AdminAzure AD Team (Software Engineer, Microsoft Azure)

My feedback

  1. 315 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    35 comments  ·  Azure Active Directory » B2C  ·  Flag idea as inappropriate…  ·  Admin →
    AdminAzure AD Team (Software Engineer, Microsoft Azure) commented  · 

    Thank you for your interest in SAML support. As some of you may know, we already support IDP-initiated SSO with SAML using Custom Policies (https://docs.microsoft.com/en-us/azure/active-directory-b2c/saml-technical-profile). We are working to support SP-initiated SSO as well. However, we don't have timing on when it would available to customers.

    AdminAzure AD Team (Software Engineer, Microsoft Azure) shared this idea  · 
  2. 198 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    50 comments  ·  Azure Active Directory » B2C  ·  Flag idea as inappropriate…  ·  Admin →
    AdminAzure AD Team (Software Engineer, Microsoft Azure) commented  · 

    Thank you for your interest in Azure AD B2C in Australia. I am excited to inform that we are planning to have data residency in Australia. We plan to start work on this in the next 6 months. Please note we don't have timing on when it would be available for customers.

  3. 27 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    AdminAzure AD Team (Software Engineer, Microsoft Azure) commented  · 

    This app is published in the gallery. You can find the details at https://azuremarketplace.microsoft.com/marketplace/apps/cisco.meraki-vmx?tab=Overview

  4. 202 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    21 comments  ·  Azure Active Directory » Domain Join  ·  Flag idea as inappropriate…  ·  Admin →
    AdminAzure AD Team (Software Engineer, Microsoft Azure) commented  · 

    Dan - the capability you are referring to is already available. We call it Hybrid AAD Join. You'll need to deploy AAD Connect and enable sync between your AD and AAD to get to that state. Please refer to our documentation on Hybrid AAD Join for that

  5. 1,173 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    142 comments  ·  Azure Active Directory » SaaS Applications  ·  Flag idea as inappropriate…  ·  Admin →

    We’re continuing to investigate options for adding this support. There are technical challenges to overcome in order to make this happen. We thank you for all your valuable comments so far, and welcome any additional feedback you have on what are the most important use cases involved with these scenarios.

  6. 3 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Azure Active Directory » Developer Experiences  ·  Flag idea as inappropriate…  ·  Admin →
    AdminAzure AD Team (Software Engineer, Microsoft Azure) commented  · 

    Hi Victor,

    It sounds like there is a difference in the way the tenants are set up. In one, the toggle for "Users can consent to apps accessing company data on their behalf" is likely set to no, meaning that no end user can consent to any 3rd party app. To allow users to consent, this toggle should be set to yes.

    Hope that helps!

  7. 5 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Azure Active Directory » Developer Experiences  ·  Flag idea as inappropriate…  ·  Admin →
    AdminAzure AD Team (Software Engineer, Microsoft Azure) commented  · 

    Hi Mathyn,

    http:// and https:// schemes are not supported in custom redirect URIs for native apps. If you would like to use those schemes, you should add a web platform.

    Hope that helps!

  8. 25 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    9 comments  ·  Azure Active Directory » B2C  ·  Flag idea as inappropriate…  ·  Admin →
    AdminAzure AD Team (Software Engineer, Microsoft Azure) shared this idea  · 
  9. 37 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Azure Active Directory » B2C  ·  Flag idea as inappropriate…  ·  Admin →
    AdminAzure AD Team (Software Engineer, Microsoft Azure) shared this idea  · 
  10. 2 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    AdminAzure AD Team (Software Engineer, Microsoft Azure) commented  · 

    Azure AD Application Proxy doesn't perform any separate authentication - the preauthentication will be determined by what you have configured and what is available through AAD. Moving this to the MFA team to consider.

    Best,
    Harshini

  11. 250 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    19 comments  ·  Azure Active Directory » B2C  ·  Flag idea as inappropriate…  ·  Admin →

    Currently, you can use “App Registration” blade in the Azure Portal (outside of the Azure AD B2C blades) to register an apps that define application permission and the register apps that use client credentials to request these. The caveat is that this is done using the same mechanism that you’d use in regular Azure AD.

    Ideally we’d have a first class experience for this in the Azure AD B2C blades or at least have an Azure doc that walks you through the experience I just summarized, so I’m leaving this feature ask open.

    It would be great if you guys can add comments with your feedback. What scenarios areyou trying to achieve? Does the approach above help you achieve what you want to achieve? Does the experience to do so work for you guys and if not, what would you like to see?

    AdminAzure AD Team (Software Engineer, Microsoft Azure) commented  · 

    @Eric Jutrzenka, please open an issue in the Git sample (https://github.com/AzureADQuickStarts/B2C-GraphAPI-DotNet/issues) so that we can help you there. Most likely you are hitting the wrong endpoint. You should using https://login.microsoftonline.com/<tenantId>/oauth2/authorize (without v2.0).

