powershell - Missing Microsoft Graph ServicePrincipal -


tl;tr creating aad application using microsoft graph api. application has requiredresourceaccess entries 1 requires access microsoft graph. after create application want assign roles service principal using approleassignments object. object requires resourceid objectid (e. g. of microsoft graph) try determine.

we using graph api service principals using: https://graph.windows.net/<tenant>/serviceprincipals?api-version=1.6 somehow microsoft graph missing:

windows azure active directory       microsoft app access panel           azure classic portal                 microsoft.smit                       office 365 configure                 windows azure service management api microsoft.supportticketsubmission    azure ests service                   signup                               microsoft password reset service

i need determine objectid of microsoft graph service principal. starting fresh aad, seems there no microsoft graph principal:

get-msolserviceprincipal -appprincipalid 00000003-0000-0000-c000-000000000000

output

get-msolserviceprincipal : service principal not found.

how determine objectid of microsoft graph (preferable using graph.windows.net api)?

edit 1:

as suggested fei xue, creating service principal via rest using:

post: https://graph.windows.net/{tenantid}/serviceprincipals?api-version=1.6  authorization: bearer {access_token}  {   "appid": "00000003-0000-0000-c000-000000000000",   "accountenabled": true }

gives me 400 (bad request) error code:

enter image description here

i need determine objectid of microsoft graph service principal. starting fresh aad, seems there no microsoft graph principal:

the service principal of multi-tenant app(microsoft graph) register on other tenant created after user grant consent app. reason why not able find in fresh tenant.

to object id of microsoft graph, need register , grant permission of microsoft graph figure below:

enter image description here

after get-msolserviceprincipal command should works you(note: may need wait few seconds after grant permission).

more detail service principal, can refer this document.

update

post: https://graph.windows.net/{tenantid}/serviceprincipals?api-version=1.6  authorization: bearer {access_token}  {   "appid": "00000003-0000-0000-c000-000000000000",   "accountenabled": true }

update2

the above rest using app(1950a258-227b-4e31-a9cf-717495945fc2) register on microsoft tenant acquire token. create service principal microsoft graph pragmatically, can call new-azurermadserviceprincipal command.

here c# code sample works me:

try {     var username = "";     var password = "";     var securepassword = new securestring();     foreach (char c in password)     {         securepassword.appendchar(c);     }      // create initial session state runspace.     initialsessionstate initialsession = initialsessionstate.createdefault();     // create credential object.     pscredential credential = new pscredential(username, securepassword);     // create command log in azure.     command connectcommand = new command("login-azurermaccount");     connectcommand.parameters.add((new commandparameter("credential", credential)));     // create command create service principal.     command createsp = new command("new-azurermadserviceprincipal");     createsp.parameters.add(new commandparameter("applicationid", "00000003-0000-0000-c000-000000000000"));     using (runspace psrunspace = runspacefactory.createrunspace(initialsession))     {         // open runspace.         psrunspace.open();          //iterate through each command , executes it.         foreach (var com in new command[] { connectcommand, createsp})         {             var pipe = psrunspace.createpipeline();             pipe.commands.add(com);             pipe.invoke();          }         // close runspace.         psrunspace.close();     } } catch (exception) {     throw; }

Comments

Post a Comment

Popular posts from this blog

Command prompt result in label. Python 2.7 -

i want put result(output) of shell command label. command works, label shows "0", however, in command prompt, result shown correctly, need showed in label. doing ubuntu. myg1 = button(root, text="rodyti informacija", command=lambda: gauti()) myg1.pack(side=bottom) def gauti(): imti = tekstas.get("1.0", "end-1c") info = subprocess.call("id '{imti}' ".format(imti=imti), shell=true) w = label(root, text= info) w.pack(side = bottom) subprocess.call() returns exit code of process created (in case 0 success). if want text output of process, should instead call subprocess.check_output() .
Read more

javascript - How do I use URL parameters to change link href on page? -

i change href value of link using url parameters. example: default <a id="dlink" href="link-1">link</a> but, when user goes https://url.com/?dlink=link-2 it swaps out link new link <a id="dlink" href="link-2">link</a> first need value url. if you're not using javascript framework can create function using jquery. please check get url parameter jquery or how query string values in js it. after that, element "a" id , set value there. $("#dlink").attr("href", hreffromparam);
Read more

amazon web services - AWS Route53 Trying To Get Site To Resolve To www -

so have domain nameservers pointed aws route 53. site hosted on ec2 instance , reachable resolves site.com, if input www.site.com. i'm curious how site resolve www.site.com. have under route53 domains hosted zone 2 additional record sets outside of ns , soa: a site.com ec2 elastic ip cname www.site.com ec2 public dns i can reach site using both site.com , www.site.com, resolve site.com. there way make if enter either, resolves www.site.com? at first, both should record set. a site.com ec2 elastic ip www.site.com ec2 elastic ip and need redirect setting in web server (nginx, apache, ..) following. (source: how redirect www non-www nginx on centos 7 ) redirect non-www www if want redirect users plain, non-www domain www domain, add server block: server { server_name example.com; return 301 $scheme://www.example.com$request_uri; } save , exit. configures nginx redirect requests "example.com" "www.example.com". not...
Read more