Azure ACS & Office 365

Similar Messages

• Windows Azure and Office 365 Enterprise Integration

  Hi all
  Not sure if I got the right forum.  Can anyone point me to installation documentation, to setup an Azure cloud and Office 365 Enterprise?
  Thanks.

  Hi,
  I would request you to refer this link and check if it helps:
  http://weblogs.asp.net/scottgu/windows-azure-and-office-365
  Regards,
  Azam khan

• Recently Added Office 365 Domain to Azure

  We just signed up with Azure and I'm in the process of building it out. We also have an existing Office 365 subscription which we use primarily for email (Exchange 2013 in Office 365). The trouble is that I'm fairly new to Office 365 and a complete noob
  when it comes to Azure, so everything I'm doing to get these two worlds to talk is self taught (we do not have support).
  In an effort to get a head start, in Azure, I have built two servers to be designated as domain controllers and two servers to be designated as application servers; a total of four virtual servers now exist in Azure.  I installed the respective roles
  on each of the servers.
  This morning I finally managed to understand how to link our existing Office 365 domain to Azure; the Office 365 directory now exists in Azure.  Subsequently, I attempted to promote the two virtual servers to domain controllers in the recently added
  directory to no avail.  When I begin the promotion, I select the option to
  Add a domain controller to an existing domain, enter the domain name (Office 365) and the domain admin creds, and then I'm met with the following error:
  An Active Directory domain controller for the domain "name of domain" could not be contacted
  Basically, when I attempt to add this to server to that domain I'm met with an error that no domain controller exists or if I attempt to promote the server to a domain controller I'm met with the error above.  How do I get around it?  How can I
  successfully add either of the newly provisioned virtual servers to the domain?
  Any help you can offer would be great!

  Marcin is correct.
  For better understanding, imagine Windows Azure Active Directory as an Organizational Unit (OU), in which you can manage user accounts and groups, but no any computer accounts. WA AD is for handling authentications, and because Office 365 (which is a SaaS)
  authenticates with WA AD, and an Azure subscription is also using WA AD object for authentications, you can import WA AD of an Office 365 subscription into Azure.
  On the other hand if you build your own network and infrastructure in Azure, and needs a Domain Controller, you need to install a VM with Active Directory Domain Services role.
  Regards,
  Tibor Veszprémi
  Systemfarmer

• Cannot connect to Office 365 using Powershell on Windows 7 SP1

  Hi,
  I was trying to connect to Office 365 using windows azure active directory module for Windows Powershell.
  $Cred = Get-Credential
  Connect-MsolService -Credential $cred
  It failed on my windows 7 machine with the error
  Connect-MsolService : Unable to authenticate your credentials. Make sure that your user name is 
  in the format: <username>@<domain>. If this issue persists, contact support.
  This issue happened in Windows 7 SP1 OS.
  But, when I tried the same thing on a Windows 2008 R2 VM, it connected successfully.
  This means that the account I was trying to login does have the permissions.
  Both the machines ( windows 7 and windows server 2008 R2) have the following pre-requisites installed:
  Install Microsoft Online Services Sign-in Assistant: http://www.microsoft.com/en-us/download/details.aspx?id=39267
  Windows Azure Active Directory Module for Windows PowerShell (64-bit version) 
  I checked for other settings needed for this to work at :
  (Though these settings are for Windows 8, I have all these settings in Windows 7 as well)
  http://community.spiceworks.com/how_to/show/45453-how-to-prepare-a-windows-8-64-bit-pc-to-manage-windows-azure-ad-office-365-using-windows-powershell 
  Can someone please tell what is going wrong on my Windows 7 SP1 environment.
  Thanks,
  Gagan
  Gagan

