Identity & Authentication | Microsoft Community Hub

Forum Widgets

Latest Discussions

Azure MFA "Activation Failed" error with Microsoft Authenticator App
We've opened a premier ticket, but has anyone in the community seen this error before? We've got a few users that can't set up the Microsoft Authenticator app, and nothing we do is working. This is rolling out to all of our users overnight tonight, and none of our global testing has run into anything like this.
Brent Ellis
Silver Contributor
Jan 03, 2025
Authentication
security
128KViews
0likes
16Comments
failed set-up of a passkey for a personal MS account
After scanning the QR code (on the PC screen) in the Authenticator app on the Iphone, the error message “Error adding the passkey - Microsoft Authenticator does not support this passkey” (translated from German) appears. What does this mean ? How to prevent? Any help is appreciated.
Reger
Copper Contributor
Dec 29, 2024
Authenticator app
Modern authentication
109Views
1like
2Comments
How to Create Alerts for New Global Admins/Privileged access accounts
Hello Microsoft Community, I'm looking for guidance on setting up alerts whenever a new Global Admins or Privileged access account. Im not trying to look for a PIM scenario.
EVIWOL
Copper Contributor
Dec 23, 2024
admin
60Views
0likes
1Comment
How to add Passkey for Entra ID / M365 Identity to Windows Hello or third-party password manager?
I manage many M365 tenants and can't add all of them to Windows as an account. Because of this I would like to add passkeys for those accounts to either a third-party password manager or (preferred) Windows Hello. So far I haven't found a way to do this. The passkey dialog at https://mysignins.microsoft.com/security-info only allows me to add a passkey to a physical key. So: So how can I add M365 passkeys to Windows Hello?
PhilippeS
Copper Contributor
Dec 20, 2024
Authentication
Identity
Modern authentication
55Views
1like
3Comments
Ticketing System for Clients
Hello everyone and greetings from Portugal! So, I work at a startup that at the moment has a nice number of clients, both in Portugal and in the US. We're feeling the need to have a ticketing system and I was wondering if anyone can give some suggestions. Not a lot of requisites but would be great if it integrates/allows multi-tenant support so users from different oganizations can SSO. And the ability for the system to get user information from Entra ID (like UPN, etc) and associated device (managed by Intune) would be great. And...writing this post I got wondering if I should be looking only for ticketing system or other tool with more features. All my clients are "cloud native", no physical servers, and all devices managed via Intune. Thanks to all in advance!
Solved
DiogoSousa
Iron Contributor
Dec 13, 2024
admin
Identity
microsoft 365
1.9KViews
0likes
5Comments
Federation Issues - No protocol handlers?
Hi All, It's been a number of years since I've federated a domain with Entra, i'm flipping this back in a home environment to complete some testing. Would appreciate some troubleshooting thoughts. What from memory was a quick task, I've spent waaaaay to long on this today. I've rebuilt the environment a number of times with the same outcome. Install ADFS (Enabled the sign-in page). Install WAP. Generate Let's Encrypt certificate and provide to the servers. Port Forward 443 to the WAP server. Use Entra Connect to Federate the domain (AD FS Config looks good and generated as Microsoft Office 365 Identity Platform) WAP is configured via AAD Connect (Blank but seems alright talking back to ADFS) I can hithttps://adfs.domain.com/adfs/ls/idpinitiatedsignon.aspxand authenticate with UPN internally/externally. I can hithttps://adfs.domain.com/FederationMetadata/2007-06/FederationMetadata.xmlinternally/externally. I also setup IAMShowcase to test (SAML 2.0 Test Service Provider) and published the app via the WAP, worked fine for SP and IDP initiated flows. Interestingly enough, I am chucked the following error from the ADFS redirection with M365 authentication: Error details: MSIS7065: There are no registered protocol handlers on path /adfs/ls/ to process the incoming request. This raises an error on the ADFS server ID#364, I've rebuilt a few times and havent been able to find much in troubleshooting. Would love to hear if someone else has seen something similar, i'm at a bit of a loss here. Encountered error during federation passive request. Additional Data Protocol Name: Relying Party: Exception details: Microsoft.IdentityServer.Web.IdPInitiatedSignonPageDisabledException: MSIS7012: An error occurred while processing the request. Contact your administrator for details. at Microsoft.IdentityServer.Web.Protocols.Saml.IdpInitiatedSignOnRequestSerializer.ReadMessage(WrappedHttpListenerRequest