Auditing Azure AD Registered Applications

Azure AD Registered Applications are the Azure AD version of Active Directory Service Accounts. Over time, the number of them grow and grow, each having permissions to consume information from Azure AD and or Microsoft Graph. As an Administrator of Azure AD there is maintenance associated with these Registered Applications, namely credential validity and more important application validity.… keep reading

Microsoft Identity Manager Graph Connector stopped-extensible-extension-error

Graph Connector Delta Token Expired over 30 Days

Running a Delta Import on the Microsoft Identity Manager Graph Connector returns stopped-extensible-extension-error .

Looking into the Application Event Log we initially see BadRequest.

Graph Connector Delta Token Expired

Digging deeper we find DeltaLink older than 30 days is not supported.

Graph Connector Delta Token Expired over 30 Days.PNG

In this particular case the Microsoft Graph Connector for Microsoft Identity Manager has not run in over 30 days and the Differential Query DeltaLink cookie that I detailed in this post and this post has expired.… keep reading