Warning: file_get_contents(https://login.microsoftonline.com/vaneijkenb2c.onmicrosoft.com/v2.0/.well-known/openid-configuration?p=B2C_1_DefaultSignInPolicy): failed to open stream: HTTP request failed! HTTP/1.1 403 Unauthorized in C:\home\site\wwwroot\wp-content\plugins\aad-sso-wordpress\Settings.php on line 169

Warning: Invalid argument supplied for foreach() in C:\home\site\wwwroot\wp-content\plugins\aad-sso-wordpress\Settings.php on line 173

Warning: file_get_contents(https://login.microsoftonline.com/vaneijkenb2c.onmicrosoft.com/v2.0/.well-known/openid-configuration?p=B2C_1_DefaultSignInPolicy): failed to open stream: HTTP request failed! HTTP/1.1 403 Unauthorized in C:\home\site\wwwroot\wp-content\plugins\aad-sso-wordpress\Settings.php on line 169

Warning: Invalid argument supplied for foreach() in C:\home\site\wwwroot\wp-content\plugins\aad-sso-wordpress\Settings.php on line 173
M van Eijken | Blog | (Hybrid) Identity & Access Management, Enterprise Mobility + Security, Azure

AAD Connect Multi-Domain Support Claim Rule Problems

Today I encountered that the multi-domain support ADFS claim rule generated by AAD Connect version is gives problems in some cases (version 1.1.486.0, april 2017). The rule configured by AAD Connect is as follows:

c1:[Type == "http://schemas.xmlsoap.org/claims/UPN"]
 && c2:[Type == 
2  

ADFS 3.0/WAP (2012 R2) to ADFS 4.0/WAP (2016) Upgrade Gotchas

With the introduction of the new version of ADFS in Windows Server 2016, Microsoft introduced the possibility to run ADFS in compatibility mode and to upgrade your existing configuration to ADFS 4.0 (2016).

Although the upgrade path, as described in …

0  

Set-AzureADUser password using a PasswordProfile in Azure Active Directory V2 PowerShell Module

As you may know Microsoft has the successor of the good old Azure AD Powershell Modules (now called v1) in preview: Azure Active Directory V2 Powershell Modules.

In the V1 version of the AAD PowerShell modules you could simply …

0  

Inter-forest Migration: How to use a “hybrid” ImmutableID when federating with Azure AD

Introduction

When you are working on an inter-forest migration in an environment that is integrated with Azure AD / Office 365 you should take care how to manage the ImmutableID. This has impact on how Single Sign On works with …

0  

Full Azure AD access without Credit Card in Trial

Imagine a situation where a customer wants to do a Proof of Concept (POC) with on premise Azure Multi Factor Authentication (Azure MFA server) and on premise Self Service Password Reset (SSPR). These services are included in the Azure Active …

0  

Azure On-premise Self Service Password Reset AD permissions

A couple of weeks ago I was working with a client in order to implement Azure Self Service Password Reset for on-premise Active Directory Users. This solution builds on the integration of Azure AD Premium and the local Active Directory. …

0  

First experience with Azure AD Connect Health Agent

In this blog post I’d like to share my first experience with the recently Microsoft released public preview of the Azure AD Connect Health Agent. The new Azure Cloud service that can be used to monitor the health of you …

1  

Using the SalesForce1 App with Azure Active Directory

One of the biggest apps on the Azure Active Directory Gallery is SalesForce. A couple of years ago ADFS SSO and identity provisioning to SalesForce was quite a new challenge, especially when multiple Salesforce Organizations and Portals are being used. …

Duplicate Mailbox issues migrating to Office 365

Recently I had some difficulties with an on-premise to Exchange Online mailbox move. This happened when executing the following command:

New-MoveRequest -Identity <mailbox> -remote -RemoteHostName “<on-prem-hybrid-fqdn>” -TargetDeliveryDomain “<tenant>.mail.onmicrosoft.com”

This resulted in the following error:
The operation couldn’t be performed because

Testing AAD Sync Beta 3

Microsoft is working on a new version of its identity synchronization software for the Microsoft Online services. In this blog I’d like to share my experience in testing this tool in my test environment.

As you may know is that …