The Identity Security Customer Experience Engineering (CxE) team shares real-world insights, end-to-end strategies, and tips from some of the most complex customer deployments with you multiple times weekly. Join one of the many online live events to ask questions, and learn identity & security topics Make sure to like and subscribe! And don't forget to check out our LinkedIn Page: aka.ms/425show/LinkedIn
Hi guys, I have a question; how does this work for those of us testing this at home and with trial accounts and a trial server. In other words, it a .local and behind a router. E.g 10.0.1.2 is server and there's a public ip of 173.x.x.x. Should there be any routing done or extra configurations? Thank you for your time and response in advance
Could you please explain how to add the AVD session hosts to device group? At 49:50 three session hosts can be seen as members of your group. When I create a security group in Entra ID and select 'Assigned' as membership type, then the only objects I can add to the group are Users, User Groups, and Enterprise Applications. I do not see any option to add computers or devices...
You said that in the OBO flow, API 1 must use the /.default scope from API 2 to acquire a token on behalf of the user? So I can't specify a specifc scope from API 2? Let's assume that the API 2 has exposed the scope called /Access.All and preauthorized the API 1. The API 1 has the delegated permission of /Access.All of API 1. Now when the client application sends a request to API 1, the access_token is exchanged for a new access_token that should have the /Access.All scope and audience of API 2 (OBO flow). If I specify /Access.All explicitly, I get an access_token the same way if I would use /.default. So I don't need use ./default? Am I wrong in my configuration?
Half an hour of my life I will never get back. Thanks for wasting our time with a useless tutorial, with examples AS YOU ADMIT IN THE VIDEO ARE BUGGY AND DONT WORK. SPAM!
I am already having the token i just want to validate it while using the api , and can i get the whole code regarding it , it will be helpful for implementation
Is Offline login possible too? I mean after the first login with LoS with DC, let's say I take my laptop somewhere i don't have internet connection, will I be able to login with PIN/Fingerprint...
This video just saved our implementation of WHfB. I was able to Wireshark the domain controller thanks to JJs walkthrough and found that Windows Hello was only trying certificate authentication, even through the relevant setting was 'not configured'! I forced it to Disabled and we're off to the races. Can't thank you enough!
I saw that Jan Vidar has linked a new attribute called "Company" in the User Flow. The question is, how can I link de custom company link with the company field in Azure AD?
Euh? They covered quite everything apart from Internet Access. At the time of this recording only M365 and Private Access was available as seen in the screenshots here. This clip has the wrong name...
With the ability to create custom automations without writing code, you can automate many of those manual tasks that all organizations do today. What will you create for a custom workflow?😀
Jason Sandys is one of my favorites because he is passionate and also calls it how it is; no BS. #modernworkplace Finally subscribed to the channel. Thank you Grace!
The folks that run the Twitter/x AzureAD handle are not the same folks that run this channel so there isn't a whole lot we can do about it unfortuantely. We will bring your feedback to them though.
Thanks for this. Just setup Cloud Trust for users who are AAD joined as we move away from on-prem. WHfB had already been configured so there were no impacts on the user.
@ 15:18, you talk about TAP not working for enrollment while on hybrid-joined devices; is that shortcoming going to be addressed, or should we still be looking to migrate to just AADJ?
I’m having a real hard time trying to figure out how to connect to an external ID provider with OIDC with Entra for our B2C Tenant. For some reason it appears to be limited to Facebook, Google or SAML only? Am I missing something? If not, any word on supporting OIDC/ OATH 2.0?
You are not missing anything. That's something that's being looked at for future roadmap. No dates or anything to share at this time. Feel free to reach out to your account team with this ask as well.
@@425show awesome! Thank you for the response on this. This means I’m not wasting time writing/tweaking my B2C custom policies this channel has taught me. Thanks!
FIDO in iOS is great, but when do we get support for it in the Mobile Apps themselves? Such as when configuring Outlook Mobile or Teams Mobile? Adding an account directly into Authenticator by using a FIDO would also be great to get to passwordless on the phone easier? If that credential could then also count as Phish resistant for Auth Strength it would all be lovely! :) Please make Authenticator creds Phish Resistant.
What was your favorite feature for the August 2023 Microsoft Entra update? Comment and let us know what you would like to know mrore about, and feedback of the format for the show!😀
Thanks for checking out the quick learn video which is a clip from the full overview of Microsoft Entra ID Governance video of other features at ru-vid.com/video/%D0%B2%D0%B8%D0%B4%D0%B5%D0%BE-LJ7eVCRGAgk.html
Thanks for checking out the quick learn video which is a clip from the full overview of Microsoft Entra ID Governance video of other features at ru-vid.com/video/%D0%B2%D0%B8%D0%B4%D0%B5%D0%BE-LJ7eVCRGAgk.html
Thanks for checking out the quick learn video which is a clip from the full overview of Microsoft Entra ID Governance video of other features at ru-vid.com/video/%D0%B2%D0%B8%D0%B4%D0%B5%D0%BE-LJ7eVCRGAgk.html
Thanks for checking out the quick learn video which is a clip from the full overview of Microsoft Entra ID Governance video of other features at ru-vid.com/video/%D0%B2%D0%B8%D0%B4%D0%B5%D0%BE-LJ7eVCRGAgk.html
Thanks for checking out the quick learn video which is a clip from the full overview of Microsoft Entra ID Governance video of other features at ru-vid.com/video/%D0%B2%D0%B8%D0%B4%D0%B5%D0%BE-LJ7eVCRGAgk.html
Thanks for checking out the quick learn video which is a clip from the full overview of Microsoft Entra ID Governance video at ru-vid.com/video/%D0%B2%D0%B8%D0%B4%D0%B5%D0%BE-LJ7eVCRGAgk.html
Thanks for checking out the quick learn video which is a clip from the full overview of Microsoft Entra ID Governance video at ru-vid.com/video/%D0%B2%D0%B8%D0%B4%D0%B5%D0%BE-LJ7eVCRGAgk.html
Hello @JJ, I have configured the GPO for Hybrid deployment but it is taking the fingerprint and asking for the second factor authentication. Second Factor Auth is not working in my case giving the below error , can you please give some insights on this.
That sounds like you have an additional GPO configured to force second factor auth. RU-vid comments are not a great place to troubleshoot. Please open a support case or try posting the full issue techcommunity.microsoft.com/t5/security-compliance-and-identity/bd-p/SecurityandCompliance