Enable Microsoft Entra self-service password reset - Microsoft Entra ID | Microsoft Learn - URL Scan Results

Summary

A Concise Overview of the scan result of url https://learn.microsoft.com/en-us/entra/identity/authentication/tutorial-enable-sspr

Document
HTML
1
StyleSheets
1
Scripts
4
Font
2
Images
4
Links
16
JavaScript Variables
22
Console log messages
0
Network
Requests
27
Bytes Transferred
1.08MB
Bytes Total
3.02MB

DNS Record
CNAME Record
8
A Record
1
AAAA Record
2
Technology
Load balancers
1
PaaS
1
Security
1
Analytics
1
Performance
1
CDN
1
Miscellaneous
1

Links

The outgoing links identified from the page.

Link	Text
https://go.microsoft.com/fwlink/?LinkId=521839	Privacy Statement
https://aka.ms/3rdpartycookies	Third-Party Cookies
https://aka.ms/msignite_docs_banner	Register now
https://go.microsoft.com/fwlink/p/?LinkID=2092881	Download Microsoft Edge
https://www.microsoft.com	Microsoft
https://entra.microsoft.com/	Admin center
https://github.com/MicrosoftDocs/entra-docs/blob/main/docs/identity/authentication/tutorial-enable-sspr.md	EditEdit
https://www.youtube.com/watch?v=rA8TvhNcCvQ	How to enable and configure SSPR in Microsoft Entra ID
https://www.youtube.com/watch?v=9RPrNVLzT8I	resolving the six most common end-user error messages with SSPR
https://passwordreset.microsoftonline.com/	Microsoft Online password reset
https://www.youtube.com/embed/rA8TvhNcCvQ?azure-portal=true	How to enable and configure SSPR in Microsoft Entra ID
https://entra.microsoft.com	Microsoft Entra admin center
https://feedback.azure.com/d365community/forum/22920db1-ad25-ec11-b6e6-000d3a4f0789	Provide product feedback
https://aka.ms/yourcaliforniaprivacychoices	California Consumer Privacy Act (CCPA) Opt-Out IconYour Privacy Choices
https://techcommunity.microsoft.com/t5/microsoft-learn-blog/bg-p/MicrosoftLearnBlog	Blog
https://www.microsoft.com/legal/intellectualproperty/Trademarks/	Trademarks

JavaScript Variables

Global JavaScript variables are variables that are defined outside of any function or block scope in JavaScript.

onbeforetoggleobjectdocumentPictureInPictureobjectonscrollendobjectmsDocsobjectWcpConsentfunctionmsccfunctiononeDS4objectoneDSobject__tsUtils$gblCfgobject__dynProto$GblobjectawaobjectFormBehaviorElementfunctionTabContainerElementfunctiontargetPageParamsfunctiontargetGlobalSettingsobjectlitHtmlVersionsobjectBreadCrumbsElementfunctionLocalTimeElementfunctionOverflowMenuElementfunctionPanelControllerElementfunctionSearchExpanderElementfunctionsetThemefunction

Technology

The technologies identified are present on the scanned URL.

Name	Description	Detected patterns
Analytics
Azure Monitor https://azure.microsoft.com/en-us/services/monitor	Azure Monitor collects monitoring telemetry from a variety of on-premises and Azure sources. Azure Monitor helps you maximise the availability and performance of your applications and services.	Type: headers Name: content-security-policy Regex: js\.monitor\.azure\.com
Security
HSTS https://www.rfc-editor.org/rfc/rfc6797#section-6.1	HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.	Type: headers Name: strict-transport-security Regex: (?:)
Miscellaneous
Azure Edge Network https://learn.microsoft.com/en-us/azure/cdn/cdn-overview	Azure Edge Network is a global network infrastructure provided by Microsoft Azure. It is designed to deliver content, applications, and services to end-users with low latency and high performance. The Azure Edge Network consists of a combination of Azure Content Delivery Network (CDN), Azure Front Door, and Azure Traffic Manager.	Type: headers Name: content-security-policy Regex: \.azureedge\.net
CDN
Akamai https://akamai.com	Akamai is global content delivery network (CDN) services provider for media and software delivery, and cloud security solutions.	Type: dns Regex: ^[a-z0-9]{1,250}\.[a-z0-9]{1,250}\.akamaiedge.net\.?$
PaaS
Azure https://azure.microsoft.com	Azure is a cloud computing service for building, testing, deploying, and managing applications and services through Microsoft-managed data centers.	Dependent on Azure Front Door,Azure Monitor
Load balancers
Azure Front Door https://docs.microsoft.com/en-us/azure/frontdoor/	Azure Front Door is a scalable and secure entry point for fast delivery of your global web applications.	Type: headers Name: x-azure-ref Regex: (?:)
Performance
Azure Monitor https://azure.microsoft.com/en-us/services/monitor	Azure Monitor collects monitoring telemetry from a variety of on-premises and Azure sources. Azure Monitor helps you maximise the availability and performance of your applications and services.	Type: headers Name: content-security-policy Regex: js\.monitor\.azure\.com

DNS Record

A DNS record maps a domain name to an IP address or other resource information.

