the same database from my local machine with the username and password on theAzure server where this database is located. However my application in the portal can't access this database even though I've added theconnectionString.

NOTE: The name in the connectionString and the name I use in my application are the same.

---

Global Admin unable to Reset Password

March 3, 2020, 4:21 pm

≫ Next: Can't create a VM in Azure with West Europe Region

≪ Previous: The application deployed on Azure portal cannot access the database on the Azure portal.

$

0

0

I have an Azure tenant which was created for me via microsoft partner system.

I tried to login today and could not, so I decided to do a password reset. because password self service was not enabled I have to contact the global admin.

Guess what the account which I cannot use to sign in is also the global admin. As proff I get the email notification from Azure sayign my user is tryign to reset a password.

I dont know how this has happened but the bottom line is that I have been wait for Azure support for over 3 days now to unblock this issue. I even spet up to 2.5 hours on hold the other day (support ticket: 18951232).

I just wish I knew where to go from here?

Can't create a VM in Azure with West Europe Region

March 4, 2020, 3:16 am

≫ Next: Azure Active Directory Connect Does Not Recognize Global Admin

≪ Previous: Global Admin unable to Reset Password

$

0

0

Hi

I'm having a problem deploying a new Azure VM in an existing subnet.

The Problem is as follows:

• Our Vnet has the region "west europe"
• Our existing vm's have the same region
• When I try to create a VM in the Region "west europe" I cant select a VM size. It's all greyed out.
• When I try to create a VM in the "Switzerland, north" region I can select a VM size, but can't select the vnet

It is clear the reason is as follows:

• the VM can't have a different region than the subnet
• It is a currency problem that I can't select a VM Size in the region "West Europe" (I could do that before)
  

But I need to be able to create a VM in the same subnet. 

My questions

• Do I have to migrate the region like here?

https://docs.microsoft.com/en-us/azure/site-recovery/azure-to-azure-move-overview

• What are the possibilities here other than migrating the whole system we have already? Is there a less ornate solution to this?

Greetings

Azure Active Directory Connect Does Not Recognize Global Admin

March 4, 2020, 3:25 am

≫ Next: Can't create a VM in Azure with West Europe Region with the right Vnet

≪ Previous: Can't create a VM in Azure with West Europe Region

$

0

0

I am attempting to setup AD Connect and get the following error message on the "Connect to Azure AD step"

"Please provide the Azure AD credentials of a global administrator."

My account is both the owner and a global admin of the respective Azure account.

Any idea why it doesn't recognize my login as a global admin?

Can't create a VM in Azure with West Europe Region with the right Vnet

March 4, 2020, 3:16 am

≫ Next: Azure Web App Configuration blade blank in portal.azure.us

≪ Previous: Azure Active Directory Connect Does Not Recognize Global Admin

$

0

0

Hi

I'm having a problem deploying a new Azure VM in an existing subnet.

The Problem is as follows:

• Our Vnet has the region "west europe"
• Our existing vm's have the same region
• When I try to create a VM in the Region "west europe" I cant select a VM size. It's all greyed out.
• When I try to create a VM in the "Switzerland, north" region I can select a VM size, but can't select the vnet

It is clear the reason is as follows:

• the VM can't have a different region than the subnet
• It is a currency problem that I can't select a VM Size in the region "West Europe" (I could do that before)
  

But I need to be able to create a VM in the same subnet. 

My questions

• Do I have to migrate the region like here?

https://docs.microsoft.com/en-us/azure/site-recovery/azure-to-azure-move-overview

• What are the possibilities here other than migrating the whole system we have already? Is there a less ornate solution to this?

Greetings

Azure Web App Configuration blade blank in portal.azure.us

March 4, 2020, 11:40 am

≫ Next: Extend the Azure evaluation period

≪ Previous: Can't create a VM in Azure with West Europe Region with the right Vnet

$

0

0

Is anyone experiencing issues configuring Web App and Function Apps using the Azure Portal?  Seems that the Configuration blade under the settings of the app service does not populate and is causing a stand still for developers.  Thanks.

Extend the Azure evaluation period

March 5, 2020, 2:51 am

≫ Next: Azure Managed Instance core choice

≪ Previous: Azure Web App Configuration blade blank in portal.azure.us

$

0

0

Hello,

i use the trial Azure acess , now i can't use it because my evaluation period has been finish, i would like to ask you how i can extend it please.

thank you

Best regards

mzchibane

Azure Managed Instance core choice

March 5, 2020, 3:43 am

≫ Next: Problem with portal auth: "The portal is having issues getting an authentication token"

≪ Previous: Extend the Azure evaluation period

$

0

0

Hi everybody,

I have SQL server engine inside Azure VM and I want to create Azure managed Instance.
My VM core is Intel(R) Xeon(R) CPU E5-2673 v4 @ 2.30 GHz 2.29 GHz,which belongs to D-series VMs.
I want to equalize processor level performance between  Azure managed Instance and Azure VM .
I want to choose Gen-5 core  for managed instance.Is it right choice ? What is the best practice in this solution ?