  Hi,
  Have you install installed .NET Framework 4.5 and Windows Management Framework 3.0 on Windows 7 Service Pack 1 (SP1)?
  Please go through the below article to know more about what is the requirements to Connect to Exchange Online Using Remote PowerShell:
  http://technet.microsoft.com/en-us/library/jj984289(v=exchg.150).aspx
  In addition that, hope the below link be helpful:
  Connect-MsolService : Unable to authenticate your credentials. (Wrong WebServiceUrl value in Registry)
  http://jesperstahle.azurewebsites.net/?p=42
  Regards,
  Yan Li
  Regards, Yan Li

• Essentials Experience on member server - Office 365 Integration

  A. Windows Server Essentials Experience on 2012 R2
  B. Office 365 (existing subscription)
  Attempt to run wizard for integration with Azure AD/ Office 365 results in "This task must be performed on the domain controller".  At this stage there is only one, has ever only been one, domain controller in the forest.  Fresh
  install of a DC, no previous Essentials components ever existed.
  So, how do you run the integration components on the DC?
  DC doesn't have the wizard links in the %systemroot%\System32\Essentials directory.  Attempting to run it over the network fails (accessing via Explorer).  I hesitate to install DIRSYNC to the DC or any other components, thinking it won't have
  the Dashboard integration (required).  Can't find documentation of the configuration anywhere, but WSEE is supported as a member server, so why is there only documentation for installation to a DC?  Even tried using remote dashboard access, obviously
  this failed miserably because the remote dashboard is just a RDS published app.
  Tried the Office 365 folks asking if they had any documentation for the process, met with "contact the WSE team, not an Office 365 issue", even though it's a connector to their setup, and at least they could have something to indicate whether it's
  supported or a "how to".  Nada on TechNet, it all refers to the Essentials server, not Essentials Experience.  Bing search spits out lots of references to the articles about WSEE on domain member support, but nothing about features within
  WSEE supported on a domain member.

