maester icon indicating copy to clipboard operation
maester copied to clipboard
verified publisher icon maester365

MT.1024: Enable PHS if hybrid

Open jkerai1 opened this issue 9 months ago • 1 comments

Test shows fail even though no Entra Connect is configured and tenant is cloud only

jkerai1 avatar Mar 10 '25 10:03 jkerai1

Thanks @jkerai1 that's a valid point.

merill avatar Mar 11 '25 10:03 merill

I have also seen this before, can be confirmed

weyCC81 avatar Jul 20 '25 17:07 weyCC81

MT.1024 is recommendations parsed from Entra directly, so the recommendation can be dismissed in the Entra portal if not applicable.

tdcthosc avatar Aug 15 '25 08:08 tdcthosc

@jkerai1 The statement by @tdcthosc is correct and in the current release, I see a suitable description for this in the test result.

Image

If this is implemented, the test will be skipped.

Image

If this has solved your problem, please close the issue.

l-gosling avatar Aug 30 '25 13:08 l-gosling

This test result is based on active Microsoft Entra recommendations that are mistakenly suggesting PHS for domains that do not have OnPremisesSyncEnabled. This should be resolved by dismissing the recommendation in the Entra portal.

To avoid this false positive, we could add a Graph call that checks if the domain has sync enabled and use that to suppress the recommendation -- but I would still recommend resolving or dismissing the recommendation itself.

Get-MgDomain | Select-Object Id, AuthenticationType, IsDefault, IsVerified, IsInitial, OnPremisesSyncEnabled | Format-Table -AutoSize

SamErde avatar Sep 10 '25 20:09 SamErde