Adaxes

What Graph permissions are needed to report on "MFA Jail" users.

0 votes

The Adaxes service account is a global admin, and we have already granted audit reporting to look for the lockout events, but I cannot pull the logs via the Adaxes service. I am talking about the AAD MFA Block IE Users in the MFA block list due to reporting it as phishing. What permissions are needed for the enterprise app to pull this data? Or is there a better way to find this info.

by (100 points)

1 Answer

0 votes
by (289k points)

Hello,

Unfortunately, we were not able to find related articles on the permissions in Microsoft documentation. We recommend you to contact their support team.

Related questions

0 votes
1 answer
Is there a way to generate a report on "what" is locking out a user's account?

We used to run AD Audit and it would provide additional details on what was locking a user's account (workstation name, application, etc...). Is there are way with Adaxes ... on what is locking an account? Or a way to pull historical data on locked accounts?

asked Nov 16, 2020 by pulsifers (20 points)
0 votes
1 answer
Need a script to add users who are enrolled in MFA to an AD group.

I'm trying to automate adding users who are enrolled in MFA to an AD group. The scripts I found elsewhere here that do not work so I believe they may have been written against a prior Adaxes version or referencing a report that does not meet our needs.

asked May 31 by neal (50 points)
0 votes
1 answer
What Active Directory rights are needed for the Adaxes service user?

We originally installed Adaxes and assigned the Adaxes Service user to the Domain Admins group. We are now locking down that group and have removed the Adaxes Serivce from ... to do things. What rights does Adaxes Service need in order to administer users?

asked Jul 23, 2021 by cobaltcu (20 points)
0 votes
1 answer
What are the access rights needed in O365 / Azure for the Adaxes tenant user?

I have been searching your site, but could not find a list of access rights needed. --- Morten A. Steien

asked Feb 23, 2021 by Morten A. Steien (300 points)
0 votes
1 answer
Report showing users who are inactive in both our on-premise Active Directory and Azure Active Directory?

We manage employee user accounts in our on-premise Active Directory and synchronize them to Azure Active Directory using Azure AD Connect. We'd like to be able to generate ... if this is possible so we can easily identify user accounts that are truly inactive.

asked May 9, 2023 by RickWaukCo (320 points)
3,548 questions
3,239 answers
8,232 comments
547,814 users