New phone what about Multi Factor Authentication(MFA) in Azure?

Do you know the feeling of loosing your data when buying a new phone? Just before the holidays i decided to buy a new phone. Traditionally i’m a Apple fanboy for year, started with the iPhone 1. My last device was a iPhone 7 with the Apple Watch series 2.

After some research in what i actually wanted/needed the OnePlus 6T was the best option for me (cost/performance).

Because i’m using the Microsoft Authenticator for quite some time and have most of my MFA accounts in there it was time to change all of the accounts. I’m using Office365 a lot, so i will describe how to this for your Azure account.

Continue Reading

How to create trusted network for MFA in Office365

What is MFA?

Multi-factor authentication (MFA) is a method of authentication that requires the use of more than one verification method and adds a second layer of security to user sign-ins and transactions. You can choose the following verification methods:

  • A randomly generated pass code (Microsoft Authenticator App or SMS)
  • A phone call
  • A smart card (virtual or physical)
  • A biometric device
Continue Reading

Unable to process this synchronization cycle in Azure Active Directory because the object deletion threshold was met or exceeded

I was using a full sync of my local AD. Later i changed this to use only the Users OU (due to some IDFix issues in other OUs) I noticed updates did not changed anything in my Office365 portal anymore. So i Checked my event viewer on the domain controller and noticed some errors.

Failure while provisioning entries to Windows Azure Active Directory. More details at Exception: Unexpected exception thrown. Action: ExportV1, Exception: An error occurred. Error Code: 95. Error Description: Unable to process this synchronization cycle in Azure Active Directory because the object deletion threshold was met or exceeded. Tracking ID: acc4bade-2fc6-41cb-9187-32e7b89170e3 Server Name: ..

The sync was giving problems due to my change of Synchronization. By a default install of Azure AD Connect, prevent accidental deletes is enabled and configured to not allow an export with more than 500 deletes. This feature is designed to protect you from accidental configuration changes and changes to your on-premises directory which would affect a large number of users.

Try the following steps to disable “Prevent Accidental deletionstemporarily:

  • Open PowerShell on Azure AD Connect server.
  • Run “Import-Module ADSync”.
  • Disable this feature by running the command “Disable-ADSyncExportDeletionThreshold”.
  • Use your Office365 Admin credentials
  • Now start a initial sync with the following command: Start-ADSyncSyncCycle -PolicyType initial

After all the updates are synced to Office 365, please enable it again referring to the following PowerShell cmdlets:

  • Open PowerShell on Azure AD Connect server.
  • Run “Import-Module ADSync”.
  • Run “Enable-ADSyncExportDeletionThreshold“. You will be prompted to input an Office 365 admin credential and the number of threshold. (Default 500)

A Complete List of Microsoft Azure Tools

I just needed all of the Azure links in one page for connecting, troubleshooting etc.. Please let me know if you miss something!

Management & Monitoring Tools

  • Azure CLI (by Microsoft) – provides a set of open source, cross-platform commands for working with the Azure Platform. The Azure CLI provides much of the same functionality found in the Azure Management Portal, such as the ability to manage websites, virtual machines, mobile services, SQL Database and other services provided by the Azure platform.
  • Azure Management (by Microsoft) – the current version of Microsoft Azure management portal.
  • Azure Portal (by Microsoft) – the next version of Microsoft Azure management portal.
  • Azure Management Studio (by cerebrata) – one tool to manage your Microsoft Azure cloud storage, diagnostics data and application workflows
  • Azure Management PowerShell Cmdlets (by cerebrata) – cmdlets that streamline your Microsoft Azure workflow with PowerShell
  • Azure PowerShell (by Microsoft) –  Azure PowerShell is a module that provides cmdlets to manage Azure through Windows PowerShell. You can use the cmdlets to create, test, deploy, and manage solutions and services delivered through the Azure platform.
  • Azure Resource Explorer – Azure Resource Explorer is a web site where you can easily discover the Azure Resource Management APIs, get API documentation, and make actual API calls directly in your own subscriptions (read more).
  • Azure Script Center
  • Bitnami Cloud Tools for Microsoft Azure – Bitnami Cloud Tools will help you manage and monitor your Azure cloud deployments.
  • cloudmonix – Monitor, auto-scale and automate Cloud Services, VMs, SQL Databases, Web Apps, Automation, Storage, Service Bus, Virtual Networks and more
  • New Relic for Azure – New Relic is now integrated into Microsoft Azure, giving you instant visibility into web and mobile apps, and see insights.
Continue Reading