rybal06
rybal06
I was able to get this working after granting the following To both "azure active directory graph" and "Microsoft Graph" Directory.Read.All - Application Read - directory data I still believe...
@navba-MSFT I have noticed that there is a deprecation warning while using the Az module cmdlets which interact with Azure AD that the Az module is being updated to use...
Have you done these two actions? 1. The Web App Resource Provider service principal "abfa0a7c-a6b6-4736-8310-5855508787cd" must have "Key Vault Secrets User" role on the certificate within the Key Vault. 2....
If I may add - the way this is implemented really makes hub and spoke DNS at scale difficult: It seems like we will need to pre-create centralized DNS zones...
Thanks. I also had worked with the Azure Policy team on this issue. It turns out implementing for static web apps is not possible using an Azure Policy based approach...
The workaround of also adding the domain name as a custom tag, and leveraging it in the Azure policy does work as expected. It is not super intuitive to our...
@matsest Thank you so much for sharing! I likely won't get back to this in the next few weeks, but it seems like a much more elegant solution than my...
I did a some more research, what is interesting is that this policy alias doesn't seem to work, otherwise this would be so much simpler! ```code Microsoft.Network/privateEndpoints/customDnsConfigs[*].fqdn ``` The value...
I am sure I am missing technical details here, but would it be feasible to leverage this extension alongside the Microsoft-Account extension? https://github.com/microsoft/vscode/tree/main/extensions/microsoft-authentication The Microsoft Account extension should be able...
Support cases have been opened and it looks like the product teams are starting to update built-in policies to now require TLS 1.3. It seems premature for the defender /...