Stack Overflow
Stack Overflow

Questions tagged [azure-active-directory]

Microsoft Azure Active Directory (Microsoft Azure AD) is a modern developer platform and IAM service that provides identity management and access control capabilities for your cloud applications. It uses industry standard protocols like OAuth2.0, OpenId Connect, and SAML2.0.

Microsoft Azure Active Directory (Microsoft Azure AD) is a modern developer platform and IAM service that provides identity management and access control capabilities for your cloud applications. It uses industry standard protocols like OAuth2.0, OpenId Connect, and SAML2.0.

It provides a one-stop identity service across Microsoft Azure, Microsoft Office 365, Dynamics CRM Online, Microsoft Intune and other 3rd party cloud services.

It can easily be integrated with Cloud-based Azure AD accounts, on-premise AD, and ADFS and can provide SSO functionality.

Resources

12653 questions
212
votes
24 answers

How to get the azure account tenant Id?

My question is: Is it possible to get the azure active directory tenant id without using powershell command? I found this two blogs and with this help, I'm already able to get the tenant ID and subscriptions ID from powershell. Is it the only way…
Annie Vincent
  • 2,377
  • 2
  • 10
  • 6
72
votes
6 answers

AADSTS70005: response_type 'id_token' is not enabled for the application

AADSTS70005: response_type 'id_token' is not enabled for the application I am getting above error even after setting "oauth2AllowImplicitFlow": true, in manifest.
Jajula Siva
  • 739
  • 1
  • 5
  • 5
72
votes
1 answer

What format is the exp (Expiration Time) claim in a JWT

I am using ADAL library to get access token for a resource. Does anyone know what format is the expiration time in ? more specifically "exp" (Expiration time) claim. JwtSecurityToken class simply returns int32 after parsing. So, that is not a good…
Frank Q.
  • 4,341
  • 9
  • 40
  • 56
68
votes
4 answers

Difference between "enterprise application" and "app registration" in Azure

Could someone please tell me what the difference is between "enterprise application" and "app registration" in Azure. Appreciate if you could give me an example & why some application cannot be registered under blade "Enterprise application" and…
POSH Guy
  • 917
  • 1
  • 6
  • 9
59
votes
2 answers

Azure AD App Application Permissions vs Delegated Permissions

I am creating an Azure AD app and noticed there are two permissions types, Application Permissions and Delegated Permissions. What is the difference between the two and under what scenario should I use them?
Arjuna
  • 693
  • 1
  • 5
  • 5
57
votes
5 answers

TokenValidationParameters no longer working after upgrade to 5.0.0

I have the following code which was working when I was using System.IdentityModel.Tokens.Jwt, Version=4.0.20622.1351 private static void ConfigureAzureAD(IAppBuilder appBuilder) { appBuilder.UseWindowsAzureActiveDirectoryBearerAuthentication( …
MHOOS
  • 4,660
  • 10
  • 31
  • 65
56
votes
4 answers

What is the difference between an Azure tenant and Azure subscription?

I am struggling to distinguish how an Azure Subscription and an Azure tenant are different? I have tried figuring it out using examples but each time I come to the conclusion that they are the same thing in a way? If a tenant is a dedicated instance…
DMQ95
  • 561
  • 2
  • 5
  • 8
40
votes
4 answers

"Use a tenant-specific endpoint or configure the application to be multi-tenant" when signing into my Azure website

I'm getting this error after I sign into my Azure website: AADSTS50194: Application 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxxxx' is not configured as a multi-tenant application. Usage of the /common endpoint is not supported for such applications…
DharmaTurtle
  • 3,906
  • 4
  • 28
  • 41
40
votes
9 answers

Graph API - Insufficient privileges to complete the operation

When trying to access the Graph Service Client using I am receiving the error : Code: Authorization_RequestDenied Message: Insufficient privileges to complete the operation. After researching this error the most common solution was to set the…
j9070749
  • 665
  • 1
  • 10
  • 21
35
votes
5 answers

EF Core Connection to Azure SQL with Managed Identity

I am using EF Core to connect to a Azure SQL Database deployed to Azure App Services. I am using an access token (obtained via the Managed Identities) to connect to Azure SQL database. Here is how I am doing that: Startup.cs: public void…
user1868744
  • 653
  • 8
  • 18
35
votes
2 answers

Getting Azure Active Directory groups in asp.net core project

I created a new project using Visual Studio 2015 and enabled authentication using work and school accounts against Azure Active Directory. Here is what the generated configure function looks…
Kiran
  • 5,272
  • 12
  • 52
  • 83
34
votes
2 answers

Azure AD vs Azure AD B2C vs Azure AD B2B

Before Azure AD B2C and Azure AD B2B come into the picture, usualy I added my applications to Azure AD of our tenancy and office 365 users could access the applications using their account (SSO). I am not a guru so I need to see code and read about…
user217648
  • 2,772
  • 7
  • 32
  • 53
32
votes
3 answers

How to validate Azure AD security token?

The following code gives me Azure AD security token, I need to validate that token is valid or not. How to achieve this? // Get OAuth token using client credentials string tenantName = "mytest.onmicrosoft.com"; string authString =…
Neo
  • 13,482
  • 47
  • 173
  • 339
31
votes
1 answer

Are Azure Subscription ID, AAD Tenant ID, and AAD App Client ID considered secret/PII?

I would like to log the following in my telemetry for diagnostic and usage purposes: Azure Subscription ID AAD Tenant ID AAD App Client ID Should I treat them as secrets/PII and hash/encrypt them? (it goes without saying I will not be retaining…
Ohad Schneider
  • 33,142
  • 10
  • 150
  • 190
31
votes
3 answers

Azure Active Directory as Domain Controller for Azure Virtual Machines

Azure Active Directory is "as a service" offering from Azure. I have seen documentations and content from Microsoft stating that can be used for SSO and other Web application for unified auth. Will it be possible to make use of Azure Active…
Naveen Vijay
  • 14,286
  • 5
  • 62
  • 82
1
2 3
99 100