Quantcast
Channel: Azure Management Portal forum
Viewing all 4189 articles
Browse latest View live

Find Unattached nics

May 26, 2020, 2:07 pm
$
0
0

through the course of our Azure tenant history alot of vm's have been removed, with that said i know we have never removed nics, or managed disks. So i came across this script and don't want to delete just yet but want to view a list of unattached nics and got a few errors and seeing if someone could help please.

# Set deleteUnattachedNics=1 if you want to delete unattached NICs

# Set deleteUnattachedNics=0 if you want to see the Id(s) of the unattached NICs
deleteUnattachedNics=0

unattachedNicsIds=$(az network nic list --query '[?virtualMachine==`null`].[id]' -o tsv)
for id in ${unattachedNicsIds[@]}
do
   if (( $deleteUnattachedNics == 1 ))
   then

       echo "Deleting unattached NIC with Id: "$id
       az network nic delete --ids $id
       echo "Deleted unattached NIC with Id: "$id
   else
       echo $id
   fi
done

My errors:

At line:4 char:4
+ for id in ${unattachedNicsIds[@]}
+    ~
Missing opening '(' after keyword 'for'.
At line:5 char:3
+ do
+   ~
Missing statement body in do loop.
At line:6 char:38
+    if (( $deleteUnattachedNics == 1 ))
+                                      ~
Missing statement block after if ( condition ).
    + CategoryInfo          : ParserError: (:) [], ParentContainsErrorRecordException
    + FullyQualifiedErrorId : MissingOpenParenthesisAfterKeyword

Search

NPS extension with Azure MFA

May 27, 2020, 5:43 am
$
0
0

Hi there,

It been few days since Im scratching my head with issue and wondering if someone can help.

My NPS server seems not forwarding the AUTH request to Azure for MFA, local authentication works fine.

I have configure everything as per the below guide...

https://techcommunity.microsoft.com/t5/microsoft-identity-manager/step-by-step-protecting-rd-gateway-with-azure-mfa-and-nps/m-p/1217077#

and event view on NPS shows the below message and discarding the auth request..

NPS Extension for Azure MFA: CID: xxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxx : Request Discard for user user@domain.com with Azure MFA response: UserNotFound and message: The specified user was not found.,,,xxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxx.

I wondering if anyone came across this issue and know how to fix it ?

Thank you all in advanced.

Azure AD - Enterprise application - User Settings: "Add Application" not visible

May 8, 2020, 2:17 am
$
0
0

I missed this in my Azure AD. Can anyone see this settings? How can I activate it?

Azure Portal

May 15, 2020, 5:18 am
$
0
0

I am not quite sure this is the correct place for my question. If not please share the direction to take. 

At my company I have access to the Azure portal from my private desktop at home. I need my corporate credentials but still I think this is a security issue. Shouldn't this portal https://portal.azure.com/ only be accessible with the combination corporate devices + corporate creds? I mean: is it okay to reach this portal via any device? Like at home I use my private desktop. If someone gets my credentials, then it is enough? No need to use a corporate device? What are the best practices? Thanks. 

Azure machine is stuck at updating state

May 16, 2020, 5:12 am
$
0
0
Azure machine is stuck at updating, tried to stop and start with no luck

Federating and synchronising verified domain with existing AAD user accounts

May 28, 2020, 1:17 pm
$
0
0

We currently have two verified domains in our tenant. One is the primary UPN suffix in our onsite Active Directory and is already synchronised with AAD Connect and federated with ADFS.

Now we want to do the same with the second domain - synchronise and federate - but some users have already been created natively in the cloud using this domain as their UPN suffix.
What will happen to their accounts if we set up synchronisation and enable federation for the second domain using AAD Connect now? Will they automatically be directed to our ADFS for login to Office 365 and other services, where they will no longer have a valid account because they don't exist in our on-premises Active Directory? Or will they still be able to sign in as fully cloud native users, with only users synchronised from our onsite directory being redirected to ADFS for login?

