Azure

Microsoft Azure is a cloud computing platform and infrastructure for building, deploying and managing applications and services through datacenters. It provides both platform-as-a-service (PaaS) and infrastructure-as-a-service (IaaS) services and supports many different programming languages, tools and frameworks, including both Microsoft-specific and third-party software and systems. Cloud Services is a PaaS environment and can be used to create scalable applications and services; there are specific software development kits (SDKs) provided by Microsoft for Python, Java, Node.js and .NET. Azure also has file and storage services, data management, analytics and DNS services.

Share tech news, updates, or what's on your mind.

Sign up to Post

Hello,

I have enabled Multifactor Authentication using phone authentication for a user in the Office 365 portal.  

I am able to use the new app-code to sign to Outlook and OWA.  

My email account in my mobile phone still using the old password I think.  How is the new MFA app-code being applied to it?

Also, how do I enable MFA for group of users?  

Thanks.
0
My company is creating a new asp.net MVC Web App in Azure that will eventually also include Web API.  Azure AD does not look like it will meet our needs. From what I have read, it looks like creating a separate Web App using IdentityServer would be the right path as it would be able to handle authentication requests from both a browser and web service calls.  And could possibly be used in the future by other Web Apps.  It also seems like it is the most customizable.

The authorization model for our users will be a bit complicated.  Each user will be associated with one or more Agencies and have a different set of permissions within each Agency.  For example, Anna may be authorized to write policies, file a claim and view statements in the Jana Agency but only view statements in the Ava Agency.

Can anyone please tell me if this sounds like the right approach?  If not, could you please make some suggestions?
0
Good day everyone, I want to extend my on premise AD to Azure as part of a DR roll out for a client who only has a single on premise server, Azure is up and running and Azure VM is active, i have tried to follow the steps in this article but the Azure menus have changed and i cant find where to Register my on premise server as a DNS server in Azure

https://blogs.technet.microsoft.com/keithmayer/2013/01/20/step-by-step-extending-on-premise-active-directory-to-the-cloud-with-windows-azure-31-days-of-servers-in-the-cloud-part-20-of-31/

Does anyone have a more updated guide, these steps show a much older version of Azure.

Thank you
0
Please provide me with instructions on how to setup file history backups of domain laptop files using Server 2016 Group Policy.
0
Nextcloud version : 12.0.3
Operating system and version : CentOS 7.4.1708 (Core) In combination with Windows Server 2016
Can I reliably replicate it?: Yes, when opening a file from the WebDAV share it keeps asking me for a password.

The issue I'm facing:
When opening a file from the WebDAV share it keeps asking me for a password. Logging off and on results into a disconnected share. I make use of a working LDAP connection.

What I have tried already:
I have enabled basic authentication according to Microsoft’s documentation.
I created a reg key to add an AuthForwardServerList to my NextCloud link.
I have added the website to the trusted websites in IE.
Browsed the forums to find out related problems but none worked or were applicable.

The output of my Nextcloud log: No specific related log

I thank you in advance for helping me out troubleshooting.
0
I will soon be deploying Office 365. I have a volume of users who will have their AD identity synced to Azure AD however they will not be getting the full O365 license. I still want them to be able to use Yammer, is this possible or do I have to give them a full license?
0
Hello Experts,

I’m in the process of setting up our backup policy with Azure. I’m using Azure Recovery Services Vault. I have setup our retention (Recovery Point Objective) policies without any problem,  see image. However, I’m not sure what I need to do to configure our RTO.
Can someone let me know where to configure our RTO?

backup
Regards

Carlton
0
Hi,

At office 365 azure ad console, some users have 51005 error  and no more info. I opened a tiket to MS but  no more info was sent back.

Any idea?

We are using PTA agent configured.

Regards
0
We have a SQL server and with the domain administrator account, everything works fine.  But with any other user, even one set as domain or machine administrator, the start button does not work and neither does the search or the task view button.  Also if you click on the time, nothing happens as it would normally show the calendar.

A few days ago, we had a software company have remote access to try and fix an issue with the software they use which uses the SQL database.  They made some registry changes (I believe permissions) and they said they changed it all back to what it was.  However, this issue has been since they were in it.  I have no clue as to what got changed and cannot seem to fix the issue.  Even created a new user as member of domain admins and same thing...
0
We are trying to develop an Insurance Agent Web Portal using Azure and have some fairly complicated requirements for our Users/Agents:  We want each Agent to only have one login ID/password but they may be associated with multiple agencies and their security levels may vary based on the agency.

For example, the Agent Bob may be authorized to access the Portal for Agency XX and also Agency YY but for Agency XX he should have admin level privileges but for Agency YY he should only have Basic privileges. Once Bob logins in, we would like to present a screen to him so he can choose which Agency he is currently working with and then later he can switch to the other agency.

I realize this is probably not built into either Azure AD or asp.net Identity but any suggestions about which one might be a good starting point would be appreciated.
0
Hi Experts,

I'm getting stuck on creating site to site with ASA 5505 and Azure.

