Dan

  • Resolve ‘DeletingCloudOnlyObjectNotAllowed’ Sync error

    ·

    We will be looking at multiple reasons why you may run into ‘DeletingCloudOnlyObjectNotAllowed’ sync error in Entra connect sync health and how to resolve this sync error. Symptoms Error in Microsoft Entra ID You might receive emails about sync error via the Entra connect health. This then can be checked under Microsoft Entra ID >…

    Read More

  • Unable to delete Microsoft Authenticator. – Another object with the same value for property proxyAddresses already exists

    ·

    We will be detailing the cause and the fix to any of the three below errors when trying to add or delete authentication methods. Symptoms User trying to add new Authentication method – possibly Microsoft Authenticator app The user will see ‘Uniqueness validation’ error message in their Microsoft Authenticator app when attempting to register new…

    Read More

  • Fix “Unable to save the changes” error in System-preferred MFA

    ·

    You might run into the weird error ‘Unable to save the changes’ when changing the setting under Authentication methods for Report suspicious activity or System-preferred multi factor authentication. You could enabling it or disabling it or setting it to Microsoft Managed. Frustrating part to this error is that it doesn’t tell us much, and there…

    Read More

  • Change the Default MFA Method of a User via Graph PowerShell

    ·

    This article will outline the steps to change the default MFA sign in method of a user or multiple users in bulk via Microsoft Graph Powershell Module. What is a default sign in method ? Setting a method as default means it will be the method automatically shown to the user when the user must…

    Read More

  • Enable CloudPasswordPolicyForPasswordSyncedUsersEnabled via Graph PowerShell module

    ·

    In this article, we are outlining the steps to enable ‘CloudPasswordPolicyForPasswordSyncedUsersEnabled’ for syncing users using both Microsoft Graph PowerShell module and MSOnline module. When using password hash synchronization with Microsoft Entra Connect Sync, by default, all users that are in sync scope are synced with password set to Never Expire in cloud. This means that the…

    Read More

  • How To Hard Match Users In Entra Connect Sync

    ·

    This article will detail the steps to manually hard match users using the newest Microsoft Graph PowerShell module, and also the deprecated MSOnline module. Microsoft doesn’t details on how to manually hard match users in case soft matching fails via Entra connect sync (Azure AD connect). When you sync with Entra connect sync, it checks…

    Read More