Error 500121 when re-attempting login to 2FA-secured account

May 29, 2020, 11:49 am
$
0
0

Hello,

I work for a company and was given the credentials to an Azure account. I signed in and it asked for a 2FA code. I did not have access to the phone number it texted, so I backed out and decided to try another time. When that time came, I signed in again, and was met with the error "Sorry, we're having trouble verifying your account. Please try again." Underneath was a button to text the phone number, but it did not work. This happens every time now. Clicking to reveal more information on the most recent attempt gives this to copy and send to "your administrator":

Error Code: 500121
Request Id: d625059d-a9cb-4aac-aff5-07b9f2fb4800
Correlation Id: 4c9d33a3-2ade-4a56-b926-bb74625a17c9
Timestamp: 2020-05-29T18:40:27Z

As far as I understand, this account is the admin account, or at least stands on its own. It appears only the Azure Management Portal appears to be the part that is requiring two-factor-authentication. The account itself is signed-in. What can be done in this situation? As expressed, to my knowledge, there is no admin account above this.

Azure Policy to force newly created resources to have a tag

May 29, 2020, 9:53 am
$
0
0

Hello All,

I need some help creating a JSON template for an Azure policy to do the following:

1. Force multiple tags on newly created resources.

2. Set static tag names, but have the tag values available for manual entry.

One of the built-in templates does something close, but not quite. Any help is appreciated. 

Search

Azure Portal

May 29, 2020, 1:41 pm
$
0
0

Hi

I am not quite sure this is the correct place for my question. If not please share the direction. Thanks

A Username and password was create for me and i was given application administrator role but when i log into azure portal with the new username and password,  All i can access is the Active directory,  I can not even see any other resources

my question is does a license need to be assigned to my created username before i can access any resource and if not then can you please point me in the right direction.

what needs to be done to access all resources.  

regards

olumide

biroma

Error Code: 500121 - Can't sign in to Azure Portal. General error?

May 31, 2020, 5:30 am
$
0
0

Hi, hope you can help.

I can't login to my account, I'm getting the following error:

Error Code: 500121
Request Id: 0750a7c9-09ac-4cd1-a562-0c52b6da2500
Correlation Id: b9711443-d0f3-4456-8cad-f6cc7c44d498
Timestamp: 2020-05-31T12:25:55Z

It looks like it's trying to complete MFA with an SMS code but nothing is arriving. A quick search reveals that other people are affected.  Is this a generalized fault?

Thanks.


Azure AD Connect Sync errors detected

May 6, 2020, 5:20 pm
$
0
0
Getting this error below and when i check this in the report i wont see any errors . This tenant which the error is showing up has been removed almost 4 years ago and is not in AzureAD or On-premise AD or Office 365. This domain is neither verified or added anywhere in the environment.  How to remove this error?

Customize Azure Monitor Dashboard

May 31, 2020, 5:46 pm
$
0
0

Hi

We have around 20 very critical application running across the two subscription. We want to give the infra monitoring reader level access to our application team. Monitoring should include CPU / RAM /IOPS and network interface monitoring. 

Question is, how can we create azure monitor dashboard for app VM and provide viewing access to app team ?

Thanks 

suhag

[Announcement] Azure Management Portal Forum Migrated to Microsoft Q&A

May 31, 2020, 6:51 pm
$
0
0

All MSDN Azure Forums have moved to Microsoft Q&A platform to help our community members to find  faster answers.

 Can I still post here?

We request that our community members ask new questions on the Microsoft Q&A platform only. Continue to engage with existing posts on this MSDN Forum until June 10th , 2020, after which  this MSDN Forum will be closed and will be in read only mode eventually. 

 What is Microsoft Q&A ? 

To help ease you through this transition, please read Microsoft Q&A graduates to General Availability.

 How do I use Microsoft Q&A?

Microsoft Q&A uses tags instead of forums for each service.  Please find the list of Azure Services supported on Microsoft Q&A Platform.

 What tag should I use for asking Azure Management Portal question on Microsoft Q&A?

 We don't have Azure Management Portal specific tag on Microsoft Q&A. Please use service specific tags for any queries. Please find the list of Azure Services supported on Microsoft Q&A Platform.


Azure Enterprise State Roaming

May 4, 2020, 3:43 am
$
0
0

I am trying to enable Enterprise State Roaming on my Tenant and I get an error:

An error occurred w

An error occurred while loading this page. You may not have permissions to view this data.

hile loading this page. You may not have permissions to view this data.

Could someone please help me resolve this issue as I am a Global admin so should be able to access all aspects of Azure. When I orginally tried to access it I was able to start the setup, I think that it failed when I tried to update the resource group.  Is there away I can find out what happened and then resolve the issue.

