Azure Conditional Access with “Skip MFA for Requests From Federated users on my intranet” option – Scenarios

Hello All, In this Short article, I will explain some scenarios for enabling Conditional Access For MFA, Recently i start to  see a lot of customers using Azure Condition Access (CA) For MFA, The most scenario i saw that after enabling Azure CA for MFA and if the Environment is federated (AD FS deployed) then …

Continue reading ‘Azure Conditional Access with “Skip MFA for Requests From Federated users on my intranet” option – Scenarios’ »

Securing the RDP connection Using Azure MFA for windows 2012/ 2012R2/2016 with RD Gateway and NPS server.

Hello All, In my previous articles, we explained a step by step how to secure the remote access (RDP connection) using Azure Multi-factor Authentication (MFA), at that time we mentioned that the same procedure can only applied to windows 2012 and earlier and it’s not supported to be applied to windows 2012 R2 and above. …

Continue reading ‘Securing the RDP connection Using Azure MFA for windows 2012/ 2012R2/2016 with RD Gateway and NPS server.’ »

Configure AD FS to use Email Address as Alternate Login ID – Case Study

Hello Experts, Recently, i saw some requests asking how to Allow AD FS to authenticate against Email address instead of username, to understand the concept more, let’s imaging below scenario: Customer have an AD Connect to sync objects from local Active Directory to Azure AD, usually when you deploy AD Connect using Express setting or …

Continue reading ‘Configure AD FS to use Email Address as Alternate Login ID – Case Study’ »

Enable Persistent Single Sign on (PSSO) for SharePoint online

Hello All, In this short article, we will discuss the steps in order to enable Persistent Single Sign on (PSSO) for SharePoint Online with ADFS integration. Simply, PSSO means that within a period of time, the users can access SharePoint online without the need to authenticate every time with ADFS (within specific period), usually the normal …

Continue reading ‘Enable Persistent Single Sign on (PSSO) for SharePoint online’ »

How to deal with Stopped deletion threshold exceeded error in AD Connect

Hello All, Today we will discuss very simple topic but sometimes it may confuse the IT Admins, this scenario happens when the Admin made a changes in the synchronization filtering by mistake, for example unselect one OU from OU filtering. AD Connect have a built in feature to prevent accidental deletion for the objects, when …

Continue reading ‘How to deal with Stopped deletion threshold exceeded error in AD Connect’ »

Azure ADConnect Export Failed with Permission-issue error (Insufficient access rights to perform this operation)

Hello Guys, while i am working in one of the ADConnect deployment, we faced an issue in the export operation with error “Permission-Issue” for some users as appears in below snapshot: from above console, when we clicked on the one of the effected users to expand the error, we got below snapshot with an error …

Continue reading ‘Azure ADConnect Export Failed with Permission-issue error (Insufficient access rights to perform this operation)’ »

Getting Started with Azure Active Directory Graph API

Hello Everybody, In this article we will discuss the concept of Azure Active Directory Graph API and how to start using Graph API. In local active directory, when any application integrated with local AD want to look up for objects in the directory it used Lightweight Directory Access Protocol (LDAP) in order to perform the …

Continue reading ‘Getting Started with Azure Active Directory Graph API’ »

Azure AD Pass-Through Authentication – Concept Overview

Hello Azure Lovers, In this Paper,we will discuss the concept of Azure AD pass-through authentication which will enable the organization to keep the users’ password in on-premises and redirect all cloud authentications to be against local active directory. To download the full document, visit Microsoft Technet: https://gallery.technet.microsoft.com/Azure-AD-pass-through-d0c97543  Ahmad Yasin is a Microsoft Cloud Engineer and the …

Continue reading ‘Azure AD Pass-Through Authentication – Concept Overview’ »

Office 365 [Solved] – Migration Permanent Exception: You can’t use the domain because it’s not an accepted domain for your organization

Hello folks, In one of our Migration projects from on-premises exchange to Exchange online (Office 365), we enabled Directory Synchronization using AD Connect tool, All on-premises users was synchronized to Azure AD successfully. After enabling Hybrid Configuration wizard, we migrated a lot of mailboxes without any issues, few number of mailboxes failed to be migrated …

Continue reading ‘Office 365 [Solved] – Migration Permanent Exception: You can’t use the domain because it’s not an accepted domain for your organization’ »

Understanding the Importance of MRS Proxy in Hybrid deployment Model – Office 365

Hello office 365 Admins, In one of the projects we worked on, we had an exchange 2013 servers and we tried to set up the hybrid configuration wizard (HCW) in order to migrate mailboxes to office 365, as usual we installed AD Connect and synced users to Azure active directory. All HCW prerequisites was met …

Continue reading ‘Understanding the Importance of MRS Proxy in Hybrid deployment Model – Office 365’ »