Azure
There have been some recent feature additions to Azure AD Connect. If we look at the Azure AD Connection Version History after a brief hiatus, there are newer versions as of March 2021. At the time of witing, the latest version is 1.6.4.0 and was released on the 31st May 2021.
There are multiple new features and changes in this build.
As more people are starting to use the Exchange Online V2 module (yay!), there are some new and different issues appearing.
In this case, the command to connect to the tenant was failing when App-Only authentication was used. A certificate was installed onto the machine where PowerShell was running.
The command used is shown followed by a glorious error.
Error Acquiring Token:
System.Exception:… Read the rest “Exchange Online App-Only Authentication Error AADSTS70011 Invalid Scope”
The days change, but sometimes the issues stay the same. This is a redux of an existing post where there was an issue back in 2016 when I was not able to easily re-create a VM in a different Availability Set. As you can see in Create Azure RM VM Using Existing VHD – 250 Hello (rmilne.ca) PowerShell was used to re-create the VM as it allowed all of the resources to be specified.
The original VM was… Read the rest “Create Azure Az VM Using Existing UnManaged VHD”
The below is from a customer situation where an Azure Network Security Group (NSG) firewall rule entry was not working as they expected. This was was created to allow RDP connectivity for some of their test servers.
However they were not able to connect to the server, and were being blocked by the NSG.
Ideally we do not want to allow RDP to our Azure VMs are there are more secure methods such as cli… Read the rest “Azure Firewall Rule Not Working – Orange Triangle”
The default option for DNS resolution on an Azure virtual network is to use the Azure DNS service. This is perfectly fine for regular Internet requests, if you need the capability to register internal DNS records for Active Directory then you will typically need to run your own DNS service. This is the case here and is also something observed with multiple customers. In each of these cases the … Read the rest “Intermittent Azure DNS Resolution Issues With With New Domain Controller”
When you try to install a PowerShell module or connect to the PowerShell Repository you may get the below error messages:
WARNING: Unable to download from URI 'https://go.microsoft.com/fwlink/?LinkID=627338&clcid=0x409' to ''.
WARNING: Unable to download the list of available providers. Check your internet connection.
For make most glorious benefit engine of search:
PackageManagement\Install-Packag… Read the rest “Unable To Install PowerShell Modules – Unable To Download From URI Error”
This post is for those customers who continue to run outdated and legacy versions of the synchronisation tools to connect on-premises Active Directory to Azure Active Directory. It was noted back in April this year that legacy versions of the synchronisation tools should be updated to a supported version of Azure AD Connect. Preferably the latest available version.
If for any reason this was not d… Read the rest “Still Running DirSync and AAD Sync–Really Time To Update”
This is one of those silly little things that comes along every so often just to mess with your head, and to cause some issues. Of course it has to happen at a time when you really want to connect to the remote machine and do some work.
This week I was at a training event for internal Microsoft engineers, and when back at the hotel I tried to connect to one of my Azure based lab VMs. As you may i… Read the rest “Unable to RDP to Azure VM From Hotel WiFi”
In the previous post Load Balancing Azure AD FS Services we looked at using Azure RM to deploy and load balance AD FS services. This is the follow-up post to deploy the Web Application Proxy (WAP) servers and its associated load balancer into the DMZ.
In this post we will focus upon the highlighted area in the below diagram. The additional components were previously deployed, for details please … Read the rest “Load Balancing WAP In Azure RM”
Depending upon how your organisation has deployed Azure there may or may not be a need to have RDP access to Azure VMs from the Internet. In cases where there is a site to site VPN (S2S) the S2S VPN will typically be used to access VMs. Traffic will be routed from the corporate network over the S2S tunnel to the VMs. Client VPN may also be provided in some companies as an alternative.
Should the… Read the rest “External RDP Access To Azure RM VM”