![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(60.8, 53%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDP%3C/text%3E%3C/svg%3E)
Azure App Service
Azure App Service is a service used to create and deploy scalable, mission-critical web apps.
8,155 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(188.79999999999998, 26%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EN%3C/text%3E%3C/svg%3E)
Thank you for posting this in Microsoft Q&A.
Based on the information you provided, it appears that you are receiving an email alert indicating an error occurred while synchronizing to an Enterprise Application that you use for SAML authentication and provisioning. However, when you check the Provisioning Status Page and the Provisioning Logs, there are no errors.
You may receive this email if your Enterprise application provisioning is in quarantine status. The Microsoft Entra provisioning service monitors the health of your configuration and places unhealthy apps in a "quarantine" state.
To check if your application is in quarantine, there are three ways:
1.In the Microsoft Entra admin center, navigate to Identity > Applications > Enterprise applications > <application name> > Provisioning and review the progress bar for a quarantine message.
2.In the Microsoft Entra admin center, navigate to Identity > Monitoring & health > Audit Logs > filter on Activity: Quarantine and review the quarantine history. The progress bar view as described above shows whether provisioning is currently in quarantine. The audit logs show the quarantine history for an application.
3.Use the Microsoft Graph request Get synchronizationJob to programmatically get the status of the provisioning job
GET https://graph.microsoft.com/beta/servicePrincipals/{id}/synchronization/jobs/{jobId}/
There are multiple common reasons why your application may go into quarantine:
1.Invalid credentials: When attempting to authorize access to the target application, we received a response from the target application that indicates the credentials provided are invalid.
2.Duplicate roles: Roles imported from certain applications like Salesforce and Zendesk must be unique.
3.SCIM Compliance issue: An HTTP/404 Not Found response was returned rather than the expected HTTP/200 OK response. In this case, the Microsoft Entra provisioning service has made a request to the target application and received an unexpected response
For more information, please refer to this document: https://zcusa.951200.xyz/en-us/entra/identity/app-provisioning/application-provisioning-quarantine-status
Hope this helps. Do let us know if you any further queries.
Thanks,
Navya.
If this answers your query, do click Accept Answer and Yes for was this answer helpful. And, if you have any further query do let us know.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(272, 27%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMU%3C/text%3E%3C/svg%3E)