  I just built this up in Azure.
  1 DC VM
  1 Essentials VM (member server w/Role)
  I can confirm i see the same behaviour.
  This is an error from PowerShell which explains perhaps, a little more:
  PS C:\Users\dfunk.TR> Enable-WssIntuneIntegration
  Enable-WssIntuneIntegration : The service can only be integrated on Essentials server running as single domain
  controller in the network.
  At line:1 char:1
  + Enable-WssIntuneIntegration
  + ~~~~~~~~~~~~~~~~~~~~~~~~~~~
  + CategoryInfo : InvalidOperation: (:) [Enable-WssIntuneIntegration], InvalidOperationException
  + FullyQualifiedErrorId : InvalidOperation,Microsoft.WindowsServerSolutions.Administration.EnableWssIntuneIntegrat
  ion
  So, it would seem that these integration features are currently, only applicable to an Essentials network with a single DC, but when that DC is also the Essentials Server.
  If only we had bugged it in the recent past..
  Robert Pearman SBS MVP
  itauthority.co.uk |
  Title(Required)
  Facebook |
  Twitter |
  Linked in |
  Google+

• Office 365 ECT to Azure Cannot connect to the LobSystem (External System)

  I've tried to set up External Content Types to an Azure SQL database but when I access my page I get an error.
  I basically followed http://www.pointbeyond.com/2012/12/31/surfacing-data-from-sql-azure-in-sharepoint-2013-online-office-365
  Can you help me work out what i've not done, I don't know where to configure Azure firewall as this message suggests. The error is below:
  Cannot connect to the LobSystem (External System). Reason: 'Cannot open server 'uf7prto4sj' requested by the login. Client with IP address '157.55.225.241' is not allowed to access the server. To enable access, use the Windows Azure Management
  Portal or run sp_set_firewall_rule on the master database to create a firewall rule for this IP address or address range. It may take up to five minutes for this change to take effect. Login failed for user '*REMOVED*'. This session has been assigned a tracing
  ID of '9389a67c-dc78-4134-9167-545ec963be3a'. Provide this tracing ID to customer support when you need assistance.'
  Correlation ID:9a3fb39c-d0ea-1000-8099-2fad02009a01

  Hi,
  It depends, if it's a static IP address for your machine, it should be OK for this one IP address; if it is a dynamic IP address in a range, you can input the IP address range which contains this mentioned IP address
  157.55.225.241, or update the changed address to date.
  http://stackoverflow.com/questions/8543653/windows-azure-client-with-ip-address-xxx-xxx-xxx-xx-is-not-allowed-to-access-t
  Thanks,
  Daniel Yang
  Forum Support
  Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you
  have feedback for TechNet Subscriber Support, contact [email protected] 
  Daniel Yang
  TechNet Community Support

• Additional Services for Office 365's underlying Azure

  Hello,
  is it possible to use the Azure subscription i can access through my Office 365 subscription like any other Azure subscription?
  Can I buy additional Services like Azure Media Services for Live Streaming etc, or is it solely for AD Management of my Office 365 users or are there restrictions
  Thanks in advance

  Hi,
  >>is it possible to use the Azure subscription i can access through my Office 365 subscription like any other Azure subscription?
  If you want to sign in azure subscription with Office 365 account, please go through with this article:
  http://www.edutech.me.uk/active-directory/microsoft-azure-how-subscription-administrators-directory-administrators-differ/.
  >>Can I buy additional Services like Azure Media Services for Live Streaming etc,
  please try to contact with your server administrator to enable the Media Services,
  this article
  shows us about the detail steps to add Azure scheduler service to azure portal, hope it helps, this issue is more related to azure account, you could also get further help from azure support:
  http://www.windowsazure.com/en-us/support/contact/
  If I misunderstand, please feel free to let me know.
  Best Regards,
  Jambor
  We are trying to better understand customer views on social support experience, so your participation in this interview project would be greatly appreciated if you have time. Thanks for helping make community forums a great place.
  Click
  HERE to participate the survey.

• Office 365 Portal and Azure

  I have a very generic question.  If I setup an office portal 365, where does the data for all the office portal 365 features including sharepoint reside? Is it installed in SQL server database on cloud by default? Also, where does Azure come into
  play?

  SharePoint is a hosted, shared environment. It is not hosted in Azure (with the exception of Fort Knox data, but that data isn't accessible via your Azure subscription). If all you had was SharePoint, the only area where Azure comes into direct play is
  that your accounts in Office 365 will be on an Azure AD instance that you can access via the Azure subscription.
  Trevor Seward
  Follow or contact me at...
  &nbsp&nbsp
  This post is my own opinion and does not necessarily reflect the opinion or view of Microsoft, its employees, or other MVPs.

