FAQ
Please use this as a general guide for answers to frequently asked questions. Visit our Tips document on the Microsoft Graph site for more FAQ answers.
Sample ARM templates are here
This is because your tenant has not opted in and enabled the Privileged Access Management feature. Please follow the instructions here
Please make sure you are connecting to Exchange Online Powershell using multi-factor authentication. Please follow the instructions here. You do not need to enable multi-factor authentication for your Office 365 organization in order to do this. Connecting with multi-factor authentication creates an OAuth token that is used by Privileged Access Management for signing your requests.
Please run the following before in your Powershell window
Set-ExecutionPolicy -ExecutionPolicy Unrestricted -Scope Process
Triggers by default, are not kicked off during the ARM template deployment. Please run the trigger via the UI or Powershell. If you want to run triggers by default, on deployment, please reference the following
Pipelines, by definition, consist of a set of activities to copy Office 365 Data. Each activity generates its own Privileged Access Management (PAM) Request. Please make sure you approve requests for all activities for a given pipeline
Requests approved by Office data request approvers are valid for 6 months for data access as long as the scope of the request remains the same. After 6 months, a new request will be triggered automatically for approval. Any changes to the shape of the data will also trigger a new PAM request flow.
I am running into Writing to 'AzureDataLakeStore' failed. Message: The remote server returned an error: (403) Forbidden
Please make sure to grant the SPN access to the destination ADLS store in the ARM template of your application:
initialUser": "[parameters('destinationServicePrincipalAadId')]
To get the AAD Id of the SPN, run the following command in Azure Powershell:
Get-AzureRmADServicePrincipal -SearchString "DisplayName of the SPN" | fl Id
Please follow the guidelines here to reach out to us Contact Us.