I joined to Windows Azure Active Directory beta trial when http://activedirectory.windowsazure.com was initially launched.
At initial process, site forced me to use a new LIVE account instead of the one I already have which is myname#live.com and also controls all my Azure services. Anyway, I did create a new one as myname#mycompany.com
Next, I did be able to create the active directory domain as mycompany#onmicrosoft.com and added my mycompany.com domain as secondary domain.
While ago, Active Directory tab appeared in Azure control panel and it came empty. So I assumed it needs to be link somehow but couldn't find anything about it.
After that, I tried to create a new domain but when I type mycompany into the name field of the create a directory page, it says "This domain is not unique" which is predictable since other live account holds the name.
Tried to delete entire account but didn't work. Also in here says :
"The original contoso.onmicrosoft.com domain name that was provided for your tenant when you signed up cannot be removed from your tenant."
Since I'm the owner of the both account, I would like to move (or re-create etc.) mycompany#onmicrosoft.com under my actual Azure account which is myname#live.com.
Please advise. Thank you!
I didn't realize you had an existing subscription you were looking to work wit. So what you are seeing is expected behavior as there is no subscription associated with your Azure AD account.
We are propping an update this weekend and Monday that will help you here. On Tuesday morning, do the following:
Log into Azure using your Azure AD account.
It will tell you that you have no subscription - set up a 90 day trial subscription - you will not be charged anything for this.
Click onto Active Directory tab in the Azure Portal.
Add a new user - and select to add a user with a Microsoft Account - specify the account that is the administrator of your Windows Azure subscription and make them a "global administrator".
Log off
Log in to Azure portal using the same Microsoft Account that you just added.
Go into Settings.
Click on administrators tab
Select your Azure Subscription
Click "add" in the tray at the bottom
Now add the Azure AD user account you would like to have be a co-admin on your Azure subscription.
That should do it. Now when you log in using your Windows Azure Account you'll be able to administer your Azure subscription.
Just a reminder - try this on Tuesday morning! We will have the update propped by then.
You can make this work though by creating a new 90 trial subscription - you do this on the page where you are being told there are no subscriptions associated with your account.
You need to log into Azure using your myname#mycompany.com account (the Windows Azure Active directory account you created).
To do that, go to the Azure Management portal - if you are already logged in using a Microsoft Account (formerly LiveID) you will need to log-out first - Then the left hand side of the login page you should see a link that says "Office 365 users: Sign in using your organizational account".
Click on that link, and now log into the Azure portal using your Azure AD Account (myname#mycompany.com). Once you do that, you should see your Windows Azure AD tenant in the Active Directory tab in the portal.
Related
My team already has a working Azure DevOps account. I would like to start an Azure subscription / Active Directory to begin linking our DevOps to App Services and other Azure products.
However, any time I click on a link to get started with Azure, I am met with a perplexing paradox trying to log in.
First I'm told that I can't log in because my MS account isn't found:
But if I try to "Create one!" or "get a new Microsoft account", I'm told it already exists:
I've taken out the email address being used, but I've confirmed they are the same between the two screens (I'm not even typing anything; all I'm doing is clicking "Next" on each screen).
I know that this MS account is valid. It's the same one I use to sign in with Azure DevOps and many other MS services. I'm not sure why I can't log in to the Azure set up platform. And there doesn't seem to be any kind of support options with Azure before you become a subscriber, so I thought I'd try my luck posting the issue here.
Thanks for any help!
You can connect your Azure DevOps organization to Azure Active Directory (Azure AD). Kindly checkout this document - About accessing your organization via Azure AD
Just to clarify, I hope you are an administrator on the subscription.
https://learn.microsoft.com/azure/devops/organizations/accounts/faq-azure-access?view=azure-devops
When your sign-in address is shared by your personal Microsoft account and by your work account or school account, but your selected identity doesn't have access, you can't sign in. Although both identities use the same sign-in address, they're separate: they have different profiles, security settings, and permissions.
Sign out completely from Azure DevOps by completing the following steps.
Closing your browser might not sign you out completely.
Sign in again and select your other identity.
https://learn.microsoft.com/azure/devops/organizations/accounts/faq-azure-access?view=azure-devops
To connect your organization to Azure AD.
Sign in to your organization, https://dev.azure.com/{yourorganization}).
Select gear icon > Organization settings.
Select Azure Active Directory, and then select Connect directory.
I've set up Azure AD authentication on a existing web app and that works ok.
I then want to add "Users in partner companies" via CSV upload. But the account I use to administer Azure is my company account so the option is not available.
So I then created a APPNAME.onmicrosoft.com account.
But when I log in to the portal with that, it's not linked to any subscriptions so obviously it can't add any users to the AD.
And I can't add the user to the subscription as they are not recognised.
I appreciate I'm probably missing/misunderstanding something fundamental but can anyone explain what I need to do to be able to enable B2B collaboration?