Type	Name	Content	DNSSEC
CNAME	learn.microsoft.com	learn-public.trafficmanager.net.	no
CNAME	learn-public.trafficmanager.net	learn.microsoft.com.edgekey.net.	no
CNAME	learn.microsoft.com.edgekey.net	learn.microsoft.com.edgekey.net.globalredir.akadns.net.	no
CNAME	learn.microsoft.com.edgekey.net.globalredir.akadns.net	e13636.dscb.akamaiedge.net.	no
A	e13636.dscb.akamaiedge.net	23.200.189.221	no
CNAME	learn.microsoft.com	learn-public.trafficmanager.net.	no
CNAME	learn-public.trafficmanager.net	learn.microsoft.com.edgekey.net.	no
CNAME	learn.microsoft.com.edgekey.net	learn.microsoft.com.edgekey.net.globalredir.akadns.net.	no
CNAME	learn.microsoft.com.edgekey.net.globalredir.akadns.net	e13636.dscb.akamaiedge.net.	no
AAAA	e13636.dscb.akamaiedge.net	2a02:26f0:1180:19e::3544	no
AAAA	e13636.dscb.akamaiedge.net	2a02:26f0:1180:193::3544	no

SSL Certificate

An SSL certificate is a digital certificate that verifies the authenticity and encrypts the communication between a website and its visitors.

Subject	Issue date	Expiry date	Valid
learn.microsoft.com Microsoft Azure ECC TLS Issuing CA 07	10/28/2024	10/23/2025	12 months
wcpstatic.microsoft.com DigiCert TLS RSA SHA256 2020 CA1	9/4/2024	9/4/2025	1 year
js.monitor.azure.com Microsoft Azure RSA TLS Issuing CA 04	8/20/2024	8/15/2025	12 months
*.events.data.microsoft.com Microsoft Azure RSA TLS Issuing CA 04	9/27/2024	9/22/2025	12 months

HTTP Header

An HTTP header is a component of an HTTP request or response that contains additional information about the message being sent or received.

Name	Value
accept-ranges	bytes
akamai-cache-status	RefreshHit from child, RefreshHit from parent
cache-control	public, max-age=557
content-length	57273
content-security-policy	default-src ;script-src 'self' 'unsafe-inline' 'unsafe-eval' .microsoft.com js.monitor.azure.com dc.services.visualstudio.com try-ppe.dot.net aznb-ame-prod.azureedge.net client-api.arkoselabs.com afd-markdowneditor-public-bvaydge8egfggtbs.b01.azurefd.net h64.online-metrix.net;style-src 'self' 'unsafe-inline' .microsoft.com aznb-ame-prod.azureedge.net try-ppe.dot.net afd-markdowneditor-public-bvaydge8egfggtbs.b01.azurefd.net;img-src data: blob:;frame-ancestors docs.microsoft.com .docs.microsoft.com learn.microsoft.com .learn.microsoft.com labclient.labondemand.com portal.azure.com .portal.azure.com portal.azure.us portal.azure.cn .onecloud.azure-test.net .sharepoint.com localhost:3000;worker-src 'self' blob: .microsoft.com aznb-ame-prod.azureedge.net;form-action 'self' .microsoft.com .azure.cn .pearsonvue.com;media-src 'self' blob: .microsoft.com *.azure.cn videoencodingpublic-hgeaeyeba8gycee3.b01.azurefd.net videoencodingpubdevwus.blob.core.windows.net videoencodingpublicwus.blob.core.windows.net;base-uri 'self';font-src 'self' https: data:;object-src 'none';script-src-attr 'none';upgrade-insecure-requests
content-type	text/html
cross-origin-opener-policy	unsafe-none
cross-origin-resource-policy	cross-origin
date	Thu, 31 Oct 2024 13:01:06 GMT
etag	"DccL4vQkX3gxZXlZyp7uZeOlYQQ="
expires	Thu, 31 Oct 2024 13:10:23 GMT
last-modified	Fri, 04 Oct 2024 17:01:48 GMT
nel	{"report_to":"network-errors","max_age":604800,"success_fraction":0.01,"failure_fraction":1.0}
origin-agent-cluster	?1
referrer-policy	strict-origin-when-cross-origin
report-to	{"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://mdec.nelreports.net/api/report?cat=mdocs"}]}
strict-transport-security	max-age=31536000; includeSubDomains; preload
x-azure-ref	20241031T094935Z-15f948dd5fbwxv8bzgcqdhkb4n0000000aqg000000016n3d
x-buildversion	0.4.028596122
x-content-type-options	nosniff
x-dns-prefetch-control	off
x-download-options	noopen
x-frame-options	SAMEORIGIN
x-permitted-cross-domain-policies	none
x-xss-protection	0