ASA IOS: 9.1(6)10.  (On-prem network 192.168.1.0/24, public ip: 64.95.x.x

Azure Resource mode using route based.

I created the virtual network: JKSVNetwork address space - 10.1.0.0/16, subnet 10.1.0.0/24 and gateway subnet 10.1.1.0/24. Created vitural network gateway and got the public ip address. (13.92.x.x). Created Local Netwok Gateway and setup the onprem public/network ip to. Then i created the connection and setup the preshared screat.. It's waiting for connection...

On the ASA side i change the information and update the information. Below see below configure. I believe i have did it correctly but i can't see to establish the connection. Status on azure portal would switch to connecting and succeeded but won't show it's connected. Can anymore help verify if my config or steps are correct?

Result of the command: "show run"

: Saved
:
: Serial Number: JMX1225Z1C9
: Hardware:   ASA5505, 512 MB RAM, CPU Geode 500 MHz
:
ASA Version 9.1(6)10
!
hostname JKSASA
domain-name jksxxxx.com
enable password xxxxxxxx encrypted
names
!
interface Ethernet0/0
 switchport access vlan 2
!
interface Ethernet0/1
!
interface Ethernet0/2
!
interface Ethernet0/3
!
interface Ethernet0/4
!
interface Ethernet0/5
!
interface Ethernet0/6
!
interface Ethernet0/7
!
interface Vlan1
 nameif inside
 security-level 100
 ip address 192.168.1.1 255.255.255.0
!
interface …
0
Hello Experts,

I'm about to embark on learning curve to create resources in Azure with Terraform. At present, like so many others, I use ARM templates in resource manager portal to create resources.

With TerraForm creating resources in all command line driven, whereas creating resources in the portal is GUI.

Can someone let me know if its possible to create resources from within ARM (using the portal) to create resources with TerraForm?

Cheers

Carlton
0
Hello everyone,

can you please share what you know about azurebackup. we are running commvault and can move commvault to azure, how ever I'd like to check on other options, maybe something not as expensive that can be used with azure

we backup the usual, SQL DBs, SharePoint, exchange (o365), VMs.

thanks alot
0
Hey all, I have 2 Server 2016 servers running DA. Remote clients connect to DA fine, and are able to browse the internal network. The issue that I am having is the clients are not registering in my DNS, therefore some other functionality is not working.

Any ideas on what I need to do to get them to register?
0
I'm trying to get Azure AD to generate SAML tokens to allow login for an external website (not using Azure in any way)
However, I think I don't get some of the basics here? I know SAML/IdP/RP/SP but I don't find the right menus/settings in Azure AD?

I've got a website like:
  www.mysite.com/login-page 
to which, normally, end users browse (http) and then automatically/immediately are redirected (GET) to something like:
  www.idp-service.com/mysite-SSO

There they use a login form to supply username/password (unless they are already logged in to the idp-service), and they are then redirected (POST) to:
  www.mysite.com/logged-in-page
with a SAMLResponse that contains a token that mysite.com may use to allow the end user access. And everyone are happy :-)


However, now I'd like to stop using idp-service.com and instead use Azure AD.

Thus, I bought a "Azure Premium" account and created an "app registration", where I entered:
  Home page URL: www.mysite.com/login-page
  Reply URL: www.mysite.com/logged-in-page


Now, when "starting the external app" from the Azure portal, I do get redirected to this mysite page - but I then of course need some URL to redirect the user back to the Azure IDP again, to request a SAML token.
I understand that I probably should use some endpoint URL with parameters "client_id" or similar, but I honestly cannot understand how to find/determine the correct URL?
Also, how do I get hold of the (public) certificate that I should …
0
We have a client with Exchange 2016 CU6 on Windows Server 2016.
Single Exchange server install

We have had several issues, regarding EWS, FreeBusy/OOF and so on.


Eventlog shows: Event ID 1325 Error message, from ASP.NET 4.0.30319.0

We have tried upgrading to Exhange 2016 CU7, but the error continues.

The only thing on the web, as we can find, is a thread, referencing it here:
250 Hello Blog: Exchange 2016 CU6 Released
There is also a link to the partner support forum, but not a conclusive solution:
Partner Forum

Any help would be appreciated.


An unhandled exception occurred and the process was terminated.

Application ID: /LM/W3SVC/2/ROOT/EWS

Process ID: 10820

Exception: System.TypeLoadException

Message: Could not load type 'Microsoft.Exchange.WebServices.Data.OfficeExtension' from assembly 'Microsoft.Exchange.WebServices, Version=15.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35'.

StackTrace:    at Microsoft.Exchange.Data.ApplicationLogic.Extension.EwsOrgExtensionRetriever.<>c__DisplayClass10_0.<Retrieve>b__0()
   at Microsoft.Exchange.Data.ApplicationLogic.Extension.OrgExtensionTable.ExecuteWebServicesAction(Action webServicesAction)
   at 

Open in new window

0
I have two server 2016 std, one domian controller and one fileserver.
The fileserver have RRAS installed to.
The users would like to access the servers from internt as they did in the old SBS2011 server.

