FIX: Adding server to local domain This device is joined to AzureAD

Windows Server 2022 and Azure AD joined… I’ve never worked with Windows Server 2022 before and it’s been a while since I’ve worked on a server at all, but for a new feature within our product I needed an on-premise or hybrid environment with a Domain Controller and Hybrid Worker (Azure Automation).While adding my Hybrid … Continue reading FIX: Adding server to local domain This device is joined to AzureAD

FIX: Configuration issue is preventing authentication Azure DevOps

Renewing the Azure DevOps Service Connection key You know that when something goes wrong, everything seems to go wrong? …Configuration issue is preventing authentication Azure DevOps… I had one of those days last week.We were in consultation and I knew there would be a rollout of a new customer. I got a call that the … Continue reading FIX: Configuration issue is preventing authentication Azure DevOps

How to upload files to SharePoint with MS Graph API and PowerShell

Uploading files to OneDrive or SharePoint through the Microsoft Graph API with PowerShell In the tutorial below I explain how you can upload files to SharePoint sites including to child directories. There is no way in the tutorial how to do this directly with the Microsoft Graph API URLs. I have written a cmdlet in … Continue reading How to upload files to SharePoint with MS Graph API and PowerShell

How to download files from SharePoint with MS Graph API and PowerShell

Get SharePoint Files in a site and download them to your local device In the tutorial below I explain how you can request all files from SharePoint sites including child directories.You can also download them right away. There is no way in the tutorial how to do this directly with the Microsoft Graph API URLs. … Continue reading How to download files from SharePoint with MS Graph API and PowerShell

How to get the AzureAD AuditLog with the MS Graph API and PowerShell

Auditlog in AzureAD and PowerShell Azure AD contains a lot of audit logging. All kinds of audit logs are written in Azure AD, which are stored for 90 days by default.You can call these logs with the Microsoft Graph API. In the blog below I’m going to explain how to get a list of audit … Continue reading How to get the AzureAD AuditLog with the MS Graph API and PowerShell

Delegated permissions with a Client Secret by adding roles to a Service principal

AzureAD Apps & Service Principals Within Azure AD you have App Registrations. You can do a lot with App Registrations. I mainly use it for automating tasks. Application or Delegated Permissions? A big disadvantage is that you cannot always choose Application Permissions with API Permissions. Here you can only choose Delegated Permissions. For example, the … Continue reading Delegated permissions with a Client Secret by adding roles to a Service principal

How to get AzureAD Users LastLogin for stale accounts PowerShell

Which property comes closest to the LastLogin property? LastLogin is an attribute known from Active Directory, but this property is not present in AzureAD. Property RefreshTokensValidFromDateTime is closest to the LastLogin property. This property determines how long the token is valid for the last Login and when the local token must renew. Unfortunately this is … Continue reading How to get AzureAD Users LastLogin for stale accounts PowerShell

How to get AzureAD Group Members nested groups in PowerShell

Why would we put groups in groups? Groups in groups is used by enterprise companies that have main groups for, for example, Group based Licensing in AzureAD. And there are many more examples to mention.The disadvantage of groups in groups is that at a certain point you no longer know whether someone is in the … Continue reading How to get AzureAD Group Members nested groups in PowerShell

FIX: Get-AzureADGroupMember: Error occurred while executing AddGroupMember

Message: One or more added object references already exist for the following modified properties: ‘members’. This is very specific, but I received the error message below after I tried to add users to an AzureAD group, after I first emptied the group. Do you recognize this?Then this blog post will help you. Let’s “Fix” this … Continue reading FIX: Get-AzureADGroupMember: Error occurred while executing AddGroupMember

New Conditional Access Policy “Require MFA for admins (Preview)” will be enabled in the future.

“Baseline policy: Require MFA for admins (Preview)” the basics. There is a new Policy in Azure AD “Require MFA for admins (Preview)”. It is a policy in preview status that is enabled by Microsoft unless you set it yourself on turn off. The Policy is not yet active. It will not be long before Microsoft enables … Continue reading New Conditional Access Policy “Require MFA for admins (Preview)” will be enabled in the future.