  12. 587 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    71 comments  ·  Azure Active Directory » B2C  ·  Flag idea as inappropriate…  ·  Admin →

    Due to various technical limitations, the first iteration of the customer-owned domains functionality will not be available for a few more months. We will provide an update as soon as we can get a more specific ETA.

    If you are looking to use custom domains to use javascript, we are now looking to enable that experience by providing a new (non-customizable) domain. Please look for updates here: https://feedback.azure.com/forums/169401-azure-active-directory/suggestions/15493536-add-support-for-javascript-inside-the-custom-ui-br

    /Parakh

    AdminAzure AD Team (Software Engineer, Microsoft Azure) commented  · 

    We're still in early enough stages that we can't provide anything more concrete than our target of summer 2017. We'll narrow this down as we get a better sense on the date around this.

    /Saca

    AdminAzure AD Team (Software Engineer, Microsoft Azure) commented  · 

    First iteration won't include an API surface for configuring this, only through the portal.
    The first iteration will also have a limit as to how many custom domains are allowed per tenant (looking at somewhere between 1 and 5 )

    /Saca

    AdminAzure AD Team (Software Engineer, Microsoft Azure) shared this idea  · 
  13. 1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  Azure Active Directory » B2C  ·  Flag idea as inappropriate…  ·  Admin →
    AdminAzure AD Team (Software Engineer, Microsoft Azure) commented  · 

    Hi Bhami,

    Can you email us at AADB2C@microsoft.com. We would like to understand your scenario more specifically and why you need to have an individual Facebook app for each of your platforms.

    /Sam

  14. 1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    AdminAzure AD Team (Software Engineer, Microsoft Azure) commented  · 

    If you're the app developer and want to support SSO with Azure AD. Please go to this article to get more information: https://docs.microsoft.com/en-us/azure/active-directory/develop/active-directory-authentication-protocols

    Azure AD supports SAML 2.0, OpenID connect, WS-Fed and OAuth 2.0. If you haven't implemented any of the protocols I'd suggest to take a look at the OpenID connect libraries we provide to developers.

    If you're an IT pro and want to request an app to be integrated in AAD gallery: in addition to this post, please fill out this form: http://aka.ms/aadappsurvey

    Thanks,
    Luis

  15. 15 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    6 comments  ·  Azure Active Directory » Developer Experiences  ·  Flag idea as inappropriate…  ·  Admin →

    Alan, if I understand correctly, you are saying you cannot see the converged apps you registered on apps.dev.microsoft.com in the Azure Portal. Converged apps cannot currently be managed in the Azure Portal, even though they are registered in the Azure AD tenant listed in the message. If you would like to manage converged apps in the Azure Portal, please post that as an idea/suggestion or vote for it once the post exists.

  16. 115 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    14 comments  ·  Azure Active Directory » B2C  ·  Flag idea as inappropriate…  ·  Admin →

    We are in the process of planning this feature and hope to have a preview available by the end of november. In the meantime, could you please respond to aadb2cpreview@microsoft.com with your responses to the following questions:

    - If you had a “password change” policy, what kind of information would you like to get back once the policy has been executed?
    - Would you prefer to have a policy that forces you to sign in first, and then asks you to change the password, or one that let’s you do it all on the same page?
    - Would you want an email to get sent out to the user whenever the password is changed?

    AdminAzure AD Team (Software Engineer, Microsoft Azure) commented  · 

    Thank you for the feedback guys, keep it coming.
    We've got enough information to get a better sense on the ask. This will remain unplanned at least for this half of the year. We'll provide an update as we come out of our next planning cycle in the middle of this year.

    /Saca

    AdminAzure AD Team (Software Engineer, Microsoft Azure) shared this idea  · 
  17. 39 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    9 comments  ·  Azure Active Directory » B2C  ·  Flag idea as inappropriate…  ·  Admin →
    AdminAzure AD Team (Software Engineer, Microsoft Azure) commented  · 

    Bill, no plans in the immediate future for this. We're currently prioritizing other items that have higher demand.

  18. 2 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Azure Active Directory » Authentication  ·  Flag idea as inappropriate…  ·  Admin →
    AdminAzure AD Team (Software Engineer, Microsoft Azure) commented  · 

    Thanks for the feedback! We are investigating.

    Could you please provide some additional information? You can follow these steps:
    1. Open the site in the browser of your choice
    2. Go through the process to create an app
    3. Wait until it fails and you see the error message
    4. Open your browser’s development tools
    5. Click on the console tab
    6. Get the value for $config.correlationId and localStorage.ai_session

  19. 55 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    AdminAzure AD Team (Software Engineer, Microsoft Azure) supported this idea  · 
  20. 4 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    AdminAzure AD Team (Software Engineer, Microsoft Azure) supported this idea  · 
    AdminAzure AD Team (Software Engineer, Microsoft Azure) shared this idea  · 
← Previous 1

Feedback and Knowledge Base