Thanks


Azure AD - Enterprise application - User Settings: "Add Application" not visible

May 8, 2020, 2:17 am
$
0
0

I missed this in my Azure AD. Can anyone see this settings? How can I activate it?

Search

Calling AcquireTokenForClient failed with no response in winform

May 12, 2020, 8:54 pm
$
0
0

I followed these links to configure my app.

https://github.com/AzureAD/microsoft-authentication-library-for-dotnet/wiki/Client-credential-flows

https://www.emailarchitect.net/eagetmail/sdk/html/object_oauth_ews_service.htm


// Configure the MSAL client to get tokens
var ewsScopes = new string[] { "https://outlook.office.com/.default" };
//var ewsScopes = new string[] { "graph.microsoft.com" };

var app = ConfidentialClientApplicationBuilder.Create(_appId)
    .WithAuthority(AzureCloudInstance.AzurePublic, _tenantId)
    .WithClientSecret(_clientSecret)
    .Build();

AuthenticationResult result = null;

try
{
    // Make the interactive token request
    result = await app.AcquireTokenForClient(ewsScopes).ExecuteAsync();

    // Configure the ExchangeService with the access token
    _ewsClient = new ExchangeService();
    _ewsClient.Url = new Uri("https://outlook.office365.com/EWS/Exchange.asmx");
    _ewsClient.Credentials = new OAuthCredentials(result.AccessToken);
    _ewsClient.HttpHeaders.Add("x-AnchorMailbox", _impersonatedUser);

    //Impersonate the mailbox you'd like to access.
    _ewsClient.ImpersonatedUserId = new ImpersonatedUserId(ConnectingIdType.SmtpAddress, _impersonatedUser);
}
catch (MsalException ex)
{
    throw new Exception($"Error occured in Initial() when acquiring access token:\t{ex.Message}");
}
catch (Exception ex)
{
    throw new Exception($"Error occured in Initial():\t{ex.Message}");
}

1. When I executing this code in Console program, it works well and I can get all mails in inbox.
2. When I executing this code in WinForm program, there's no response and no exception.

Questions:

1. If this question related to UI Thread?
2. Or shouldn't I use legacy 'Exchange' and need change to 'Graph'?
3. Or WinForm can only use AcquireTokenInteractive?

Azure AD B2B and B2C

May 13, 2020, 6:25 am
$
0
0

Hello,

Hope you are well and safe. I see that there is an option to create Azure B2C but not B2B. Is regular Azure AD creation is referred as Azure B2B. please confirm

Regards, AzureBeginner

Azure AD Provisioning Going into quarantine with error 'The remote server returned an error: (400) Bad Request.'

May 26, 2020, 4:20 am
$
0
0

So I am trying to configure both SSO and Auto provisioning of Azure AD with Servicenow as an Enterprise Application, I was able to Successfully configure the SSO part but while enabling the auto provisioning of users in Azure AD, my provisioning goes into quarantine in the initial cycle itself, and the Quarantine details show this error, 'The remote server returned an error: (400) Bad Request.' The provisioning logs are also empty, I tried going through the docs but this specific error was not listed there. So kindly help me with this.

Azure prime Domain synchronizing

May 13, 2020, 3:12 am
$
0
0

Hello!

I have successfully done AzureADConnect, but on Azure portal I don't see any information about me local domain, only in section AD connect I can see that Seamless single sign-on enabled 1 domain.

If I got it right, I should see domain local domain user on portal.

And synchronization Service manager on Domain-PC showing status success.

Maybe I should turn on something extra on portal?

Actually I want to try create hybrid connection between local domain and Azure WDV.

Azure Self Service Password Reset Pilot Questions

May 14, 2020, 11:14 am
$
0
0
Hello,

My organization is considering using Self Service Password reset, but we are not currently utilizing the password writeback feature within AADC. I'm going thru the MS docs site and following a guide to enable SSPR for a pilot group of test AD accounts, but before I finish rolling it out, I have a question regarding password writeback. 

I know that password write back must be enabled thru AADC, but what are some considerations I should take into account before doing that? Any 'gotchas' I should be aware of? For example, how does this work with accounts with non-expiring passwords? How does this impact existing users outside of my pilot?

Any articles or guidance that can be provided would be appreciated. I want to conduct my pilot, but ideally, it doesn't impact other users in our environment.

Regards,
Josh

Josh Crabtree UC Engineer

Viewing all 4189 articles
Browse latest View live
Search