httpRequest) at Microsoft.IdentityServer.Web.Protocols.Saml.HttpSamlMessageFactory.CreateMessage(WrappedHttpListenerRequest httpRequest) at Microsoft.IdentityServer.Web.Protocols.Saml.SamlContextFactory.CreateProtocolContextFromRequest(WrappedHttpListenerRequest request, ProtocolContext& protocolContext) at Microsoft.IdentityServer.Web.Protocols.Saml.SamlProtocolHandler.CreateProtocolContext(WrappedHttpListenerRequest request) at Microsoft.IdentityServer.Web.PassiveProtocolListener.GetProtocolHandler(WrappedHttpListenerRequest request, ProtocolContext& protocolContext, PassiveProtocolHandler& protocolHandler) at Microsoft.IdentityServer.Web.PassiveProtocolListener.OnGetContext(WrappedHttpListenerContext context) Get-MgFederatedDomainFederationConfiguration -IdentityDomain.com ActiveSignInUri :https://adfs.domain/adfs/services/trust/2005/usernamemixed IssuerUri :http://domain/adfs/services/trust/ MetadataExchangeUri :https://adfs.domain/adfs/services/trust/mex PassiveSignInUri :https://adfs.domain/adfs/ls/ PreferredAuthenticationProtocol : wsFed SignOutUri :https://adfs.domain/adfs/ls/
Solved
Miike
Brass Contributor
Dec 10, 2024
ADFS
Authentication
232Views
0likes
9Comments
Authenticator Reset
I cannot log into my Office365 account. I'm not even sure what I have its been so long. I run a small business and set up the account myself. I did not have the authenticator backed up so when I lost my phone, i lost all of the authenticator accounts. Now I cannot log in due to not having the authenticator. I've been hung up on 3 times by microsoft support. How can I get the authenticator reset? I need to install the apps on a new machine. I can't even cancel the account because in order to do anything you have to log in.....which I can't do.
bullzeyebrown77
Copper Contributor
Dec 05, 2024
Authenticator app
34Views
0likes
1Comment
Authenticator backup use company account
Just switched phones yesterday and discovered my Authenticator app backs up using a personal Microsoft account instead of my business account. If MFA is required by a business, shouldn't Authenticator be backed up using business accounts? In my opinion, there should be a way to keep business and personal MFA separate within a single app. Outlook does this with my business and personal email accounts...
Scott Elkins
Brass Contributor
Dec 03, 2024
Authenticator app
4.2KViews
0likes
7Comments
Support tickets unresolved after 11 months; escalation requests ignored; stuck in a feedback loop
Hello, We have been unable to update O365 applications for close to a year now. When we update the applications, our end-users are unable to authenticate and receive 1001 errors. We have had a support ticket open now for 11 months. We are stuck in a loop where support asks us to demonstrate the issue. I can consistently reproduce this issue. This is a cry for help. Thanks to anyone who has any suggestions.
dank133
Copper Contributor
Nov 26, 2024
Authentication
Microsoft 365 Apps
Modern authentication
multi-factor authentication
office 365
17Views
0likes
0Comments
Authenticator app not working on new phone - old phone with app is gone
Hello Tech Community, I have trouble with my email (hotmail) account. About 12 months ago I downloaded and activated the authenticator app after having hackers trying to enter my hotmail account. A few months ago I changed my phone and I have never been asked for second factor authentication until today (so I did not pay much attention to it as I could see it. The phone number attached is old and have no access to it and that device is long gone too). BIG PROBLEM! I have the app on my new phone but it is not linked to my account (and cannot do a Cloud Recovery). If I try to do anything with my account (forward emails or change anything) it asks me for the authenticator approval/code (that I do not have access to). I am scared about doing something that will log me out of my email (which I still have access to) but cannot make any changes nor log out. Please help. Can I deactivate the authenticator app somehow? or re-set it-up to work again? Can I migrate all my emails to a new account so I do not lose years of information if I get logged out? Can I set the forwarding emails option without having to pass by second facto authentication? Looking forward to hearing from you wise community, Thank you
sabripa84
Copper Contributor
Nov 22, 2024
Authentication
Authenticator app
Migration
multi-factor authentication
security
21KViews
0likes
7Comments

Resources

Tags

Authentication323 Topics
office 365213 Topics
security150 Topics
admin61 Topics
Identity51 Topics
multi-factor authentication44 Topics
exchange42 Topics
Azure AD38 Topics
Microsoft 365 Apps36 Topics
hybrid35 Topics

Share