Comments (7)
hello, One update from my end.
M365DSC deployment is successfull by removing from the MOF file, the line corresponding:
TransferMethods = "";
The M365DSC team has switched from "Update-MgBetaIdentityConditionalAccessPolicy" to Invoke-MgGraphRequest.
There maybe some fine tuning to do with this new property TransferMethods on $newparameters variable.
Great job to the team by the way.
Regards
Vi-Nam
from microsoft365dsc.
I can confirm that removing the TransferMethods= ""; does in fact correct the issue
from microsoft365dsc.
Does your tenant have at least one Entra ID P1 or P2 license to enable Conditional Access?
from microsoft365dsc.
@andikrueger If you look closely the deployment is actually failing for all resources with "Set-Targetresource: Failed creating new policy", the same issue has been reported already on #4725 and doesn't look like a licensing issue since this was working before.
from microsoft365dsc.
Before deploying in my company tenant, I test this function in the Microsoft CDX tenant. I have license M365 E5.
from microsoft365dsc.
In my event viewer, log reports:
"Error creating new policy:
{ Response status code does not indicate success: BadRequest (Bad Request). } \ at Set-TargetResource, C:\Program Files\WindowsPowerShell\Modules\Microsoft365DSC\1.24.529.1\DscResources\MSFT_AADConditionalAccessPolicy\MSFT_AADConditionalAccessPolicy.psm1: line 1682"
And in line 1655 in MSFT_AADConditionalAccessPolicy.psm1 I found that Conditional use " $NewParameters.Add('ConditionalAccessPolicyId', $currentPolicy.Id)"
But in Microsoft graph document, It does not have "ConditionalAccessPolicyId", It only has "Id". I try to fix but it not work
from microsoft365dsc.
hello,
I am facing the same error when trying to make a start-dscconfiguration with my MOF file.
Error creating new policy:
{ Response status code does not indicate success: BadRequest (Bad Request). } \ at Set-TargetResource, C:\Program Files\WindowsPowerShell\Modules\Microsoft365dsc\1.24.522.1\DscResources\MSFT_AADConditionalAccessPolicy\MSFT_AADConditionalAccessPolicy.psm1: line 1682
I have one computer with module Microsoft365dsc version 1.24.522.1. I have update the Microsoft365dsc recently.
And I have another computer on which I did not updated recently and it is using module version 1.24.228.1.
With version 1.24.228.1, everything is working fine for EntraID ConditionAccess, I can created and update conditionalAccess from MOF file without error.
But with version 1.24.522.1, creation and update of conditionalAccess does not work anymore.
The DSC agent verbose log does not output any error, it seems that everything is working fine. But when checking the conditionalAccess M365 console, nothing changed. And looking at eventlog, there is this error "BadRequest".
It seems that since update of Microsoft365DSC, some functionality for conditionalaccess are not working anymore.
Moreover, I can see that there are new option for "TransferMethods" in conditionaccess setting has been added.
Does any one manage to create and update conditionalAccess object with version 1.24.522.1 and earlier version ?
Regards
from microsoft365dsc.
Related Issues (20)
- Can event log be disabled when use DSC? HOT 1
- BUG?: [SPOSharingSettings] Settings appear to apply, except for RequireAcceptingAccountMatchInvitedAccount = $True HOT 7
- SPOSite: Unable to export the SharingDomainRestrictionMode & SharingAllowedDomainList settings
- AADConditionalAccessPolicy with TermsOfUse failed to create
- AADGroupOwnerConsentSettings is still a valid resource according to the website HOT 1
- Export: Unable to create reports from configuration exports HOT 2
- Your app has been throttled by AAD due to too many requests. HOT 10
- IntuneDeviceConfigurationDefenderForEndpointOnboardingPolicyWindows10: Error in catch block overwrites/hides original error?
- AADGroup: New group creation failing due to AssignedToRole parameter not found in the first run
- Problem exporting OrgSettings and PPTenantIsolationSettings HOT 11
- BUG? [SPOSharingSettings] throws error: "the member BccExternalSharingInvitations is not valid" HOT 9
- Unable to Export-M365DSCConfiguration using the -AccessTokens parameter. HOT 5
- Export-M365DSCConfiguration: Getting `You cannot call a method on a numm-valued expression` and empty report with PowerShell 7.
- Export-M365DSCConfiguration doesn't support combination of Credential and ApplicationId
- Export-M365DSCConfiguration directly to the Azure blob container HOT 1
- New resource for Entra ID password protection settings
- Follow-Up: New-M365DSCDeltaReport: "No discrepancies have been found!" when adding an exclusion to Conditional Access Policies
- [MSCloudLoginConnectionProfile] : Not found HOT 1
- O365SearchAndIntelligenceConfigurations : Unable to export
- EXOGroupSettings: Only exports 1000 objects HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from microsoft365dsc.