• Add new Office 365 to Azure after removing existing Office 365

  Hi All,
  A little convoluted, but I am struggling here.
  First, some history.
  I created an initial Office 365 account (via Telstra).  The tenant domain for this is initialO365.onmicrosoft.com.  I added a custom domain my-domain.com.
  Sometime later, I created an Azure Subscription.  Access to the Azure subscription was via my Microsoft Account.
  Via support, I had the Office 365 my-domain.com associated with (I guess, via the Active Directory Directory) the Azure Subscription.
  The end result was that I was able to logon to both Office 365 and Azure via the my-domain.com domain.
  All was well.
  Recently...
  Due to some limitations with Office 365 via Telstra, I signed up for a new Office 365 account directly with Microsoft.  The tenant for this domain is newO365.onmicrosoft.com.
  I manually migrated the mailboxes between Office 365 accounts, and I also moved the domain from the old Office 365 to the new Office 365.
  In terms of the new Office 365, all is well.  I can logon via my-domain.com without issue.
  What I now want to do is remove the association of the old Office 365 account from Azure, and add the new Office 365 account.
  The end result will be that the old Office 365 account (initialO365.onmicrosoft.com) is cancelled and deleted, and I am then able to logon to Azure and the new Office 365 via my-domain.com.
  I simply cannot get this to happen
  I've tried to just add the my-domain.com domain to the existing directory in Azure (I've added the TXT record to the domain) but when I verify I get the following error:
            Could not verify this domain because it was previously configured for your tenant or for another tenant.
  I think I need to add a new Directory linked to the Office 365 tenant, but I am unable to do this (anytime I go to add a new Directory, I DO NOT get the option to select an existing one).
  I do have a current support ticket, but it's taken over a week now and I'm not really getting far - I don't believe that they understand what I want to do.
  My previous experience with getting this done lead me to believe that this was a simple-ish type of exercise, but I am stuck.
  Any ideas?

  Hi Brendan,
  Thanks for posting here!
  1. My-domain.com is still associated with initialO365.omicrosoft.com. You would like to add this domain with with newO365.onmicrosoft.com.
  A1: First logon to old tenant "initialO365.onmicrosoft.com" and remove any association for "my-domain.com" from any objects (users/groups/applications) and then remove the domain "my-domain.com" from the directory. Once you
  remove it, you will be allowed to add it back to the second tenant "newO365.onmicrosoft.com" after verifying the same using a TXT entry.
  2. You would like to link the Azure Subscription to the new AAD tenant newO365.onmicrosoft.com
  A2: First add the MSA to Newo365.onmicrosoft.com as a Global Admin (GA). Then under Settings on Azure Management Portal, click edit directory and select the new directory to link the Azure subscription to. Add GA for newo365.onmicrosoft.com as a co-admin
  on the Subscription before they attempt to login.
  Hope this answers your query.
  Best Regards,
  Sadiqh
  If a post answers your question, please click Mark As Answer on that post and Vote as Helpful.

• Not able to debug Provider Hosted App in local (Deployed in Azure and Hosted in Office 365)

  I have Provider Hosted App - Deployed in Azure and Hosted in Office 365. 
  Deployed successfully on azure after attaching publishing profile of azure.
  Now I wish to debug app in local?

  Hi,
  According to your post, my understanding is that you want to debug SharePoint provider hosted app in local.
  Per the previous thread, to debug SharePoint provider hosted app in local, we should configure S2S authentication.
  You can follow the article below to build the high trust app, then you can debug the app locally.
  http://blog.karstein-consulting.com/2013/01/08/create-provider-hosted-high-trust-app-for-sharepoint-2013-short-guide/
  Thanks & Regards,
  Jason
  Jason Guo
  TechNet Community Support

• I need to export the mailbox (archive) for pst by powershell (Office 365 azure)

  I opened a support request with MS for: Move After 14 days all items in the folder "deleted items" to the archive. 
  - But after two days I noticed that the emails were moved "after 14 days" of the "all folders", moving approximately 90% of the emails from all users (roughly 2GB each user). 
  - How do I export a mailbox (with sub folders) to pst file (by powershell)? 
  - After, i can to import this pst file by powershell to mailbox?! 
  - Or I can undo what has been done and return the emails to the main box?
  Thanks.
  - - My system:
  Office 365 
  Módulo Windows Azure Active Directory para Windows PowerShell
  All users are in the office 365 (I have no local exchange)
  Dirsync, ADFS, DC in cloud (azure)

  Hi,
  You may try to run the following command:
  New-MailboxExportRequest -Mailbox JSmith -FilePath "\\SERVER01\PSTFileShare\Jsmith.pst" -IsArchive
  For more information, please refer:
  Mailbox import and export requests
