Want to generate a token for accessing the application with associated users information from a particular tenant
I am new to Azure Portal,I have premium p2 subscription, I want to generate a token using Client Credentials flow type, Basically want to read my application and users associated with my Tenant. I am using Postman for calling API.
I tried but not able to achieve desired output.I am confused with which API should I call.
Created an Microsoft Entra ID Application like below:
Note: If you want to read all users and applications of tenant , Add permissionUser.Read.All and Application.Read.All.
Adding Application.Read.All and User.Read.All like below:
Now you need to generate Access Token by Postman
GET https://login.microsoftonline.com/{tenant-id}/oauth2/v2.0/token
client_id: <application id>
client_secret: <client secret>
grant_type: client_credentials
scope: https://graph.microsoft.com/.default
Generated Access Token:
After Successfully generating access token, Now use the Access token to list Users and Application in Tenant.
1. List the User
GET https://graph.microsoft.com/v1.0/users
2.List the Applications
GET https://graph.microsoft.com/v1.0/applications
References:
- Is there a query to run so I can get a list of users who has NOT logged in, in the past 30 days?
- Azure Storage accounts container public access level has dissabled
- How to get "exp" from jwt token and compare with it current time to check if token is expired
- How to refresh client assertion in ConfidentialClientApplication?
- Enforce MFA for specific API called from SPFx via AADTokenProvider (Even with SPO MFA)
- How to extract TLS 1.X of all app services/web app running Azure
- Why Can't I See Roles Assigned to an App Registration in Azure?
- Connect C# ASP.NET Core web app to Microsoft Graph calendar
- Is there a way to find out all users of a particular group in AzureAD?
- MSAL Redirect on Failure AADSTS50105
- Microsoft Power BI REST API PowerBINotAuthorizedException
- AzureAD SAML SSO through AWS Cognito - doesn't match requested authentication method
- How to get username after logged in?.I am trying with MSAL (@azure/msal-angular) for Azure Signin
- Display all the user's files using Microsoft Graph API not working
- Get Access Token from Microsoft Graph for ClientId with delegated permissions
- How to call Microsoft Graph API from ASP.NET Core Web API that is called by SPA
- add-kdsrootkey error the request is not supported
- AADSTS50011: The redirect URI http does not match the redirect URIs
- Access Token Issuer from Azure AD is sts.windows.net Instead Of login.microsoftonline.com
- Getting user data through an Azure AD OAuth login - React Native Expo App
- HTTP request to update Service Principal Entra
- on-behalf-of flow, getting error AADSTS50013 while acquiring obo token
- Azure AD B2C Password Reset
- ASP.NET Core 5 WebAPI - Azure AD - Call Graph API Using Azure Ad Access Token
- Programmatically Assign Exchange Roles to a Group in Azure AD using Microsoft Graph API
- "AADSTS900144: The request body must contain the following parameter: 'grant_type'.?
- Signature validation of my Azure access-token, Private-key?
- Entra ID OIDC Failed Auth Attempt Logs
- REST API service when called from azure APIM returning empty response body with Status code 200
- How to register your Azure resource as an Application in Azure Active Directory?