John Del Forno

My feedback

  1. 32 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Azure Active Directory » PowerShell  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    John Del Forno commented  · 

    Yet another case of what we see in the portal, isn't what we see in the Graph API.

    Inconsistency isn't a good thing and it makes developing anything for the Azure platform a rather large headache.

    John Del Forno supported this idea  · 
  2. 891 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    79 comments  ·  Azure Active Directory » Authentication  ·  Flag idea as inappropriate…  ·  Admin →
    John Del Forno supported this idea  · 
  3. 643 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    John Del Forno supported this idea  · 
  4. 1,357 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    77 comments  ·  Azure Active Directory » B2C  ·  Flag idea as inappropriate…  ·  Admin →

    We definitely recognize the popularity of this feature, and we discuss it constantly during the planning phases. However there are certain technical limitations in the system that add a large amount of development cost. Because of the cost and the fact that there is a workaround available, other features get prioritized over this one.

    That being said, please keep voting for it. The popularity of the feature does help bring it up and makes us reconsider every time.

    Apologies for the delay.

    /Parakh


    Old message:
    We’re doing some research both on the specifics of this ask as well as what it would take to support this.
    Is the ask here to do the same thing that regular Azure AD does (see: https://blogs.technet.microsoft.com/enterprisemobility/2014/12/18/azure-active-directory-now-with-group-claims-and-application-roles/) or is are there different requirements around this for Azure AD B2C?

    An error occurred while saving the comment
    John Del Forno commented  · 

    Sorry @parakh, this isn't a work around.

    I don't want admins of the B2C directory to need to have access to the parent directory to administer groups.

    Nor can I allow them to have Graph API Access to the parent directory, as the current permissions grant access to all groups, not predefined or prefixed groups.

  5. 222 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    9 comments  ·  Azure Active Directory » B2C  ·  Flag idea as inappropriate…  ·  Admin →
    John Del Forno supported this idea  · 
  6. 247 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    62 comments  ·  Azure Active Directory » B2C  ·  Flag idea as inappropriate…  ·  Admin →
    John Del Forno supported this idea  · 
    An error occurred while saving the comment
    John Del Forno commented  · 

    Went to sign up for this today, there's availability for Christmas Island but not Australia.

    That's a bit ridiculous.

  7. 23 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Azure Active Directory » Authentication  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    John Del Forno commented  · 

    Given this is already available from ADFS, to state on the documentation page that it's not possible is rather ridiculous.

    If the Graph API can access it, the internal workings of Azure AD should be able to send through relevant groups on the SAML Assertion without issue.

    John Del Forno supported this idea  · 

Feedback and Knowledge Base