What would happend if i install the Essentals Experience Role on the Fileserver, would that have any negative impact on the setup?
Is there any other drawback to this?
0
Hi,

I have captured a W10 image (image 1) to our WDS2016. The image has never been added to the domain before a sysprep.

I just wonder why after installing from the image1 it gets added to the domain automatically?

Also how can I avoid that?

Cheers
0
I am running a risk at present with on site servers. I would like to get them to s secure location either in a private or public cloud. I am interested to hear from people who have travelled this journey and are familiar with the pitfalls. The private cloud option is costly as there is the initial outlay of multiple VMware hosts a SAN, back software /device and the usual network redundancy. I have multiple sites all with on prem servers.

I am not up to speed with Azure and will obviously engage with a partner. At a high level what are we looking at e.g setup DC's in azure and then deploy VM's as required? thoughts?
0
I have SMTP setup on windows server 2016 for our intranet - working fine.

I would like to be able to use the intranet SMTP service from an external website (on 3rd party host) to send emails from the website.

Looking for guidance in setting this up.
Thanks.
0
I am currently hosting an API as an Azure App service. But I want to move it into my Virtual Machine and run it in IIS.
I already set it up as I would with any website but for some reason the page does not come up. Is there anything in specific I need to do to run the service?
0
Hi Guys,

I am wondering if anyone can help with a weird issue with have with a newly installed 2016 Essentials server. Folder redirection is setup and seems to be working and users are able to login download items, copy files/folders to their profiles ie desktop, documents and open the contents fine.

However, if we copy a file from another location ie a USB hard drive, we are unable to open the file as it claims that it is corrupt. If we copy said file or folder to the root of C: we can open this file absolutely fine. If we then copy the file from the root of C: to the the desktop it opens fine. On other machines, if we copy it to the root of C then to the documents redirection folder it fails to open, but if copied to the redirected desktop (it opens fine) then to the redirected documents folder (from the desktop) it opens fine.

The folder permissions are detailed below

ServerFolders > Folder Redirection
The owner is System
System - Full control
Domain Admins - Full control
Domain Users - Read & Execute/List Folder Contents/Read/Special Permissions
Administrators - Full control

ServerFolders > Folder Redirection > TestUser
The owner is TestUser
System - Full control
Domain Admins - Full control
Domain Users - Read & Execute/List Folder Contents/Read/Special Permissions
Administrators - Full control

Can any one help?
0
My organization has two Wi-Fi networks.

The secondary Wi-Fi network has no connectivity to the domain controllers.

Some of the organization's users like to connect to the secondary Wi-Fi network since it has faster speeds than the primary Wi-Fi network.

Now that all of the laptops in this organization have been added to a domain we are having problems when some of the laptops that are connected to the secondary Wi-Fi network receive error messages when the users try to logon with their domain accounts saying that the domain controller can't be reached and therefore the users are unable to logon to their laptops with their domain accounts.

What kind of policy or setting can be changed so that these users will be able to logon to their laptops with their domain accounts even when the domain controller can't be reached?
0
Hi,

Have abit of an issue at hand.

We recently aquired a contract with a new company. We are in the process of migrating all their data over to our datacenter.

Issues
What should be done and what have happened.

The existing company had an tenant in O365 with Azure AD connect running. All users from their local AD appeared in O365 for SSO.

I set up an Azure AD connect that is running through a proxy in DMZ.

When we reached the cutoff time, and started to move all their stuff to our datacenter we got an issue.

ADFS is reconfigured to use our system and our ssl token certificate
The Azure AD service is running.
Local AD is set up and have the same UPN name as existing UPN in O365 tenant.
Azure AD services report success for connection and synch to O365.
In the Full import i notice that all the users appear as deleted and not added.
In the O365 it sync still towards the "old" sync server.

As of now it seems the sync appear to start fine and somehow reports that the users will be deleted before reaching the O365.

So some questions :

Is there some logging (or where to find) for the sync it self and why it deletes the users before O365 ?
Is there some O365 settings to specify where the sync should be ?

All hints and tips are extremely welcome........
0
im trying to recover a previous version of a folder. its telling me i do not have correct permissions. however, i am a domain admin and domain admins are part of the local administrators group.
network-error.JPG
0

Azure

Microsoft Azure is a cloud computing platform and infrastructure for building, deploying and managing applications and services through datacenters. It provides both platform-as-a-service (PaaS) and infrastructure-as-a-service (IaaS) services and supports many different programming languages, tools and frameworks, including both Microsoft-specific and third-party software and systems. Cloud Services is a PaaS environment and can be used to create scalable applications and services; there are specific software development kits (SDKs) provided by Microsoft for Python, Java, Node.js and .NET. Azure also has file and storage services, data management, analytics and DNS services.