Thanks in advance.

---

Problem with portal auth: "The portal is having issues getting an authentication token"

February 21, 2020, 4:44 am

≫ Next: The portal is having issues getting an authentication token. The experience rendered may be degraded.

≪ Previous: Azure Managed Instance core choice

$

0

0

I get the following popup messages when I login to Azure Portal, go to Azure Active Directory, select my app and enter API Permissions:

"Your session will end in a few minutes. You will have to refresh your browser to start a new session."

"The portal is having issues getting an authentication token. The experience rendered may be degraded. Additional information from the call to get a token: Extension: Microsoft_AAD_RegisteredApps"

This happens in Firefox, Chrome & Safari, and does not go away after logging out and then logging in again. It doesn't seem to be a temporary glitch as the exact same thing has happened for three days in a row. When I try to add permission for Microsoft Exchange, activity starts, but nothing happens beyond that

The portal is having issues getting an authentication token. The experience rendered may be degraded.

February 20, 2020, 5:45 am

≫ Next: Adding an existing MS account to Azure with the domain already synced

≪ Previous: Problem with portal auth: "The portal is having issues getting an authentication token"

$

0

0

I am unable to create a new Registered app or add permissions to an existing app. the request hangs indefinitely and this error pops up:

The portal is having issues getting an authentication token. The experience rendered may be degraded.

Adding an existing MS account to Azure with the domain already synced

March 5, 2020, 8:27 am

≫ Next: [MS Azure]-Sync Password Policy on-premise To MS Azure

≪ Previous: The portal is having issues getting an authentication token. The experience rendered may be degraded.

$

0

0

Hi, 

I am an admin in my company's Azure portal. I am not the person that set it up and don't manage/use most of it. I just do user management and Office365 in it. 

I have a user who created a Microsoft account with their work email address a long time ago. Before we added our domain to Azure. 

Now we are trying to add this user's MS account to our Active Directory but since the domain is already added for their email address, I cannot add them as a guest user. The only other option I have is to create a new account. 

Is it possible to add an existing Microsoft Account to Azure AD which has the same domain as the domain already added to AD? I would rather not have to create a new account for this user just to add to AD. 

example: 

domain synced to Azure: testxyz.ca

existing microsoft account not in azure: j.smith@testxyz.ca 

I want to add that account to our AD. 

Also would Azure B2C allow users to use their user accounts as a commercial/personal Microsoft account? 

I ask because I was not able to log into these forums using my Azure AD account. Used a personal email address MS account.

[MS Azure]-Sync Password Policy on-premise To MS Azure

March 1, 2020, 9:51 pm

≫ Next: Stuck with deleting a Azure VM that ended in a failed state.

≪ Previous: Adding an existing MS account to Azure with the domain already synced

$

0

0

Hi everyone,

I have a question I would like to ask everyone about the following:

When AD On Premise sync with AD Azure , can i change password policy on premise (detail policy: change minimum password 8-character to minimum 10-character) and automatic sysn or overwrite to AD Azure ?

Looking forward to feedback from Microsoft and the community.

Thanks 

Stuck with deleting a Azure VM that ended in a failed state.

March 6, 2020, 1:08 am

≫ Next: Unable to start virtual machine getting below error

≪ Previous: [MS Azure]-Sync Password Policy on-premise To MS Azure

$

0

0

Hi I have a issue while managing my Azure VM service.

The issue started when I tried to stop the VM (AD-2k19), before i realized it was stopped I made some changes to the networking portion. It was stuck at deallocating afterwards for a few hours. Tired of waiting, I clicked on the delete VM to continue but I was left with a VM that was stuck in "Deleting" state for over an hour plus now. 

I tried Azure Cloud powershell with the command "Stop-AzureRmVM" but it does not work because it was marked for deletion.

After 6 hours or so, the VM stopped deleting and turned the status to Stopped (deallocated) as shown below. Also indicating a failed state in the event.

Knowing it is the network adapter (ad-2k19367) issue, i tried to update it via the command:
"az network nic update -g ResourceGroup -n ad-2k19367"

But it was failed with the error:
"Operation 'startTenantUpdate' is not allowed on VM 'AD-2k19' since the VM is marked for deletion. You can only retry the Delete operation (or wait for an ongoing one to complete)."

I have no other solution left. Please kindly help..Is there a way to unmark the VM from deletion so I could remove the network adapter?

