Category Archives: Technology

AAD Connect Multi-Domain Support Claim Rule Problems

Today I encountered that the multi-domain support ADFS claim rule generated by AAD Connect version is gives problems in some cases (version 1.1.486.0, april 2017). The rule configured by AAD Connect is as follows:

c1:[Type == ""]
 && c2:[Type == 

ADFS 3.0/WAP (2012 R2) to ADFS 4.0/WAP (2016) Upgrade Gotchas

With the introduction of the new version of ADFS in Windows Server 2016, Microsoft introduced the possibility to run ADFS in compatibility mode and to upgrade your existing configuration to ADFS 4.0 (2016).

Although the upgrade path, as described in …


Set-AzureADUser password using a PasswordProfile in Azure Active Directory V2 PowerShell Module

As you may know Microsoft has the successor of the good old Azure AD Powershell Modules (now called v1) in preview: Azure Active Directory V2 Powershell Modules.

In the V1 version of the AAD PowerShell modules you could simply …


Inter-forest Migration: How to use a “hybrid” ImmutableID when federating with Azure AD


When you are working on an inter-forest migration in an environment that is integrated with Azure AD / Office 365 you should take care how to manage the ImmutableID. This has impact on how Single Sign On works with …


Full Azure AD access without Credit Card in Trial

Imagine a situation where a customer wants to do a Proof of Concept (POC) with on premise Azure Multi Factor Authentication (Azure MFA server) and on premise Self Service Password Reset (SSPR). These services are included in the Azure Active …


First experience with Azure AD Connect Health Agent

In this blog post I’d like to share my first experience with the recently Microsoft released public preview of the Azure AD Connect Health Agent. The new Azure Cloud service that can be used to monitor the health of you …


Using the SalesForce1 App with Azure Active Directory

One of the biggest apps on the Azure Active Directory Gallery is SalesForce. A couple of years ago ADFS SSO and identity provisioning to SalesForce was quite a new challenge, especially when multiple Salesforce Organizations and Portals are being used. …

Duplicate Mailbox issues migrating to Office 365

Recently I had some difficulties with an on-premise to Exchange Online mailbox move. This happened when executing the following command:

New-MoveRequest -Identity <mailbox> -remote -RemoteHostName “<on-prem-hybrid-fqdn>” -TargetDeliveryDomain “<tenant>”

This resulted in the following error:
The operation couldn’t be performed because

Testing AAD Sync Beta 3

Microsoft is working on a new version of its identity synchronization software for the Microsoft Online services. In this blog I’d like to share my experience in testing this tool in my test environment.

As you may know is that …

Azure RemoteApp Preview

In this blog I’d like to show you the recently released preview of Azure RemoteApp services. The Azure RemoteApp services build’s on the Remote Desktop Services (RDP) protocol. RemoteApps can be published deployed cloud only in Azure, using your existing …