Password-less authentication with using One-time passcode from Microsoft Authenticator App.
Recently one of my users was in Internet restricted zone and when he tried to sign-in with Password less method, He didn't get the code due to no internet in mobile and in addition to this, he forgot the user sign-in password. Is there any method or way to setup that we can be able to sign-in with using the 6-digit Microsoft Authenticator App Code instead of the push notification and password.
Exclude Microsoft first party applications in Azure conditional access policy
We have app built on Microsoft Graph resource and we have a conditional access policy that targets all cloud apps. when users sign into this app using Chrome browser on iOS they get error and prompt to use Edge. We do not want users to change the browser and tried to exclude Microsoft Graph from CA policy using all options including API but fails with the below error. Policy contains invalid applications: unsupported firstpartyapplication. Is there a way to exclude Microsoft Graph from the policy?User getting refresh token expired due to inactivity in Outlook desktop AADSTS70008
I have a user who continues to receive this AADSTS70008 error in Outlook Desktop. This computer has been in service for several years and Outlook desktop has been running fine. User can successfully authenticate in MS Teams and Outlook on the Web. MFA is enabled. I have attempted a restart but Outlook produces the same error. I have seen older posts suggesting that the registry key for the office activation be removed to fix this issue. Any thoughts on a more straightforward fix than registry hacks? DSTS70008
Modern Authentication support
Hi All, From the MS docs I'm able to identify that modern authentication is is only supported by the Outlook clients above 2013. I just wanted to know what will be the behavior of unsupported Outlook clients when modern authentication is enabled at tenant level. Will there be any issues ?
SSO with Microsoft Authentication not working right now (Location Switzerland)
Dear community. We use SSO with Microsoft to authenticate for our local installed Devolutions Remote Desktop Manager. Today, when i start the program my browser also opens and want to authenticate through Microsoft. The URL is https://login.microsoftonline.com/........... After 2-3 minutes this authentication runs in a timeout and i can not authenticate. Yesterday everything worked fine. Do we have a problem with that authentication service from Microsoft ? Local time now in Switzerland is 13:07Windows Hello for Business Configuration Issue with multiple Devices
Hello everyone, We are currently facing an issue with our Windows Hello for Business configuration for Multiple Users/Devices, and I'd like to seek your assistance and insights on this matter. We've implemented Windows Hello for Business through Group Policy (User Configuration) and deployed it within our User Organizational Unit (OU). Initially, everything seemed to be working seamlessly. Users were able to log in to their devices, set up Windows Hello for Business, and use it without any problems. However, a problem arises when the same user attempts to log in from another device. Ideally, we expect the same behavior, where the user gets the Windows Hello configuration, successfully sets up their PIN, and can use it for subsequent logins. However, after a reboot, the user is prompted to log in with their password only, and the Windows Hello Sign-in option does not appear. What's even more concerning is that this issue has now started affecting the user's ability to log in with a PIN on their initial device as well. We would greatly appreciate your insights and suggestions on how to troubleshoot and resolve this issue. If anyone has encountered a similar situation or has any guidance on resolving Windows Hello for Business configuration problems, please share your expertise. Thank you in advance for your assistance. Best regards, Rashad Bakirov
failed set-up of a passkey for a personal MS account
After scanning the QR code (on the PC screen) in the Authenticator app on the Iphone, the error message “Error adding the passkey - Microsoft Authenticator does not support this passkey” (translated from German) appears. What does this mean ? How to prevent? Any help is appreciated.The ability to add photos / images to Microsoft Authenticator accounts
Hi, First post in this forum (hello to all !). Can we have the ability to add photos / images to each account listed on our Microsoft Authenticator accounts ? This would allow me to quickly identify which account code I need on the long list of accounts I have connected to my Authenticator app. Many thanks JayHow to exclude Forms from Conditional Access Policy blocking Exchange in browser on mobile?
MAM for mobile makes only sense when EXO gets blocked in the mobile browser. But then Forms gets blocked too. Forms service doesn’t have a dedicated mobile app. So, how to exclude Forms by blocking EXO with Conditional Access in the browser on mobile? Anyone / anything?