Many Thanks..

Unable to start virtual machine getting below error

March 5, 2020, 10:34 pm

≫ Next: Get Azure Registered App details using API

≪ Previous: Stuck with deleting a Azure VM that ended in a failed state.

$

0

0

Additional error information is available for this virtual machine:

GENERAL

Provisioning state

 

Provisioning failed. The VM extension with publisher 'Qualys' and type 'WindowsAgent.AzureSecurityCenter' could not be found.. ArtifactNotFound

Provisioning state error code

 

ProvisioningState/failed/ArtifactNotFound

Guest agent

 

Unknown

DISKS

aiadmin_OsDisk_1_d50bed5f7a314081937cd9edb94c46ba

 

Provisioning succeeded.

Can anyone please suggest ?

Get Azure Registered App details using API

March 6, 2020, 4:44 am

≫ Next: AZURE AD Authentication in .Net Core

≪ Previous: Unable to start virtual machine getting below error

$

0

0

Is there any API available to get Azure Registered App details (ClientId, ClientSecret, TenantId) using Azure username, password and Registered App name?

Or is there a way to create Register App using some API?

All I want to accomplish is to authenticate the Azure APIs using just the username & password (or maybe Registered App name, if required). Is this possible?

---

AZURE AD Authentication in .Net Core

February 28, 2020, 6:21 am

≫ Next: MDM Device is not syncing after enrolling using Azure AD MDM enrollment

≪ Previous: Get Azure Registered App details using API

$

0

0

     

I am trying to configure AZURE AD forauthentication/authorization, but it gives me 404. It does not prompt me to Login.

I have following configurations in "StartUp"

ConfigureServices

 services.AddAuthentication(AzureADDefaults.BearerAuthenticationScheme)                                                                      .AddAzureADBearer(options => Configuration.Bind("AzureAd", options));

Configure

   app.UseAuthentication();

   app.UseRouting();   

   app.UseAuthorization();

MDM Device is not syncing after enrolling using Azure AD MDM enrollment

March 7, 2020, 10:02 pm

≫ Next: ARM template deployment from Private Github repository

≪ Previous: AZURE AD Authentication in .Net Core

$

0

0

I am doing Azure Active directory integration with my MDM solution provider. After my device is Azure AD MDM enrolled to my MDM server, the sync never works, I get an error in event viewer that failed to get AAD token for sync. I want to understand that for sync, will I receive an AAD JWT token which I am supposed to validate. When I was doing bulk enrollment using ppkg in that case I used to receive a MDM-signature http header which I dont get now. Assuming I will receive a AAD token, why is it failing in my case. I get the following in event viewer:

MDM Session: Failed to get AAD Token for sync session User Token: (Unknown Win32 Error code: 0xcaa10001) Device Token: (Incorrect function.).

Seeing some additional errors in event viewer:

Http request status: 400. Method: GET Endpoint Uri: https://login.microsoftonline.com/0c43f031-2bf0-47d9-bd28-a8fa74a2c017/sidtoname Correlation ID: 27F72233-3F48-4047-8F93-C542E4DF4B3D

AAD Cloud AP plugin call Lookup name name from SID returned error: 0xC000023CAAD

Cloud AP plugin call GenericCallPkg returned error: 0xC0048512

Error: 0x4AA50081 An application specific account is loading in cloud joined session.
Logged at clientcache.cpp, line: 291, method: ClientCache::LoadPrimaryAccount.

Can someone please help on what could be the problem here?

ARM template deployment from Private Github repository

March 7, 2020, 8:36 pm

≫ Next: Logs

≪ Previous: MDM Device is not syncing after enrolling using Azure AD MDM enrollment

$

0

0

Hello,

I am able to deploy ARM linked templates if I keep the GitHub repository "public" but the deployment fails if I change the GitHub repository to "Private".

Any suggestions on deploying ARM template from Private GitHub repository ?

Regards,

Sachin Thapan

Logs

March 8, 2020, 4:31 pm

≫ Next: How to clone an initiative policy?

≪ Previous: ARM template deployment from Private Github repository

$

0

0

Hi All

One of my server is shutdown in azure, how can i know from the logs who has shutdown the server and how to check the logs.

How to clone an initiative policy?

March 10, 2020, 7:43 am

≫ Next: How to limit Password Administrator role to certain users

≪ Previous: Logs

$

0

0

Is there a way to clone an initiative policy through the management portal or PowerShell? 

There are some built-in initiative policies that have many individual policies such as "[Preview]: Audit NIST SP 800-53 R4 controls and deploy specific VM Extensions to support audit requirements". I want the ability to add/remove policies as needed. We are considering not setting policies for services that we don't use.

I don't see any options available for this.

---

Kyle