  http://technet.microsoft.com/en-us/library/ee633455(v=exchg.150).aspx
  If you need further assitance about the powershell command, you can post a question in Exchange forum:
  https://social.technet.microsoft.com/Forums/office/en-US/home?category=exchangeserver
  Regards,
  Steve Fan
  TechNet Community Support
  It's recommended to download and install
  Configuration Analyzer Tool (OffCAT), which is developed by Microsoft Support teams. Once the tool is installed, you can run it at any time to scan for hundreds of known issues in Office
  programs.

• How to get sharepoint online (office 365) data in cloud/windows azure (provider) hosted app using Javascript?

  How to get sharepoint online (office 365) data in cloud/windows azure (provider) hosted app using Javascript?
  I wish to retrieve sharepoint online data in html page (hosted in windows azure) using javascript and then need to play with AngularJS

  Hi,
  According to your description, you might want to get data from Office 365 SharePoint Online(also known as host web) and pass to the Provider Hosted App which is hosted
  in Windows Azure site.
  I would suggest you take a look at the links below about accessing data from the host web
   for a quick start:
  https://msdn.microsoft.com/en-us/library/office/fp179927(v=office.15).aspx#SP15Accessdatafromremoteapp_Codeexample
  http://dannyjessee.com/blog/index.php/2014/07/accessing-sharepoint-data-from-provider-hosted-apps-use-the-right-context/
  Aother sample solution for your reference:
  https://code.msdn.microsoft.com/SharePoint-2013-Get-the-0ec36bb6
  Best regards
  Patrick Liang
  TechNet Community Support

• Office 365 user Id and Azure

  I am trying to use Azure with my Office 365 account. I have a home version of Office 365 (the one for 5 users). When I try and do this I get the following message:
  "Sign out of your Microsoft account and sign in with the Office 365 user ID assigned to you by your work or school.
  Sign in with the Office 365 user ID assigned to you by your work or school. It looks like [email protected], [email protected], or [email protected]"
  I am using the only account I have for Office 365. I don't have another User Id. Does this mean my account is not entitled to use Azure?

  Hello,
  Microsoft Office 365 account does not give access to Microsoft Azure. These are different products.
  You can sign-up for a
  Trial Version of Microsoft Azure to start off with. You can also find the
  Pricing Details of Azure.
  Regards,
  Neelesh

• AAD Sync for multiple tenantson Office 365 into one Azure AD at Head Office

  My customer has a SharePoint 2013 farm running in Azure through a VPN connection extending their Head Office on premises AD.
  They also run Dir Sync at the moment for the head office users to make use of exchange online through Office 365.
  They have 70 plus schools around the world each with their own Office 365 tenancy, so with on prem but most only in the cloud.
  Can I use the AAD Sync tool to replicate all the individual tenancy users in to one global Azure AD?
  SSO is not required.

  Hi Adrian,
  Here is a reference link with multi forest and multi tenant scenario's.
  http://blogs.technet.com/b/educloud/archive/2013/08/02/multi-forest-and-multi-tenant-scenarios-with-office-365.aspx
  Also you might want to check this thread link with a similar scenario as yours.
  https://social.msdn.microsoft.com/Forums/en-US/bff7f034-842a-4590-9244-a142561b3d48/azure-active-directory-and-multiple-office-365-tenancies?forum=WindowsAzureAD
  Hope this helps!
  Best Regards,
  Sadiqh Ahmed
  Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.
  Your answer is off the topic. the links you provided above are talking about how to sync a single forest(or multiple domains), into multiple Azure AD (multiple office 365 tenant eventually).
  However, the original question is about how to utilize Azure AD (some only exists in cloud) to allow Azure AD users login to on-premises SharePoint farm. in another word, how on-premises SharePoint farm can authenticate users against over 70 different Azure
  AD.

• User Enrollment when you have Azure MFA for Office 365/Azure AD and On-Premise resources

  I'm working on setting up MFA for our company and want to establish the following configuration:
  implement MFA for Office 365/Azure AD/organizational account
  implement MFA for a Windows Server 2008 R2 TS
  i've got things working for Azure AD and have installed the Azure MFA Server on a DC.  where i'm getting stuck is that it looks like you have to set up a user enrollment portal internally and have the users enroll a second time.  we're using Azure
  AD Sync between AD and Azure AD, but we are not interested in ADFS.  is there any way to use the existing Azure AD enrollment for the internal users authentication?
  take care,
  Wylie 

  Not at this time. The MFA Server is currently independent of Azure AD so the MFA enrollment for users are separate. We are working to converge the on-premises and cloud scenarios to make a single enrollment possible for both locations. I don't have a timeline
  to announce at this time, but it is in the works.