If you look at your list of subscriptions is APPNAME.onmicrosoft.com the default directory for any subscription? You currently can't do B2B invites unless it is the default directory for some Azure subscription and unless you pick APPNAME.onmicrosoft.com from the drop down in the top right of the portal. We have had to create a new empty Azure subscription with APPNAME.onmicrosoft.com as the default directory and make the B2B a subscription admin.
Now in order to switch the default directory of the subscription my recollection is that you have to be logged in with a Microsoft account (LiveID) rather than an organizational account.
I am unable to view any services in my azure portal. A couple of days back everything was visible.
I think there's some permissions issue. I am logging as Global Admin on the portal.
[UPDATE]: I was trying to publish a web application from visual studio to my azure account and when I select my account, it says "There are no Azure subscriptions associated with this account". Is it that my account is suspended or deactivated or so?
You are signed in to the classic portal with an AAD subscription. These subscriptions don't support using other services. You might be signed in to the wrong directory. Use the "Subscriptions" menu at the top to switch. If you don't have that, you could also be signed in to the wrong account. Some people have used "work/school" (AAD) email addresses to sign up for a "personal" (Microsoft Account) account. If that happens, you'll see a prompt to pick one of the two when you sign in. If you don't see your subscription, it may be assigned to the personal/MSA account. You can grant access to the other one to avoid this.
My Office365 subscription expired and I was allocated a new 365subscription which has cause a problem. As I can not disassociate the old office365 subscription from my Azure directory.(I can not delete the Office 365 applications so I can not delete the directory)
Q) how can I associate the new Office365 subscription to my Azure subscription? and gain access to the directory that is associated with that subscription?
??
This was pretty tricky one. It is worthed a whole blog post. I will try to briefly describe the process here:
Login to your existing Azure Subscription in the management portal (https://manage.windowsazure.com/)
Navigate to the Active Directory section
From the bottom command bar click on the Add button
A new wizard will pop-up with two options: Create New | Use Existing
Chose the "Use Existing" and carefully read and confirm the instructions
You will signed out from current session and the Azure AD login page will come - Here you have to enter the Admin credentials from the new AD (Office 365)!
You will be asked "Use XXXX Directory with Windows Azure" - confirm (this will once again sign you out)
If everything ran smoothly now you will have two Azure Active Directories in your Azure Account. Be careful, still your OLD directory is the "Global Admin" and Account Administrator for your Azure Account. In the last stretch you will have to change the default Directory for the Azure subscription. This will be accomplished by:
Login to the Azure Management portal using the old account!
Navigate to Settings -> Subscriptions tab
Click with the mouse on the subscription to select it
On the bottom command bar click on Edit Directory
A new wizard "Change Associated Directory" will appear with a drop down.
Drop down will have list of All Azure directories (Office 365 Subscription) which are not currently associated with the Azure Account - i.e. you will only see one choice - your new O365 directory
Select the new directory
Confirm your choice
If not forced to log out by the system, do it - log out
At this point, your Azure Account should be associated with your new O365 directory. If it doesn't work, please provide all relevant information - error messages, screenshots and if you exactly followed the procedure.
Simply, I have an Azure corporate subscription. I have a co-administrator who has his own personal 90-day trial subscription. When the co-administrator uses the new preview portal (manage.windowsazure.com) he can see their personal subscription (where he is admin) but cannot select or view the corporate subscription (where he is co-administrator).
Any ideas? We want to have multiple people within our company assigned as co-administrators so they can play with the preview features (Virtual Machines, Azure Web Sites, Media Services).
I had this problem as well, in fact trying to see data via the resources.azure.com site was proving unfruitful.
As it turns out the new portal has its own user management features that are more granular than the admin/co-admin of the old portal.
Allow a subscription owner to make you a contributor or owner in the new portal and you should be able to see more data on the subscription via the new portal.
To do that:
As the service administrator, go to the new portal
Browse to Subscriptions
Locate & select the subscription you need to add users into
In the subscription details blade, select settings
Under resource management, select users
You'll notice that even though you are a co-admin, you're not listed among the users.
Add the user and make them a contributor/owner
There's more information on Azure's role-based access control here: https://azure.microsoft.com/en-us/documentation/articles/role-based-access-control-configure/
The Azure Admin has changed so the 2 current answers are outdated. Follow the following steps:
Open the subscription, click on 'my permissions' then 'click here to view complete access details for this subscription'
In Access Control (IAM), Click on Role assignments, then click Add
Choose 'Add role assignment' then choose the role to be 'Contributor' and choose which user you want to add from the right hand pane , then click Save.
Make sure the user is listed as a contributor under 'Role Assignments'
The main problem with Windows Azure preview portal is that if you are account administrator for any specific Windows Azure Subscription, it will only show configuration specific to that particular subscription when u used the live ID which is account administrator for other Windows Azure Accounts. If same live ID is service administrator of two different Subscriptions then in preview portal both subscription details will show up. This issue is related with Windows Azure Preview Portal and still in progress.
So if you want to solve this problem, you should use OrgID/liveID which is service administrator in multiple subscriptions (if applicable) this way that LiveID will shows details with both subscriptions.