Content Security Policy

Content Security Policy (CSP) is a security mechanism that helps prevent cross-site scripting (XSS) and other code injection attacks by specifying which content sources are allowed to be loaded on a web page.

Name	Value
default-src	;script-src'self''unsafe-inline''unsafe-eval'.microsoft.comjs.monitor.azure.comdc.services.visualstudio.comtry-ppe.dot.netaznb-ame-prod.azureedge.netclient-api.arkoselabs.comafd-markdowneditor-public-bvaydge8egfggtbs.b01.azurefd.neth64.online-metrix.net;style-src'self''unsafe-inline'.microsoft.comaznb-ame-prod.azureedge.nettry-ppe.dot.netafd-markdowneditor-public-bvaydge8egfggtbs.b01.azurefd.net;img-srcdata:blob:;frame-ancestorsdocs.microsoft.com.docs.microsoft.comlearn.microsoft.com.learn.microsoft.comlabclient.labondemand.comportal.azure.com.portal.azure.comportal.azure.usportal.azure.cn.onecloud.azure-test.net.sharepoint.comlocalhost:3000;worker-src'self'blob:.microsoft.comaznb-ame-prod.azureedge.net;form-action'self'.microsoft.com.azure.cn.pearsonvue.com;media-src'self'blob:.microsoft.com*.azure.cnvideoencodingpublic-hgeaeyeba8gycee3.b01.azurefd.netvideoencodingpubdevwus.blob.core.windows.netvideoencodingpublicwus.blob.core.windows.net;base-uri'self';font-src'self'https:data:;object-src'none';script-src-attr'none';upgrade-insecure-request

Name

Value

default-src

*;script-src'self''unsafe-inline''unsafe-eval'*.microsoft.comjs.monitor.azure.comdc.services.visualstudio.comtry-ppe.dot.netaznb-ame-prod.azureedge.netclient-api.arkoselabs.comafd-markdowneditor-public-bvaydge8egfggtbs.b01.azurefd.neth64.online-metrix.net;style-src'self''unsafe-inline'*.microsoft.comaznb-ame-prod.azureedge.nettry-ppe.dot.netafd-markdowneditor-public-bvaydge8egfggtbs.b01.azurefd.net;img-src*data:blob:;frame-ancestorsdocs.microsoft.com*.docs.microsoft.comlearn.microsoft.com*.learn.microsoft.comlabclient.labondemand.comportal.azure.com*.portal.azure.comportal.azure.usportal.azure.cn*.onecloud.azure-test.net*.sharepoint.comlocalhost:3000;worker-src'self'blob:*.microsoft.comaznb-ame-prod.azureedge.net;form-action'self'*.microsoft.com*.azure.cn*.pearsonvue.com;media-src'self'blob:*.microsoft.com*.azure.cnvideoencodingpublic-hgeaeyeba8gycee3.b01.azurefd.netvideoencodingpubdevwus.blob.core.windows.netvideoencodingpublicwus.blob.core.windows.net;base-uri'self';font-src'self'https:data:;object-src'none';script-src-attr'none';upgrade-insecure-request

Cookies

Cookies are small pieces of data stored on a user's web browser to track and remember information about their browsing activity on a website.

Name	Value	Domain/Path	Expires	Secure	HTTP Only
MicrosoftApplicationsTelemetryDeviceId	a4f29a0f-feb1-4826-a3e4-972b667e3a44	learn.microsoft.com/	10/31/2025, 1:01:07 PM	yes	no
ai_session	[ai_session redacted]	learn.microsoft.com/	10/31/2024, 1:31:07 PM	yes	no

URL Scan Results for the page [Enable Microsoft Entra self-service password reset - Microsoft Entra ID | Microsoft Learn](https://learn.microsoft.com/en-us/entra/identity/authentication/tutorial-enable-sspr)

URL basic Information and screenshot