azure-ad-graph-api

问题 I have my website(Azure App Service) deployed in two regions under Microsoft Azure . https://abcd1-westus.azurewebsites.net/ https://abcd2-centralus.azurewebsites.net/ I created a Traffic Manager Profile to control the distribution of user traffic for service endpoints. The DNS Name of Traffic Manager Profile is "http://abcd.trafficmanager.net" Authentication is done by Azure AD . Once we are trying to access Traffic Manager DNS Url , it prompts for AAD login and redirect to https://abcd2

问题 I have my website(Azure App Service) deployed in two regions under Microsoft Azure . https://abcd1-westus.azurewebsites.net/ https://abcd2-centralus.azurewebsites.net/ I created a Traffic Manager Profile to control the distribution of user traffic for service endpoints. The DNS Name of Traffic Manager Profile is "http://abcd.trafficmanager.net" Authentication is done by Azure AD . Once we are trying to access Traffic Manager DNS Url , it prompts for AAD login and redirect to https://abcd2

问题 I've been trying to write an MVC application that uses the Graph api to administrate AD Groups. The problem I'm running into is when I try to add or remove users to Mail enabled security groups I get "Unable to update the specified properties for objects that have originated within an external service." These operations work fine with "normal" Security groups. According to the docs it should support both, what am I missing? Code: bool userAdded = false; GraphServiceClient graphClient =

问题 Our company is developing a system that is based on Azure components and a client desktop application that connects to Azure. The Azure components are being deployed automatically by our setup code via the Azure API and Azure deployment automation. One of these components being deployed is a Web App / API that we register in the Azure Active Directory. Our deployment code creates this app in Azure via the Azure API and sets the "Required permissions" for this app in Azure. The required

问题 I've been using this: https://github.com/Azure-Samples/active-directory-php-graphapi-web.git to access the graph api, which works. My azure AD registered application is able to query the API to get a list of users in the directory. But now I want to list folders for a user in the directory. This page http://graph.microsoft.io/docs says the url should be: https://graph.microsoft.com/v1.0/me/drive/root/children When I use that url in my REST call, I get "code": "InvalidAuthenticationToken",

问题 I am looking for a way to authenticate a user by username/password in a headless manner for Azure AD b2c. Azure AD b2c is great but we feel the redirects for logins can lead to confusion among customers (and sometimes even prevented by some browsers). Also we want to be in full control of the customers UX experience. I have researched ADAL and the Graph API but have not found anything yet. Gina 回答1: As mentioned here, you can use Azure AD Apps for the Client Credential Flow for Service

问题 I am using azure ad graph api to pull user profile data from active directory. All my input parameters are correct and token is also generated with the below code. But it is not giving user profile object as response.response.IsSuccessStatusCode is always false. What may be my mistake here? private readonly string graphUserUrl = "https://graph.windows.net/{0}/me?api-version=1.6" string tenantName = "Microsoft.OnMicrosoft.com"; string authString = "https://login.microsoftonline.com/" +

问题 I am trying to integrate Microsoft Graph authentication and access sharepoint and User's Graph Profile & Pic. I had followed their document https://developer.microsoft.com/en-us/graph/docs/authorization/app_authorization I am able to achieve first step Authenticate a user and get app authorized , but not Acquire an access token . I have checked it in Postman, able to get response of access token. Same way I'm trying to do it using Jquery Ajax but getting XMLHttpRequest cannot load https:/

问题 I've got an ASP.NET application which is using the OWIN middleware to authenticate against my Azure Active Directory instance. In the Azure portal, I've created the app registration for my ASP.NET app, and authentication works great. Users have been logging in, I get their claims, everything's good. Now, I'm adding a new feature to my application, where after login, I want to query the Graph API to get some more information about the user (group names, e-mail address, whatever). Now,

问题 Using the extension API documented here: https://msdn.microsoft.com/en-us/library/azure/ad/graph/howto/azure-ad-graph-api-directory-schema-extensions in conjuction with the B2C Graph Client sample: https://docs.microsoft.com/en-us/azure/active-directory-b2c/active-directory-b2c-devquickstarts-graph-dotnet I created a custom attribute via the AD Graph API for directory schema extensions using this API: POST https://graph.windows.net/contoso.onmicrosoft.com/applications/<applicationObjectId>