Posts Tagged: Azure Active Directory

Working with the on-premises AD Recycle Bin

20th February, 2024

Generally in day to day identity management you would not often need to resort to the Active Directory Recycle Bin, but when you do, typically it is a high priority request and you find yourself having to reacquaint yourself with the commands you need. Accidental deletion scenarios Where we have seen the need to restore […]

Fixing Azure AD Join for Windows 10 Provisioning Package Error 0xCAA2000C

7th June, 2021

We are working with Declaration Software on their Windows 10 Workstation Migration Agent. The Workstation Migration Agent is capable of migrating Computer Accounts from On-Premises AD to Azure AD, AD to AD, and Azure AD to Azure AD. This includes migrating a Workstation where it has been Azure AD Hybrid Joined and instead making it […]

Conditional Access and Hybrid AD Join

19th February, 2021

It is quite common to use the Hybrid AD Join device state as part of Conditional Access. Whilst it isn’t as strong a Require Compliance Device, it is much easier to attain in an existing estate with mixed hardware. If you’re having trouble getting the device the Hybrid AD Join, or to show AzureADPrt = […]

Troubleshooting Hybrid AD Join

19th February, 2021

Hybrid AD Join is often used for Windows devices that are joined to an Active Directory domain, and that also need to be joined to Azure AD to provide a level of trust in the device and its management. First of all familiarise yourself with these articles https://docs.microsoft.com/en-us/azure/active-directory/hybrid/how-to-connect-sso-quick-start https://docs.microsoft.com/en-us/azure/active-directory/devices/hybrid-azuread-join-managed-domains At a high level they say […]

SharePoint visible to unlicensed users

31st December, 2018

As the title says there is a little known ‘feature’ in SharePoint.  Basically SharePoint has no licence associated with it.  Any users created in your Azure AD will have access to SharePoint as along as the SharePoint permissions allow it.  So if you use the All Users excluding Guests then even an unlicensed user in […]

The Groups Dilemma – post migration

27th February, 2018

Today a client that we had previously migrated off Lotus Notes asked us about applying Groups to their Shared Mailboxes in Office 365 but ensuring that the Shared Mailbox Owners had the ability modify those Groups to provide access. This blog very much goes hand in hand with this blog I wrote on Shared Mailboxes, […]